GET image.tmdb.org/t/p/w300/eSCyHW9RjimNveu7xU650ostpxv.jpg
200 OK 6.7 kB URL
image.tmdb.org/t/p/w300/eSCyHW9RjimNveu7xU650ostpxv.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 6.7 kB (6726 bytes)
MD5 fc6b994e4a9a8537e7c7d1aafef28920
SHA1 7704da844db1d15a5a97608fe7efd8eebdf0186f
SHA256 542cbaabcfb1d8d173c59c16e8f92d9750f0667738caaa8be3d005aa43dcf226
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/eSCyHW9RjimNveu7xU650ostpxv.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 6726
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 15:28:33 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 9728
x-bo-origindownloadtime: 338
x-bo-compressionratio: 30.86%
x-bo-processingtime: 8
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 15:28:34
cdn-edgestorageid: 1049
cdn-requestid: b8f323f6c7c33057d3ee869dc553c929
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/ipLBlkU7IXDS6bMgpG4cv92eHwG.jpg
200 OK 27 kB URL
image.tmdb.org/t/p/w300/ipLBlkU7IXDS6bMgpG4cv92eHwG.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x441, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 27 kB (27418 bytes)
MD5 0b23b7c244a15e73c47924d85e4b2549
SHA1 80f010850323e5c35444e216f6c87c5a3497288e
SHA256 c79bcfc545a0cef271d41156015a32c22a3a7887f72258d985e5e7694cc7bd40
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/ipLBlkU7IXDS6bMgpG4cv92eHwG.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 27418
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 05:13:12 GMT
perma-cache: MISS
x-bo-server: LA-294
x-downloadsize: 45238
x-bo-origindownloadtime: 301
x-bo-compressionratio: 39.39%
x-bo-processingtime: 10
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 05:13:13
cdn-edgestorageid: 863
cdn-requestid: 5c3e45fc648d03f33aee2c63e8d8284b
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET skinnycrawlinglax.com/watch.290870816661.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1
307 Temporary Redirect 5.0 kB URL
skinnycrawlinglax.com/watch.290870816661.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1
IP / ASN
172.240.108.68
#7979 SERVERS-COM
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 5.0 kB (5010 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject skinnycrawlinglax.com
Fingerprint 4A:6A:48:C8:5B:C5:2B:2E:9C:03:AF:BF:4C:E6:10:23:E2:7B:EA:97
Validity Sat, 28 Jun 2025 22:21:33 GMT - Fri, 26 Sep 2025 22:21:32 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.290870816661.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1 HTTP/1.1
Host: skinnycrawlinglax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://bahaviofilm.com
access-control-allow-credentials: true
location: https://skinnycrawlinglax.com/watch.290870816661.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=46a362ba900b2554e7486b0300eb41febc9a76d19bfb9d603b4682d8aba9131009dd86e382be164b2e1a8c5991bdcdb368741461fb9568cd7369fc3b4a480e1331b18ce15b5a016f311f6df18cc24433fb0df04949e2e4cd4ac2dc&sub3=group_b&tz=0&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; expires=Sun, 20 Jul 2025 12:21:30 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 2
Host: skinnycrawlinglax.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 82f820a7b1ed0c0fccaf7e06ef699db0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET sultrymomentarily.com/impr.gif?sid=H4sIAAAAAAAC_1RTz2sd1Re_L22_my9YFFEQF2_hQsUk9869M3PHUsRaI8X0h22lQhfl_prkNvNmxntn3qRBsLQqBTfBlct556WJ1ioKgitRXlxZEPtcZdG4EPwHhK5l0kDqgTnnfM7nDHzO5ZxPRvUuolCLnXOnizWbZWI-nMP9Fy_ZXBeN75-52Cd4Dh_rX7J5xI71Vzvnhq8SyubwS_23jFop5gNMMCaY9BesM2mxOr_Hgi3vJmQuwXMsmCMhg1X3X-zrGfCiB3q4i54Cq6dH_0ovg1UTyAffnjR-pSrKV94c1JmoCgdDvfVuvpIXTQ6DgzR1PUjzrf1uKPwUoc9noMi39ieAYrjRTQDSTtHMMw9A5lv7MkEObz9SKjMwOUj9f2iGEzDZNlgxAVXcBKvvIwCl4cxZyAebZwrXiGuPWNGxU3T44T9gmyk6_OBpyAffnMjsav9CkdWVLXIPq2kLdnUCdmkCZb0N1doM2GYbVHUDrP4NzT9chHywcdZnBVi984IKYmNEymYDkYpZFnI2K0giZ3FIg1DIFMcR3nsim05A-B7U3Wd7UKc9qMseDPROn2HOFBE0ShOtYswEY9pInPAAY5GoGGrVaV-HqlwHla2Dch9v1rnyQTwid-srZRbQmPGYkhHZLPVytTLcqFxtNrqeEfniUSmI94pQuuuwYj-bol7v-H36Hrj6Z_DLO98HhmjFU8OIStMojqSUSWB0qEJMJcaKq5gnkpiQC5lwHJpQE8xExKiShqSUJIxiZViaRJJjSnlIEhprHlJuuEgM1hFJY44TxkKeCKmwjFMlCVZK4YBzpZkOZMJppAgJI8oU5SxJQh4qZhhhiYgxNYYEhKgojINI6Ri8ngFfTVHvnQ9hqFtoDILGI2gEgsYiaCoEzbC9rTMf-HZTZ76WZD8G-5FuLbmiLq_IcVEtjcTtoloyOQLh1sHpdsOW7_uboKpD47XU63HROSGrrxdmA8bxrHOz8RUyFlK3o3IXPdktWe_G7z_BitnpJ2EUU5lyLQglKhCYpSThkUqVCaVgCXjbgvUze6uxZqfo-OUjUNopOvLRDyDFNvhsG5TtgaifBdGM44CDWIYEw1p-52qRZnZ1rrsjXbRQVoehutYbZbvoub1NXzy9DkbdQ_sGyrVQuhau2l8QLGW3xueLBm2cLxqPvjtbVnZg10R3BRcqUZn_3XnbXGsKp0-d9Otfvq46okvvXjS-WhS5tvmSR1-dsFobt1A4ZdCPp_wlI8_VfvlE7fK6XDz3xsKpQemM97bIJyDsffMrKDtFT_w93Lvvlz99HqybgKtbGNSPKS2vgy8PsC8QuOwAyxJBU7djF8iDYmYRZOYAC9mCfwzLg3zsRPe3sO3I34Il1wNR3YR80MLQtTDMWhDZOvj60Lgq3b3X_qB7BjLrjWXm0IbMXMfbnX5KTaAw5nFEKE8NoUyrNOQs0ZHAlBqo_HT5gz-P_hsAAP__LOY04LgFAAA=
200 OK 0 B URL
sultrymomentarily.com/impr.gif?sid=H4sIAAAAAAAC_1RTz2sd1Re_L22_my9YFFEQF2_hQsUk9869M3PHUsRaI8X0h22lQhfl_prkNvNmxntn3qRBsLQqBTfBlct556WJ1ioKgitRXlxZEPtcZdG4EPwHhK5l0kDqgTnnfM7nDHzO5ZxPRvUuolCLnXOnizWbZWI-nMP9Fy_ZXBeN75-52Cd4Dh_rX7J5xI71Vzvnhq8SyubwS_23jFop5gNMMCaY9BesM2mxOr_Hgi3vJmQuwXMsmCMhg1X3X-zrGfCiB3q4i54Cq6dH_0ovg1UTyAffnjR-pSrKV94c1JmoCgdDvfVuvpIXTQ6DgzR1PUjzrf1uKPwUoc9noMi39ieAYrjRTQDSTtHMMw9A5lv7MkEObz9SKjMwOUj9f2iGEzDZNlgxAVXcBKvvIwCl4cxZyAebZwrXiGuPWNGxU3T44T9gmyk6_OBpyAffnMjsav9CkdWVLXIPq2kLdnUCdmkCZb0N1doM2GYbVHUDrP4NzT9chHywcdZnBVi984IKYmNEymYDkYpZFnI2K0giZ3FIg1DIFMcR3nsim05A-B7U3Wd7UKc9qMseDPROn2HOFBE0ShOtYswEY9pInPAAY5GoGGrVaV-HqlwHla2Dch9v1rnyQTwid-srZRbQmPGYkhHZLPVytTLcqFxtNrqeEfniUSmI94pQuuuwYj-bol7v-H36Hrj6Z_DLO98HhmjFU8OIStMojqSUSWB0qEJMJcaKq5gnkpiQC5lwHJpQE8xExKiShqSUJIxiZViaRJJjSnlIEhprHlJuuEgM1hFJY44TxkKeCKmwjFMlCVZK4YBzpZkOZMJppAgJI8oU5SxJQh4qZhhhiYgxNYYEhKgojINI6Ri8ngFfTVHvnQ9hqFtoDILGI2gEgsYiaCoEzbC9rTMf-HZTZ76WZD8G-5FuLbmiLq_IcVEtjcTtoloyOQLh1sHpdsOW7_uboKpD47XU63HROSGrrxdmA8bxrHOz8RUyFlK3o3IXPdktWe_G7z_BitnpJ2EUU5lyLQglKhCYpSThkUqVCaVgCXjbgvUze6uxZqfo-OUjUNopOvLRDyDFNvhsG5TtgaifBdGM44CDWIYEw1p-52qRZnZ1rrsjXbRQVoehutYbZbvoub1NXzy9DkbdQ_sGyrVQuhau2l8QLGW3xueLBm2cLxqPvjtbVnZg10R3BRcqUZn_3XnbXGsKp0-d9Otfvq46okvvXjS-WhS5tvmSR1-dsFobt1A4ZdCPp_wlI8_VfvlE7fK6XDz3xsKpQemM97bIJyDsffMrKDtFT_w93Lvvlz99HqybgKtbGNSPKS2vgy8PsC8QuOwAyxJBU7djF8iDYmYRZOYAC9mCfwzLg3zsRPe3sO3I34Il1wNR3YR80MLQtTDMWhDZOvj60Lgq3b3X_qB7BjLrjWXm0IbMXMfbnX5KTaAw5nFEKE8NoUyrNOQs0ZHAlBqo_HT5gz-P_hsAAP__LOY04LgFAAA=
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC_1RTz2sd1Re_L22_my9YFFEQF2_hQsUk9869M3PHUsRaI8X0h22lQhfl_prkNvNmxntn3qRBsLQqBTfBlct556WJ1ioKgitRXlxZEPtcZdG4EPwHhK5l0kDqgTnnfM7nDHzO5ZxPRvUuolCLnXOnizWbZWI-nMP9Fy_ZXBeN75-52Cd4Dh_rX7J5xI71Vzvnhq8SyubwS_23jFop5gNMMCaY9BesM2mxOr_Hgi3vJmQuwXMsmCMhg1X3X-zrGfCiB3q4i54Cq6dH_0ovg1UTyAffnjR-pSrKV94c1JmoCgdDvfVuvpIXTQ6DgzR1PUjzrf1uKPwUoc9noMi39ieAYrjRTQDSTtHMMw9A5lv7MkEObz9SKjMwOUj9f2iGEzDZNlgxAVXcBKvvIwCl4cxZyAebZwrXiGuPWNGxU3T44T9gmyk6_OBpyAffnMjsav9CkdWVLXIPq2kLdnUCdmkCZb0N1doM2GYbVHUDrP4NzT9chHywcdZnBVi984IKYmNEymYDkYpZFnI2K0giZ3FIg1DIFMcR3nsim05A-B7U3Wd7UKc9qMseDPROn2HOFBE0ShOtYswEY9pInPAAY5GoGGrVaV-HqlwHla2Dch9v1rnyQTwid-srZRbQmPGYkhHZLPVytTLcqFxtNrqeEfniUSmI94pQuuuwYj-bol7v-H36Hrj6Z_DLO98HhmjFU8OIStMojqSUSWB0qEJMJcaKq5gnkpiQC5lwHJpQE8xExKiShqSUJIxiZViaRJJjSnlIEhprHlJuuEgM1hFJY44TxkKeCKmwjFMlCVZK4YBzpZkOZMJppAgJI8oU5SxJQh4qZhhhiYgxNYYEhKgojINI6Ri8ngFfTVHvnQ9hqFtoDILGI2gEgsYiaCoEzbC9rTMf-HZTZ76WZD8G-5FuLbmiLq_IcVEtjcTtoloyOQLh1sHpdsOW7_uboKpD47XU63HROSGrrxdmA8bxrHOz8RUyFlK3o3IXPdktWe_G7z_BitnpJ2EUU5lyLQglKhCYpSThkUqVCaVgCXjbgvUze6uxZqfo-OUjUNopOvLRDyDFNvhsG5TtgaifBdGM44CDWIYEw1p-52qRZnZ1rrsjXbRQVoehutYbZbvoub1NXzy9DkbdQ_sGyrVQuhau2l8QLGW3xueLBm2cLxqPvjtbVnZg10R3BRcqUZn_3XnbXGsKp0-d9Otfvq46okvvXjS-WhS5tvmSR1-dsFobt1A4ZdCPp_wlI8_VfvlE7fK6XDz3xsKpQemM97bIJyDsffMrKDtFT_w93Lvvlz99HqybgKtbGNSPKS2vgy8PsC8QuOwAyxJBU7djF8iDYmYRZOYAC9mCfwzLg3zsRPe3sO3I34Il1wNR3YR80MLQtTDMWhDZOvj60Lgq3b3X_qB7BjLrjWXm0IbMXMfbnX5KTaAw5nFEKE8NoUyrNOQs0ZHAlBqo_HT5gz-P_hsAAP__LOY04LgFAAA= HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; u_pl23748731=1; pdhtkv23=true; uncs23=1; u_pl25350335=1; pdhtkv32=true; uncs32=1; u_pl23748708=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Origin: *
Vary: Origin
Access-Control-Allow-Credentials: true
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: dd3994a37fd3a4f17726404e8ad92088
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET image.tmdb.org/t/p/w300/jrGyjoCsRLVbzmsaeFCueOnGOKL.jpg
200 OK 18 kB URL
image.tmdb.org/t/p/w300/jrGyjoCsRLVbzmsaeFCueOnGOKL.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 18 kB (17808 bytes)
MD5 f8246cdd5bc5de3ebbf0f7765c153aa1
SHA1 fc7077362b4083becad4c1cc15e3aa36e2f94b33
SHA256 ba1b701c18a8d580b13f60b006ae51e11d5c7622dcd12d383a70c8644d5bc476
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/jrGyjoCsRLVbzmsaeFCueOnGOKL.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 17808
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67ff74f5-4590"
last-modified: Wed, 16 Apr 2025 09:14:29 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 753
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 06/04/2025 18:27:41
cdn-edgestorageid: 874
cdn-requestid: 9df336a7ab8fb3be435c83a5d51b0a3a
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/fZGMGSOmV5dfkwABcSvIAJVoEgw.jpg
200 OK 18 kB URL
image.tmdb.org/t/p/w300/fZGMGSOmV5dfkwABcSvIAJVoEgw.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 18 kB (17514 bytes)
MD5 66468fcfe63fc62e4978f76530912904
SHA1 d3023a8b44ab3b9210e2c378aaaaa0c470d2fd5c
SHA256 bea6d74baeb6db0a5f034479ad790c3af3112a05c808001283dec5fcf52ef777
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/fZGMGSOmV5dfkwABcSvIAJVoEgw.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 17514
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67f214ab-446a"
last-modified: Sun, 06 Apr 2025 05:44:11 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 266
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 05/22/2025 06:52:19
cdn-edgestorageid: 1055
cdn-requestid: 504894160ee14d5c91623bd0cdc503f5
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bahaviofilm.com/assets/js/main.min.js?v=18071301
200 OK 170 kB URL
bahaviofilm.com/assets/js/main.min.js?v=18071301
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (2177)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 170 kB (170199 bytes)
MD5 fb291efad15d450f2416012549e0bb5a
SHA1 0c874b65ee84ec01ceebc00e5ccb4b43c37e60c6
SHA256 6b8e6bfcbbf7029aaf1f4e0d276a34a476ccba15a022a84d1d4378adb7c68faf
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /assets/js/main.min.js?v=18071301 HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=xD%2BJjS0PomkrqDP7OlCIJUdp23Wx0a5gKo%2F%2FuHkawqtw8j2vsyTELiReiRcmgU5y2Sg7kxrP2CIuHN0XTPzLXffNOBOPerr66xyJv%2Fs%3D"}]}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
content-encoding: br
cf-ray: 962269b14ef5b4f7-OSL
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 164875
Size 77 kB (77160 bytes)
MD5 af7ae505a9eed503f8b8e6982036873e
SHA1 d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
SHA256 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
cf-ray: 962269b7c94cb4f9-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 113521
expires: Fri, 10 Jul 2026 12:20:30 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F6wjoB%2Fe2Vyk6SijcwSbFv3KdIjcgJEQQWUsy8QjTEzxBU5kfgDgrMlm%2BJzmtX9WhB49Svo%2Fv4jbqm88TmhGz35NLZ3y%2BLsvYVZZC%2Bh8lP2BFt15bHV7EuUoZs5RvqdaHHyBC4X6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET sultrymomentarily.com/watch.120453001132.js?key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-7_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
307 Temporary Redirect 5.1 kB URL
sultrymomentarily.com/watch.120453001132.js?key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-7_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 5.1 kB (5129 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.120453001132.js?key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-7_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Location: https://sultrymomentarily.com/watch.120453001132.js?abt=F-2480-rr-7_1&aioi=t&dev=e&key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=2e1dc8fe41cff676bbb92ed5c503b00c8c789b1e58ab9805e5d104a643cbe1f319430ce4f96b8033851937d8538e8a9e0d61f780944589abc0b7fcb10ccc0288cd4d2b9836c115634c38499585c4e4149a703ee1211c65726cd7&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoyNTM1MDMzNSwiayI6Ijk1NjczYmY4ZGExMzFjMmEwNGYxOTg2Y2ZjZTViYTQ5Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MDIwOTk3LCJwaWQiOjM2MTY1NSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJ3MWdhNDlndCIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoyNjY1NjExMTUsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMzY5MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTM0LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9iYWhhdmlvZmlsbS5jb20vP3M9YWxpY2UiLCJhciI6W119fQ.D0IbWyIp0Sf0_CyfTSstM-SvcQkidpmoTIY-G5NhsvU; expires=Sun, 20 Jul 2025 12:21:30 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b2e899cf2c72941d1342a8b1974123f5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET image.tmdb.org/t/p/w300/aHYmjLTc5niV7uuTBmIz4oTrSx6.jpg
200 OK 30 kB URL
image.tmdb.org/t/p/w300/aHYmjLTc5niV7uuTBmIz4oTrSx6.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 30 kB (30418 bytes)
MD5 18aab21e715aecd6355e22740215335b
SHA1 4f345c0f102f0290574aadf3424f9144ac5c3cb7
SHA256 b0809f64ad22f6e68e86bd6177212486b85463de8732a6053f87c0ba89ad5be9
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/aHYmjLTc5niV7uuTBmIz4oTrSx6.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 30418
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 10:07:36 GMT
perma-cache: MISS
x-bo-server: LA-296
x-downloadsize: 40391
x-bo-origindownloadtime: 283
x-bo-compressionratio: 24.69%
x-bo-processingtime: 25
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 10:07:37
cdn-edgestorageid: 1076
cdn-requestid: a149990fe03a3010d6fb58cf168bdadb
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET twigentirelysailor.com/8affdb48fea8b54dbf05152d214fe281/invoke.js
200 OK 27 kB URL
twigentirelysailor.com/8affdb48fea8b54dbf05152d214fe281/invoke.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (27170), with no line terminators
First Seen 2025-07-18
Last Seen 2025-07-20
Times Seen 2
Size 27 kB (27170 bytes)
MD5 040c3ec6a1b7ef5be8f7efc6247363cb
SHA1 810bd484bd95d74b49c43f5fa6b7c7838ea46a16
SHA256 e7e2cc9d7a6bbc11277ea432b61de57ec3638c804c5ca9b2fa707049a7d10b61
Certificate Info
Issuer Let's Encrypt
Subject twigentirelysailor.com
Fingerprint 75:18:B1:28:BE:92:01:11:B0:9D:C2:42:65:15:34:08:33:16:94:93
Validity Tue, 24 Jun 2025 22:17:39 GMT - Mon, 22 Sep 2025 22:17:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /8affdb48fea8b54dbf05152d214fe281/invoke.js HTTP/1.1
Host: twigentirelysailor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: application/javascript
Content-Length: 11454
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_F-2480-rr-6=1; expires=Sun, 20 Jul 2025 12:20:30 GMT; secure; SameSite=None
Host: twigentirelysailor.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5ae35ebf528aaae80404212cf59d97b3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET bahaviofilm.com/415e7ac15d75a52eaaac004b65282203/piwik.php?action_name=Search%20Results%20for%20Alice&idsite=1&rec=1&r=729767&h=12&m=20&s=30&url=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&_id=3486c7a926efc9fe&_idts=1753014031&_idvc=1&_idn=0&_refts=0&_viewts=1753014031&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=482&pv_id=8Gmg2o
200 OK 53 kB URL
bahaviofilm.com/415e7ac15d75a52eaaac004b65282203/piwik.php?action_name=Search%20Results%20for%20Alice&idsite=1&rec=1&r=729767&h=12&m=20&s=30&url=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&_id=3486c7a926efc9fe&_idts=1753014031&_idvc=1&_idn=0&_refts=0&_viewts=1753014031&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=482&pv_id=8Gmg2o
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (3175)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 53 kB (52738 bytes)
MD5 5a439cd1fcbb25fd219c1994d153414c
SHA1 5baecd44bdb4cc1f2a40ed297d855e4da7bb3e74
SHA256 75a03359246f55ca2a62150f1e03e67873fc46aadfcbeda65f967e557d4e5f97
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /415e7ac15d75a52eaaac004b65282203/piwik.php?action_name=Search%20Results%20for%20Alice&idsite=1&rec=1&r=729767&h=12&m=20&s=30&url=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&_id=3486c7a926efc9fe&_idts=1753014031&_idvc=1&_idn=0&_refts=0&_viewts=1753014031&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=482&pv_id=8Gmg2o HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1; _pk_id.1.4655=3486c7a926efc9fe.1753014031.1.1753014031.1753014031.; _pk_ses.1.4655=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WgBspNyI4a5%2FlUx9YqSOFuCcyBgQfOVaRTv3DqY0kEPkdV8Y%2BT1yGxnKr1rQ2oCH%2B6tUP2qcirTJysNxcRCrsSx6wLn1FjhZMZoE5IReeUjJExKCVec6w4I1tB0Qwd70ZDI%3D"}],"group":"cf-nel","max_age":604800}
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 962269bb89b5568a-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
server-timing: cfL4;desc="?proto=QUIC&rtt=1632&min_rtt=0&rtt_var=2065&sent=211&recv=281&lost=0&retrans=0&sent_bytes=39433&recv_bytes=16435&delivery_rate=5390877&ss_exit_cwnd=14915&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=62c800eecf28e4f5&ts=2633&inflight_dur=71&x=40"
GET cdn.storageimagedisplay.com/cti/13/7c/c8/137cc8e201b2cedad58d986ae65bfac7/1708270647.jpg
200 OK 79 kB URL
cdn.storageimagedisplay.com/cti/13/7c/c8/137cc8e201b2cedad58d986ae65bfac7/1708270647.jpg
IP / ASN
45.133.44.2
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 13:54:47], progressive, precision 8, 728x90, components 3
First Seen 2024-02-21
Last Seen 2025-07-28
Times Seen 560
Size 79 kB (78744 bytes)
MD5 ac586259b46ad0eb0380efdf19895477
SHA1 88692fbf3d4df861c355996a78f64d8930fda539
SHA256 25d86635d08522d65c823e3996783f4d4bd5a7e6fd715c87534684caf989dfa1
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9
Validity Thu, 10 Jul 2025 02:33:11 GMT - Wed, 08 Oct 2025 02:33:10 GMT
GET /cti/13/7c/c8/137cc8e201b2cedad58d986ae65bfac7/1708270647.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/jpeg
content-length: 78744
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:37:35 GMT
etag: "65d2243f-13398"
expires: Tue, 22 Jul 2025 12:20:31 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/images/no-cover.png
200 OK 13 kB URL
bahaviofilm.com/themes/JOS/images/no-cover.png
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type PNG image data, 334 x 500, 8-bit colormap, non-interlaced
First Seen 2023-05-14
Last Seen 2025-07-20
Times Seen 13
Size 13 kB (13243 bytes)
MD5 d38bc38ad9ba60f9091aa2a9b3f4190f
SHA1 50296d6f3063933dab1e94a3a45890c7e94e03c0
SHA256 d5d71a61c76c68ffd2c72d45200feed7d3cbef955605895812d6f29fe42e0b11
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/images/no-cover.png HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:28 GMT
content-type: image/png
content-length: 13243
cache-control: public, max-age=604800
expires: Tue, 22 Jul 2025 13:06:18 GMT
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
age: 429250
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TCQPwrGr0B%2Br9XUE90jx6I5IT48KamMm05LZm8R%2FErq1kOqFMzcAaVtb9zIbWxIzZrxbI6CkM5jbfKphPEEMxetAaQaJjGLMliZZa%2Bc%3D"}]}
cf-ray: 962269b11eb8b4f7-OSL
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
200 OK 20 kB URL
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (20322)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 4436
Size 20 kB (20495 bytes)
MD5 6b08ddc901000d51fa1f06a35518f302
SHA1 bafe987c18cbe0587de3e6360e7da40a2885614b
SHA256 02835066969199e9924f1332f7172a5d7e552f023a20c3d8ba03bb6c51ce5be5
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
cf-ray: 962269b14b5356cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 113480
expires: Fri, 10 Jul 2026 12:20:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y2huyYZ1H5QbQkMTV78Hwi3icYR8IY1uZDx1pk6IO3ey%2BpDMsdflHApp45ksVQNVlo36P9H2jj825%2B6JReZXrLGG1XgAoa%2F%2BbH48rvUknap5iPfUXZ3B6n7tgf6d%2BDRwGrCQmxWL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/assets/js/piwik.js
200 OK 65 kB URL
bahaviofilm.com/themes/JOS/assets/js/piwik.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (1786)
First Seen 2023-03-09
Last Seen 2025-07-20
Times Seen 38
Size 65 kB (65240 bytes)
MD5 1d1482472adac0271407004d951aad9f
SHA1 fee38008e67a939d3dede459c80e3e0a098b2dff
SHA256 e6b85222b6423e7d542638ce33c4561e8e09a5ff371af41f1a5deca738516073
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/js/piwik.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/javascript
content-length: 21396
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 4341
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=0GwQ5Tqwuxc%2FY9GDesEq1vPoaSDijc1Mj6iaMJGpqSR%2FWwExv%2B2C36XioN89ecSw4135jo7XSiAWNKahx%2FWlyp3cGuR8JsGWki9IfrM%3D"}]}
cf-ray: 962269b14ef7b4f7-OSL
X-Firefox-Spdy: h2
GET bahaviofilm.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL
bahaviofilm.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (1238)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 96856
Size 1.2 kB (1239 bytes)
MD5 9e8f56e8e1806253ba01a95cfc3d392c
SHA1 a8af90d7482e1e99d03de6bf88fed2315c5dd728
SHA256 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: application/javascript
last-modified: Wed, 16 Jul 2025 06:08:05 GMT
cache-control: max-age=172800, public
content-encoding: gzip
etag: W/"687741c5-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qk2vL2ptREnJnjfJ8UQoYenPL9uvqn3seP74Dp11%2FLZKIhW77ugB8lUKKGlVxLpLwouhEh6qdFT1g322%2F2PCEHDqS8HOY9GOCcwpmnCA0DWxAyl2LbwM4qPyG4edgWwT%2BxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 962269ba3997568a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 22 Jul 2025 12:20:30 GMT
GET bahaviofilm.com/415e7ac15d75a52eaaac004b65282203/piwik.js
200 OK 170 kB URL
bahaviofilm.com/415e7ac15d75a52eaaac004b65282203/piwik.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (2177)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 170 kB (170334 bytes)
MD5 8f25abee5d6eccad3ba1b063fa884bdc
SHA1 fdf940f5ebbaacb0dfd42e1c421189ce3432caf2
SHA256 d04b87f84cf640d044e4b2370a2ecf565f261f11fb422aaefbf8db964484a9dd
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /415e7ac15d75a52eaaac004b65282203/piwik.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8J1K9XIDJTjSGWOsBa4j6Y6vGPW1K7Z5uhxinLogk4z8b%2FH38JcJpKkJdJ0n5tmC9bPyyhZQd1x51O1i5IghlSxIYuczSFyTrFkuaGNWTwV%2FtxnW%2FpfOb54q%2F177WKNtZJU%3D"}],"group":"cf-nel","max_age":604800}
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
content-encoding: br
cf-ray: 962269ba2995568a-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
server-timing: cfL4;desc="?proto=QUIC&rtt=3067&min_rtt=767&rtt_var=2020&sent=194&recv=276&lost=0&retrans=0&sent_bytes=16169&recv_bytes=16214&delivery_rate=635818&ss_exit_cwnd=14915&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=62c800eecf28e4f5&ts=2439&inflight_dur=59&x=40"
GET bahaviofilm.com/themes/JOS/assets/css/main.css
200 OK 17 kB URL
bahaviofilm.com/themes/JOS/assets/css/main.css
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with very long lines (16796)
First Seen 2023-05-31
Last Seen 2025-07-20
Times Seen 38
Size 17 kB (16797 bytes)
MD5 efc7dda803ba86fac472324449e510e9
SHA1 9df4ab3584502f712080d892aa257c5a5cedcddf
SHA256 6ad68fb9d562b031e56824f0a95be2767b6e86e7ea59c13b40914c899bd223e2
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/css/main.css HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:28 GMT
content-type: text/css
content-length: 3659
cache-control: public, max-age=604800
expires: Tue, 22 Jul 2025 11:07:46 GMT
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 436362
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=HIVOlv2vtNMYliDB%2FoT5GtWzTJr%2BoJCQw0QCSD2nyYICc9yFapTzhZRcwJ0Qibq1%2B%2BOpql2llxH7uniRl9yFXck3WgqLkGf%2B8AxUpIs%3D"}]}
cf-ray: 962269b10eaeb4f7-OSL
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/g6PGzYqXNofrrGKS7dixoc2P5M7.jpg
200 OK 5.1 kB URL
image.tmdb.org/t/p/w300/g6PGzYqXNofrrGKS7dixoc2P5M7.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 5.1 kB (5124 bytes)
MD5 4d033722f32579b8d4e8f9556b670343
SHA1 e104da86cd8032a1f2783f1d425e84cfdb5dea6b
SHA256 202ed17232fc23b2813d7fb4ef37439c292d9ee4d0c81b5945c7e407b7f41db9
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/g6PGzYqXNofrrGKS7dixoc2P5M7.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 5124
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67ef3271-1404"
last-modified: Fri, 04 Apr 2025 01:14:25 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 920
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2025 21:33:00
cdn-edgestorageid: 1049
cdn-requestid: cace03d042ea5dcebd770e8d97e3f765
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET sultrymomentarily.com/watch.767177963096.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=ab544cc298a4bfc058de08860835e23bb863a28e2e69f6d2586d8ccb55d0c67e360ca7bb5c5712f112764a64deafca534873d03c644732614d8bdcad45ec56135d875e414a3dca040de949b0d4f754d3574e7910aac7897254a5&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
200 OK 5.1 kB URL
sultrymomentarily.com/watch.767177963096.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=ab544cc298a4bfc058de08860835e23bb863a28e2e69f6d2586d8ccb55d0c67e360ca7bb5c5712f112764a64deafca534873d03c644732614d8bdcad45ec56135d875e414a3dca040de949b0d4f754d3574e7910aac7897254a5&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (4194)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 5.1 kB (5070 bytes)
MD5 1257a63440fa6745d29144a362251657
SHA1 a9f3bfaa1cbc726986f69c0725304dfc0a412576
SHA256 41b8e356157eb524c825742b9253c2378746c896c29de7e9a0f86b26a47b895b
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.767177963096.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=ab544cc298a4bfc058de08860835e23bb863a28e2e69f6d2586d8ccb55d0c67e360ca7bb5c5712f112764a64deafca534873d03c644732614d8bdcad45ec56135d875e414a3dca040de949b0d4f754d3574e7910aac7897254a5&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
Referer: https://bahaviofilm.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; u_pl23748731=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; expires=Sun, 27 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
u_pl23748708=1; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f47c78f10271b9498e72f64110d19de5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bahaviofilm.com/assets/js/tooltipster.bundle.min.js
200 OK 170 kB URL
bahaviofilm.com/assets/js/tooltipster.bundle.min.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (2177)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 170 kB (170244 bytes)
MD5 d05e95a3d02d1b435f6c01b009e692e0
SHA1 f0caaed04c6e7f2ed3eebbe61ca2e0d0a2d82940
SHA256 aba1754b07e74bd5e5407c9fc02ae6ef67ba7ee5b9233156e44c6f22dc6ee544
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /assets/js/tooltipster.bundle.min.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=O4PMU5AbADqiRwUo3y7LDKZTa9JBfbJJjyxQe%2FCQqOyB3QU%2BIGr6RexdvUxIl8sjgNZ1a%2BUI8cNJL1LJL0qaZ4BTfsTHV553FdTz%2Fu4%3D"}]}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
content-encoding: br
cf-ray: 962269b14ef3b4f7-OSL
X-Firefox-Spdy: h2
GET professionaltrafficmonitor.com/stats
200 OK 40 B URL
professionaltrafficmonitor.com/stats
IP / ASN
35.157.202.115
#16509 AMAZON-02
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 40 B (40 bytes)
MD5 203efcde27f2e652ffeb3b52d999199e
SHA1 6bb9d429a62e1029c2ad304b09bc1e0e3c7f17e6
SHA256 dad4bf0f6814ef335fd23a9a6f477dc20b8a5a6bceec0d3bb5075570ca013ac0
Certificate Info
Issuer Amazon
Subject protrafficinspector.com
Fingerprint 5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6
Validity Tue, 01 Jul 2025 00:00:00 GMT - Thu, 30 Jul 2026 23:59:59 GMT
GET /stats HTTP/1.1
Host: professionaltrafficmonitor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://bahaviofilm.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; expires=Wed, 18 Jul 2035 12:20:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/sC6CgEOQwB9Rzmkksv3x1hZ2bPH.jpg
200 OK 30 kB URL
image.tmdb.org/t/p/w300/sC6CgEOQwB9Rzmkksv3x1hZ2bPH.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 30 kB (29710 bytes)
MD5 a9ebd1ed70a1a56e2a2d8e6b056eba61
SHA1 07ab59c46d2a48949424c70f1355efc0648c193d
SHA256 f79524b104cd1144bdc9de5c9e8bcbe592f8a9a05d3c48ef4edfa51b9198acdb
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/sC6CgEOQwB9Rzmkksv3x1hZ2bPH.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 29710
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67fdce85-740e"
last-modified: Tue, 15 Apr 2025 03:12:05 GMT
cdn-storageserver: NY-703
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/14/2025 14:01:05
cdn-edgestorageid: 874
cdn-requestid: 38dd40aac3e530960785fbf600589bcf
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png
200 OK 30 kB URL
cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png
IP / ASN
45.133.44.2
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type PNG image data, 320 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2024-02-14
Last Seen 2025-07-27
Times Seen 409
Size 30 kB (30384 bytes)
MD5 2471c88a76fc28f99949311ee0826a7f
SHA1 da73b2288a199fe009115576711a2b5869b6dfe4
SHA256 913697d38c42449701edbc9076e47f75adba56e709af47e76c5b71dfa52f95d2
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9
Validity Thu, 10 Jul 2025 02:33:11 GMT - Wed, 08 Oct 2025 02:33:10 GMT
GET /cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/png
content-length: 30384
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 15:08:14 GMT
etag: "65ccd75e-76b0"
expires: Tue, 22 Jul 2025 12:20:31 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg
200 OK 38 kB URL
cdn.storageimagedisplay.com/cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg
IP / ASN
45.133.44.2
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 16:00:20], progressive, precision 8, 320x50, components 3
First Seen 2024-02-20
Last Seen 2025-07-27
Times Seen 384
Size 38 kB (37503 bytes)
MD5 051cc133b2430a8f70f322cac7339c38
SHA1 01fdfd9b95c35f86fbe8f10a2f85cb108e6e514c
SHA256 f53bba61704138e18c9373a89b36aa4cfc03b9db23db3d944f32cc67a11bfcff
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9
Validity Thu, 10 Jul 2025 02:33:11 GMT - Wed, 08 Oct 2025 02:33:10 GMT
GET /cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/jpeg
content-length: 37503
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:33:02 GMT
etag: "65d2232e-927f"
expires: Tue, 22 Jul 2025 12:20:31 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET twigentirelysailor.com/a54782d632b61a805e7c8d7449c0b807/invoke.js
200 OK 27 kB URL
twigentirelysailor.com/a54782d632b61a805e7c8d7449c0b807/invoke.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (27380), with no line terminators
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 27 kB (27380 bytes)
MD5 4de3fe5c96cdd8aae6231c8e7c71f070
SHA1 cab7e9c83f83e4d657aff3a9eaed892307d54bcc
SHA256 569ef2afc340b5a1726cc3e3d3e7dc06ce4e07e01b6ef1f0e0b63b3b00a3123e
Certificate Info
Issuer Let's Encrypt
Subject twigentirelysailor.com
Fingerprint 75:18:B1:28:BE:92:01:11:B0:9D:C2:42:65:15:34:08:33:16:94:93
Validity Tue, 24 Jun 2025 22:17:39 GMT - Mon, 22 Sep 2025 22:17:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /a54782d632b61a805e7c8d7449c0b807/invoke.js HTTP/1.1
Host: twigentirelysailor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Jul 2025 12:20:29 GMT
Content-Type: application/javascript
Content-Length: 11519
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: twigentirelysailor.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: de4744873d40a006f96115b660ab1591
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET image.tmdb.org/t/p/w300/lRVJ4GG7Osw0KlJK4MjH9rOuR5j.jpg
200 OK 20 kB URL
image.tmdb.org/t/p/w300/lRVJ4GG7Osw0KlJK4MjH9rOuR5j.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x443, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 20 kB (19716 bytes)
MD5 e1ba525c088e76a769c53527f6781574
SHA1 88baf4b1d5758155f6c537411d9e10743bbae3a0
SHA256 5b949dda3fb654b0a2860120c832b3e929bd1a22e082e1337562447622910c02
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/lRVJ4GG7Osw0KlJK4MjH9rOuR5j.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 19716
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "68046e7e-4d04"
last-modified: Sun, 20 Apr 2025 03:48:14 GMT
cdn-storageserver: NY-753
cdn-requestpullsuccess: True
cdn-fileserver: 838
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2025 13:52:48
cdn-edgestorageid: 864
cdn-requestid: 065c1990da9ef68c5c02e1de355abc11
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js
200 OK 51 kB URL
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (50395)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 4382
Size 51 kB (50676 bytes)
MD5 ce6e785579ae4cb555c9de311d1b9271
SHA1 5ef2c15b47d7290698c737676ba9c3056b45f2e8
SHA256 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 12230
cf-ray: 962269b14b5756cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-c5f4"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 234310
expires: Fri, 10 Jul 2026 12:20:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ygZtnoPQ4WWB2hvfGqAimmJVm5drPZoS46xEQfGz%2FMr1z6xejGGdg%2FG%2FxjD%2FpH5pyHatlfJNVnuTyHTmEiY9AgOsxl6ykoLcVGzbGynOQsko7Ozo9efJbr0slibBfT99WIvXQzk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/assets/js/tooltipster.bundle.min.js
200 OK 40 kB URL
bahaviofilm.com/themes/JOS/assets/js/tooltipster.bundle.min.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (32056)
First Seen 2023-03-09
Last Seen 2025-07-20
Times Seen 129
Size 40 kB (39900 bytes)
MD5 272d2c7ee21618ff3f173d8d2a08249e
SHA1 802cfb1d67a1551d4a013cd718d662032acd7725
SHA256 91c8d5acbd3f03f921b6cd2da42ce3c396e1c7bfb4dc12d34fd2db196d9c5104
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/js/tooltipster.bundle.min.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/javascript
content-length: 9800
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 4341
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CAD05Ad4ttlaDmmNKYyZ7uAduINPpsm%2FIO2L12LfSeOuVDT8e9i2D891jWeOZhjtrdYJ3wjyMK5s0uVJEdGau0gs7DVxQaA2yaZRET8%3D"}]}
cf-ray: 962269b14ef9b4f7-OSL
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js
200 OK 51 kB URL
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (50395)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 4382
Size 51 kB (50676 bytes)
MD5 ce6e785579ae4cb555c9de311d1b9271
SHA1 5ef2c15b47d7290698c737676ba9c3056b45f2e8
SHA256 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/twitter-bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 12230
cf-ray: 962269bc5b3b56cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-c5f4"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 234311
expires: Fri, 10 Jul 2026 12:20:30 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ncti3dNH%2FvUK%2B6aaqKRChK660e8ZLcetF0Cfy7bmW%2F%2BzQCZUY%2FfGnhOonqrZodYZAJLhddo2chCXSVkdY9N5AtvdwQFJNR5QTTM7z5eh3YSMLzfF%2FUXwPoeVYcT13v2ZzW7CMgZG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET skinnycrawlinglax.com/watch.290870816661.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=46a362ba900b2554e7486b0300eb41febc9a76d19bfb9d603b4682d8aba9131009dd86e382be164b2e1a8c5991bdcdb368741461fb9568cd7369fc3b4a480e1331b18ce15b5a016f311f6df18cc24433fb0df04949e2e4cd4ac2dc&sub3=group_b&tz=0&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1
200 OK 5.0 kB URL
skinnycrawlinglax.com/watch.290870816661.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=46a362ba900b2554e7486b0300eb41febc9a76d19bfb9d603b4682d8aba9131009dd86e382be164b2e1a8c5991bdcdb368741461fb9568cd7369fc3b4a480e1331b18ce15b5a016f311f6df18cc24433fb0df04949e2e4cd4ac2dc&sub3=group_b&tz=0&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1
IP / ASN
172.240.108.68
#7979 SERVERS-COM
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (4134)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 5.0 kB (5010 bytes)
MD5 4a1777fb88fa793a1fd869d909756b47
SHA1 e570987977a59c010a8df55a710d2d0d0d10e651
SHA256 ca38632a5db91de1f1823cd9d43dd58eff29c9b54658c73a05df06e5aa463aff
Certificate Info
Issuer Let's Encrypt
Subject skinnycrawlinglax.com
Fingerprint 4A:6A:48:C8:5B:C5:2B:2E:9C:03:AF:BF:4C:E6:10:23:E2:7B:EA:97
Validity Sat, 28 Jun 2025 22:21:33 GMT - Fri, 26 Sep 2025 22:21:32 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.290870816661.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=46a362ba900b2554e7486b0300eb41febc9a76d19bfb9d603b4682d8aba9131009dd86e382be164b2e1a8c5991bdcdb368741461fb9568cd7369fc3b4a480e1331b18ce15b5a016f311f6df18cc24433fb0df04949e2e4cd4ac2dc&sub3=group_b&tz=0&uuid=2235cf6a-e96c-4f1c-8b41-bbd47691cec4%3A2%3A1 HTTP/1.1
Host: skinnycrawlinglax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
Referer: https://bahaviofilm.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://bahaviofilm.com
access-control-allow-credentials: true
set-cookie: uid_id2=2235cf6a-e96c-4f1c-8b41-bbd47691cec4:2:1; expires=Sun, 27 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
u_pl23748708=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 10
Host: skinnycrawlinglax.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 879a867c3cf87c2cb47a6596995736cf
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET bahaviofilm.com/themes/JOS/assets/img/favicon-16x16.png
200 OK 508 B URL
bahaviofilm.com/themes/JOS/assets/img/favicon-16x16.png
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
First Seen 2025-06-29
Last Seen 2025-07-20
Times Seen 6
Size 508 B (508 bytes)
MD5 03838b2c90d627a9f0d86ec502329bc3
SHA1 3cc5c4e72c5fa093b880e94811e879fb4035930d
SHA256 626d9156e523a095416023c99185c1e851bf395ff633a00094ee0c07c26480a2
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/img/favicon-16x16.png HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1; _pk_id.1.4655=3486c7a926efc9fe.1753014031.1.1753014031.1753014031.; _pk_ses.1.4655=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/png
content-length: 508
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dn1LqoAk0V%2BD0l2kuhGYtnfX3cyNX5LfxNrFxNrNzUKzC1u8f6g0ogNGUpCHf5gcCAklMqFGjG85wtKXqZTK86fcDCAQh2QxUV1jFKMDOTOW8Gr9ANRCqBg7vws%2F6Y526vU%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Sat, 26 Jul 2025 18:34:19 GMT
last-modified: Fri, 30 May 2025 07:56:55 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
age: 63971
cf-cache-status: HIT
cf-ray: 962269be6a1c568a-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=1418&min_rtt=0&rtt_var=1533&sent=229&recv=285&lost=0&retrans=0&sent_bytes=60560&recv_bytes=17446&delivery_rate=5390877&ss_exit_cwnd=14915&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=62c800eecf28e4f5&ts=2663&inflight_dur=96&x=40"
GET image.tmdb.org/t/p/w300/rFp4xpTeIZwE4oxeM1LsB59q10W.jpg
200 OK 30 kB URL
image.tmdb.org/t/p/w300/rFp4xpTeIZwE4oxeM1LsB59q10W.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x426, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 30 kB (30188 bytes)
MD5 36053ba1502afeb6931940dc40455272
SHA1 3e2ece3b094c094eaf3f8ba070f451ef178045c5
SHA256 9eb570966aed9ef2dac6f8a867ce808291bd46a40174c3cf54bc09a746f3b04f
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/rFp4xpTeIZwE4oxeM1LsB59q10W.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 30188
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6850fcec-75ec"
last-modified: Tue, 17 Jun 2025 05:28:12 GMT
cdn-storageserver: NY-703
cdn-requestpullsuccess: True
cdn-fileserver: 705
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/20/2025 09:04:55
cdn-edgestorageid: 864
cdn-requestid: 6c815a072f0cc9fed46e9201f7bb3d75
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/pGCwrW6d859RGAZMJxT1pt06YCL.jpg
200 OK 28 kB URL
image.tmdb.org/t/p/w300/pGCwrW6d859RGAZMJxT1pt06YCL.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 28 kB (28452 bytes)
MD5 310f200d8db0f89b27832c6d12dabbaa
SHA1 bea08f03ebc498d2e8a0dc6f56c8e29ca922f822
SHA256 43e78f41417549d1e35b32633bcf353d9e7edc65064c2650d7f01a424c2032c3
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/pGCwrW6d859RGAZMJxT1pt06YCL.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 28452
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6801ea73-6f24"
last-modified: Fri, 18 Apr 2025 06:00:19 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 917
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 06/09/2025 09:33:40
cdn-edgestorageid: 1076
cdn-requestid: ca461f1062ed18558e33068163c1f1d7
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/assets/img/apple-touch-icon.png
200 OK 23 kB URL
bahaviofilm.com/themes/JOS/assets/img/apple-touch-icon.png
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-06-29
Last Seen 2025-07-20
Times Seen 6
Size 23 kB (23438 bytes)
MD5 285ecfeb2111e54789b4bc10f330634b
SHA1 bd3c7a898e2b48e3c0320845594017d5e75a0432
SHA256 faa2d99430e64d14f0808a6398a1e3041fbc8e884d1f693daa33f90ba195a198
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/img/apple-touch-icon.png HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1; _pk_id.1.4655=3486c7a926efc9fe.1753014031.1.1753014031.1753014031.; _pk_ses.1.4655=*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/png
content-length: 23438
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U1PqNGBAh52faoEuUabquh8stH%2FlCqRweQrck1TH1InXbkXl1ef7aebW%2FOBCpGuP5dJkyFQVM7ol1sOOD82fI3ZQQry07KwWWJetTBqxV5OAjP3tvYEvU6wlYvVdkFhZymo%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=604800
expires: Wed, 23 Jul 2025 22:28:23 GMT
last-modified: Fri, 30 May 2025 07:56:55 GMT
accept-ranges: bytes
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 309127
cf-cache-status: HIT
cf-ray: 962269be6a1b568a-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfL4;desc="?proto=QUIC&rtt=1418&min_rtt=0&rtt_var=1533&sent=223&recv=285&lost=0&retrans=0&sent_bytes=52574&recv_bytes=17446&delivery_rate=5390877&ss_exit_cwnd=14915&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=62c800eecf28e4f5&ts=2661&inflight_dur=96&x=40"
GET skinnycrawlinglax.com/impr.gif?sid=H4sIAAAAAAAC_1RTz4scxRev3iTfyxciinrwNAcPKs5sVXd1T7chiDGuBDc_SCIRcoj1c7ayPV1tVff0ZPEQjEjEy-LJY--bTRZjFL3oSZBZTwaEjKc9ZD0I_gNCzjKbhYnv8N771KcKPq_4vM-26n0UQc32Lpy1GybP2XLcw51XrphC2sZ3zl3uENzDJzpXTJHQE53xPLnRGySiPfxq510l1u1yiAnGBJPOinFK2_HyAQumvJ-RXoZ7NOyRmMLY_Rf7OgDPApCjffQcGDl75i99FYyYQjH8_rTy65UtX39nWOessg5Gcuf9Yr2wTQHDRatdALrYObwN1s8Q-moJbLFzOAHY0fZ8AuBmhpZefAS82DmUCXx054lSnoMqgMv_QzOagsp3wbApCHsLjHyIAISEc-ehGN49Z13Dbjxh2ZydoaOP_wHTzNDRR89DMfzuVG7GnUs2rytjCw9j3YIZT8EMplDWu1BtLIFpdkFUn4CRv6Plx6tQDLfP-9yCkXsvh2EUC52wrsoS0aWaiG7KKelyLmk_yYhQgh58kdFTYH4Jah9AbQKodQB1GcBQ7nUoTqkgLEp0JkUfU0apVBxnaYgxy0QfajHXvglVuQki3wThbkLpbsK6-XKGguDkw-gDcPUv4Nf2fqQJi5KQswxjHsYxVX2aJhxHGCtOiVZcZKyfSJJxzTOZ4IjTJA1lyjjLSEQwzqRMExWlIVckoTxUhKUizjLCpZA8StI-JTQhmmdxkgrZj5JMi4hTRlOsSBQRTlKhSMxjhkmiI0J0IjVJhQgpjSLNsdSYZjRToaJCUiZCKcDLAHyFYCRbaBSCxiNoGILGIGgqBM2ovSNzH_r2rsx9zclhDQ9rtDNwti6v8YmtBlvsjq0GqkDA3CY42W6b8iN_C0R1ZLKhvZzYeWK8-nalG9IUd53rJtfIhHHZbpX76Nm5U4LrH0pYV3udlGktOU21YimPqeQaxyQOZUioVmFKwJsWjF8C5gPYMDN08uoxKM0MHfv0J-BsF3y-C8IEwOoOsGYShRjYGsQYNop7163Ozbg3XwZpWyiro1DdCLbyffTSgV1Xz34OSjxAhwHCtVC6Fq6bXxEM8tuTi7ZB2xdt49EP58vKDM0Gm1v5UsUq9b9776kbjXXyzGm_-fVbYk7M2_uXla9WWSFNMfDom1NGSuVWrBMK_XzGX1H8Qu3XTtWuqMvVC2-vnBmWTnlvbDEFZh6q30CYGTr-9-hgSV_74gUwbgqubmFYP6W0vAm-XGBvEbh8gXmJoKnbiQv54jA3CHK1wIy34J_CfNFPHJu_Zqbd8rdh4AJg1S0ohi2MXAujvAWWb4Kvj0yq0j1484_oIIDnwYTnDm3z3M15s9fRkQoFxmk_IVGqFYmoFDpOaSYThqNIQeVnax__efzfAAAA__8GEfExfQUAAA==
200 OK 0 B URL
skinnycrawlinglax.com/impr.gif?sid=H4sIAAAAAAAC_1RTz4scxRev3iTfyxciinrwNAcPKs5sVXd1T7chiDGuBDc_SCIRcoj1c7ayPV1tVff0ZPEQjEjEy-LJY--bTRZjFL3oSZBZTwaEjKc9ZD0I_gNCzjKbhYnv8N771KcKPq_4vM-26n0UQc32Lpy1GybP2XLcw51XrphC2sZ3zl3uENzDJzpXTJHQE53xPLnRGySiPfxq510l1u1yiAnGBJPOinFK2_HyAQumvJ-RXoZ7NOyRmMLY_Rf7OgDPApCjffQcGDl75i99FYyYQjH8_rTy65UtX39nWOessg5Gcuf9Yr2wTQHDRatdALrYObwN1s8Q-moJbLFzOAHY0fZ8AuBmhpZefAS82DmUCXx054lSnoMqgMv_QzOagsp3wbApCHsLjHyIAISEc-ehGN49Z13Dbjxh2ZydoaOP_wHTzNDRR89DMfzuVG7GnUs2rytjCw9j3YIZT8EMplDWu1BtLIFpdkFUn4CRv6Plx6tQDLfP-9yCkXsvh2EUC52wrsoS0aWaiG7KKelyLmk_yYhQgh58kdFTYH4Jah9AbQKodQB1GcBQ7nUoTqkgLEp0JkUfU0apVBxnaYgxy0QfajHXvglVuQki3wThbkLpbsK6-XKGguDkw-gDcPUv4Nf2fqQJi5KQswxjHsYxVX2aJhxHGCtOiVZcZKyfSJJxzTOZ4IjTJA1lyjjLSEQwzqRMExWlIVckoTxUhKUizjLCpZA8StI-JTQhmmdxkgrZj5JMi4hTRlOsSBQRTlKhSMxjhkmiI0J0IjVJhQgpjSLNsdSYZjRToaJCUiZCKcDLAHyFYCRbaBSCxiNoGILGIGgqBM2ovSNzH_r2rsx9zclhDQ9rtDNwti6v8YmtBlvsjq0GqkDA3CY42W6b8iN_C0R1ZLKhvZzYeWK8-nalG9IUd53rJtfIhHHZbpX76Nm5U4LrH0pYV3udlGktOU21YimPqeQaxyQOZUioVmFKwJsWjF8C5gPYMDN08uoxKM0MHfv0J-BsF3y-C8IEwOoOsGYShRjYGsQYNop7163Ozbg3XwZpWyiro1DdCLbyffTSgV1Xz34OSjxAhwHCtVC6Fq6bXxEM8tuTi7ZB2xdt49EP58vKDM0Gm1v5UsUq9b9776kbjXXyzGm_-fVbYk7M2_uXla9WWSFNMfDom1NGSuVWrBMK_XzGX1H8Qu3XTtWuqMvVC2-vnBmWTnlvbDEFZh6q30CYGTr-9-hgSV_74gUwbgqubmFYP6W0vAm-XGBvEbh8gXmJoKnbiQv54jA3CHK1wIy34J_CfNFPHJu_Zqbd8rdh4AJg1S0ohi2MXAujvAWWb4Kvj0yq0j1484_oIIDnwYTnDm3z3M15s9fRkQoFxmk_IVGqFYmoFDpOaSYThqNIQeVnax__efzfAAAA__8GEfExfQUAAA==
IP / ASN
172.240.108.68
#7979 SERVERS-COM
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject skinnycrawlinglax.com
Fingerprint 4A:6A:48:C8:5B:C5:2B:2E:9C:03:AF:BF:4C:E6:10:23:E2:7B:EA:97
Validity Sat, 28 Jun 2025 22:21:33 GMT - Fri, 26 Sep 2025 22:21:32 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC_1RTz4scxRev3iTfyxciinrwNAcPKs5sVXd1T7chiDGuBDc_SCIRcoj1c7ayPV1tVff0ZPEQjEjEy-LJY--bTRZjFL3oSZBZTwaEjKc9ZD0I_gNCzjKbhYnv8N771KcKPq_4vM-26n0UQc32Lpy1GybP2XLcw51XrphC2sZ3zl3uENzDJzpXTJHQE53xPLnRGySiPfxq510l1u1yiAnGBJPOinFK2_HyAQumvJ-RXoZ7NOyRmMLY_Rf7OgDPApCjffQcGDl75i99FYyYQjH8_rTy65UtX39nWOessg5Gcuf9Yr2wTQHDRatdALrYObwN1s8Q-moJbLFzOAHY0fZ8AuBmhpZefAS82DmUCXx054lSnoMqgMv_QzOagsp3wbApCHsLjHyIAISEc-ehGN49Z13Dbjxh2ZydoaOP_wHTzNDRR89DMfzuVG7GnUs2rytjCw9j3YIZT8EMplDWu1BtLIFpdkFUn4CRv6Plx6tQDLfP-9yCkXsvh2EUC52wrsoS0aWaiG7KKelyLmk_yYhQgh58kdFTYH4Jah9AbQKodQB1GcBQ7nUoTqkgLEp0JkUfU0apVBxnaYgxy0QfajHXvglVuQki3wThbkLpbsK6-XKGguDkw-gDcPUv4Nf2fqQJi5KQswxjHsYxVX2aJhxHGCtOiVZcZKyfSJJxzTOZ4IjTJA1lyjjLSEQwzqRMExWlIVckoTxUhKUizjLCpZA8StI-JTQhmmdxkgrZj5JMi4hTRlOsSBQRTlKhSMxjhkmiI0J0IjVJhQgpjSLNsdSYZjRToaJCUiZCKcDLAHyFYCRbaBSCxiNoGILGIGgqBM2ovSNzH_r2rsx9zclhDQ9rtDNwti6v8YmtBlvsjq0GqkDA3CY42W6b8iN_C0R1ZLKhvZzYeWK8-nalG9IUd53rJtfIhHHZbpX76Nm5U4LrH0pYV3udlGktOU21YimPqeQaxyQOZUioVmFKwJsWjF8C5gPYMDN08uoxKM0MHfv0J-BsF3y-C8IEwOoOsGYShRjYGsQYNop7163Ozbg3XwZpWyiro1DdCLbyffTSgV1Xz34OSjxAhwHCtVC6Fq6bXxEM8tuTi7ZB2xdt49EP58vKDM0Gm1v5UsUq9b9776kbjXXyzGm_-fVbYk7M2_uXla9WWSFNMfDom1NGSuVWrBMK_XzGX1H8Qu3XTtWuqMvVC2-vnBmWTnlvbDEFZh6q30CYGTr-9-hgSV_74gUwbgqubmFYP6W0vAm-XGBvEbh8gXmJoKnbiQv54jA3CHK1wIy34J_CfNFPHJu_Zqbd8rdh4AJg1S0ohi2MXAujvAWWb4Kvj0yq0j1484_oIIDnwYTnDm3z3M15s9fRkQoFxmk_IVGqFYmoFDpOaSYThqNIQeVnax__efzfAAAA__8GEfExfQUAAA== HTTP/1.1
Host: skinnycrawlinglax.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoyMzc0ODcwOCwiayI6IjhhZmZkYjQ4ZmVhOGI1NGRiZjA1MTUyZDIxNGZlMjgxIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MDIwOTk3LCJwaWQiOjM2MTY1NSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxLCJhaWQiOjMyLCJwdCI6NCwicGsiOiJ4M3hhbTdhbXdqIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjI2NjU2MTExNSwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEzNjkyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMzQuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2JhaGF2aW9maWxtLmNvbS8_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; uid_id2=2235cf6a-e96c-4f1c-8b41-bbd47691cec4:2:1; pdhtkv=true; uncs=1; pdhtkv32=true; uncs32=1; u_pl23748708=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
access-control-allow-origin: *
vary: Origin
access-control-allow-credentials: true
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 6
Host: skinnycrawlinglax.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 43f5bcdf80433e7ace19acacc1f111e7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET bahaviofilm.com/themes/JOS/assets/css/tooltipster.bundle.min.css
200 OK 6.5 kB URL
bahaviofilm.com/themes/JOS/assets/css/tooltipster.bundle.min.css
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with very long lines (6495), with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 4604
Size 6.5 kB (6495 bytes)
MD5 b15ef24270546e5fe896d3ea387ea134
SHA1 63910103e8cc5e4bdeb2c289cfbf41f89966ea5b
SHA256 41ce2509fa9959868717986010e16b6334885fd46bc64d0d3c745a73ed3c41e4
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/css/tooltipster.bundle.min.css HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:28 GMT
content-type: text/css
content-length: 989
cache-control: public, max-age=604800
expires: Wed, 23 Jul 2025 21:53:14 GMT
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 311234
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=5aCgqqs2usP3%2BqKpRKpcAy5rCD%2BArhL8XW515WKfvEVrDrb8NziJfk9qjQrjCT8gwNvBcxuyqDVjH%2BBKV4IvHCY%2FKk5CpBL%2FQBz5L7c%3D"}]}
cf-ray: 962269b10eb2b4f7-OSL
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/f0bU7yVmB5pz3zgKCMewC08g7CX.jpg
200 OK 12 kB URL
image.tmdb.org/t/p/w300/f0bU7yVmB5pz3zgKCMewC08g7CX.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 12 kB (11762 bytes)
MD5 bd84ccb72fc018fda72ece1ca3487d04
SHA1 7c226601498e9317783dc4b58dfec73a8a965347
SHA256 41fb87b061a112660f078b76d1064891e9f1da0c43d7ac995aa86e31b260d245
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/f0bU7yVmB5pz3zgKCMewC08g7CX.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 11762
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67ee2d92-2df2"
last-modified: Thu, 03 Apr 2025 06:41:22 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 793
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/20/2025 09:04:55
cdn-edgestorageid: 1053
cdn-requestid: 7822c7245f05298fafda360b36c895ef
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET twigentirelysailor.com/95673bf8da131c2a04f1986cfce5ba49/invoke.js
200 OK 27 kB URL
twigentirelysailor.com/95673bf8da131c2a04f1986cfce5ba49/invoke.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (27164), with no line terminators
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 27 kB (27164 bytes)
MD5 749ab19f712c4980ed1ad1346ee852a4
SHA1 c294f860e9a31bbef8af41a4806c5c8208ed8b31
SHA256 2d8f645f37cb0331a66eb86ff2f666b814e3a787d572a62f988cceed0f230e00
Certificate Info
Issuer Let's Encrypt
Subject twigentirelysailor.com
Fingerprint 75:18:B1:28:BE:92:01:11:B0:9D:C2:42:65:15:34:08:33:16:94:93
Validity Tue, 24 Jun 2025 22:17:39 GMT - Mon, 22 Sep 2025 22:17:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /95673bf8da131c2a04f1986cfce5ba49/invoke.js HTTP/1.1
Host: twigentirelysailor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Jul 2025 12:20:29 GMT
Content-Type: application/javascript
Content-Length: 11450
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_F-2480-rr-7=1; expires=Sun, 20 Jul 2025 12:20:29 GMT; secure; SameSite=None
Host: twigentirelysailor.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2d544a8843ec18de1992578f809c5527
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 87 kB URL
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67254
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
cf-ray: 962269bb39d456cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 109183
expires: Fri, 10 Jul 2026 12:20:30 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ANJ%2F9pyz3exBzsClFdcil6V5CtRDrs8fajf%2FnMeIWtT7tvF%2Ba7Yk5fRODmeyNUQF7HSLCauuIYc5mJ0E4rrvatQ2g5o8iHxzAcr7nGq8dB8grzKyMFGKi94Yg4ARDZFYcNBEO7eH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 31 kB URL
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with very long lines (30837)
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 113145
Size 31 kB (31000 bytes)
MD5 269550530cc127b6aa5a35925a7de6ce
SHA1 512c7d79033e3028a9be61b540cf1a6870c896f8
SHA256 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/css; charset=utf-8
content-length: 5631
cf-ray: 962269b15b6456cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 111065
expires: Fri, 10 Jul 2026 12:20:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6zOZV3Sb1lY3M57ZcpXC2aS8Mzyr5331TMIikcm8Vert5CVXb2QFj7hMFFyZnVjBe5kDJwFShaC2XAul4gbgUJJFegcJ80WrINGuW271haAMtLQP4L%2BXeamc6rr7Jbp3kh9OSSwl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/83hP8JXrZY5Hf6IBkG8USFzf3K2.jpg
200 OK 9.7 kB URL
image.tmdb.org/t/p/w300/83hP8JXrZY5Hf6IBkG8USFzf3K2.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x448, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 9.7 kB (9662 bytes)
MD5 685b4467b31d2218e7062b9749afbc28
SHA1 607c15424c6b82343f3aaeb062e47764866452e9
SHA256 32ba027d22f876ff9a73dcfd1251b9ec56d3fc575febe98c30f1a47866dc4834
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/83hP8JXrZY5Hf6IBkG8USFzf3K2.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 9662
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67f899f4-25be"
last-modified: Fri, 11 Apr 2025 04:26:28 GMT
cdn-storageserver: NY-703
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.30
cdn-requestpullcode: 200
cdn-cachedat: 06/23/2025 06:43:52
cdn-edgestorageid: 874
cdn-requestid: 7fd1cab0e3877d1ec1bc3afb2778abcb
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/fozkTh3PQsHswnNFL03mVg9xU2u.jpg
200 OK 19 kB URL
image.tmdb.org/t/p/w300/fozkTh3PQsHswnNFL03mVg9xU2u.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 19 kB (18574 bytes)
MD5 ad720d1dbe4664c6bdc0522fa38b62bd
SHA1 32d90cef54d19e34f4baa5f67e1387b469462001
SHA256 22c44e710f1a5ad71a3e5f40271dc64766ae2c560e715bd76f3500f815e77929
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/fozkTh3PQsHswnNFL03mVg9xU2u.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 18574
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67f0cecc-488e"
last-modified: Sat, 05 Apr 2025 06:33:48 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 629
perma-cache: HIT
cdn-proxyver: 1.31
cdn-requestpullcode: 200
cdn-cachedat: 07/11/2025 14:07:13
cdn-edgestorageid: 752
cdn-requestid: 50b546a5232d79db91de9e5417baf023
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/iEEtQs1mPz3kvvaEFR7HVnME9Or.jpg
200 OK 21 kB URL
image.tmdb.org/t/p/w300/iEEtQs1mPz3kvvaEFR7HVnME9Or.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x400, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 21 kB (20768 bytes)
MD5 33efe44baeae30698df96f3acca0ba50
SHA1 fbbab0c29a0c19e61878f9a68ca5031987afe281
SHA256 9bf0f768c9c35c3dbd4de14f8102b7daf0359896324c4c2f77e1ca51562f34b9
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/iEEtQs1mPz3kvvaEFR7HVnME9Or.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 20768
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6806d32a-5120"
last-modified: Mon, 21 Apr 2025 23:22:18 GMT
cdn-storageserver: NY-703
cdn-requestpullsuccess: True
cdn-fileserver: 919
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 06/07/2025 02:00:46
cdn-edgestorageid: 723
cdn-requestid: aba1a75bc9cca1362f125b70f36a5243
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/kqVmw2kBnRJodq1pnObkRvRfjCa.jpg
200 OK 17 kB URL
image.tmdb.org/t/p/w300/kqVmw2kBnRJodq1pnObkRvRfjCa.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 17 kB (16690 bytes)
MD5 4e81ec8287a2c993f9d1d6939eea2cc3
SHA1 9493324bd87579076ec803db561aba711690e7da
SHA256 e64985e783d649a35a11777978ef93fbe91eacf0fc4c17774056da1e4feda1a5
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/kqVmw2kBnRJodq1pnObkRvRfjCa.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 16690
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "68060fb0-4132"
last-modified: Mon, 21 Apr 2025 09:28:16 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 754
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 06/09/2025 16:34:37
cdn-edgestorageid: 1048
cdn-requestid: 087c9882f0845afdd068d6578cc3087c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
200 OK 20 kB URL
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (20322)
First Seen 2023-03-07
Last Seen 2025-08-01
Times Seen 4436
Size 20 kB (20495 bytes)
MD5 6b08ddc901000d51fa1f06a35518f302
SHA1 bafe987c18cbe0587de3e6360e7da40a2885614b
SHA256 02835066969199e9924f1332f7172a5d7e552f023a20c3d8ba03bb6c51ce5be5
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
cf-ray: 962269bc1ae656cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 113481
expires: Fri, 10 Jul 2026 12:20:30 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DgEyOYVwhgwjqtl97hkvr2lNcrhzCz94AaWBMurDzZUz3ffSnuTRyXePsvjxGKNs6sCBtlBDPN4kDbBoVZwYcOcv2oAzXXjXtsN%2B4j7xW4OIYPMmx7Lap1Svyl80bh3EfBPX%2FFgq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET sultrymomentarily.com/impr.gif?sid=H4sIAAAAAAAC_1RTz4sc1Ra-NUne5sEL7_F04aoXIhqcnltV91ZVG4IY40hwTGISiZBFvL-q52aq65b3VnV1BsFgVLIcXLmsPt2Z0RhFQdCNID2uDAhpFzKLjAv_BCFrqc7AxAN1zvnOdwq-cznnk3G1j0Ko2N6FN82mzjK2Qru48_wVnUtTu865yx0fd_HJzhWdR-RkZ9Q6O3zJD0kXv9B5XYkNsxJgH2Mf-51VbVVqRisLFnRxr-d3e7hLgq5PCYzsP7GrPHDMAzncR_8DLefH_0yvghYzyAffnFFuozTFi68NqoyVxsJQ7rydb-SmzmFwmKbWgzTfOegG4-YIfbYEJt85mADMcNpOAFzP0dLTD4HnOwcygQ_vPFbKM1A5cPlvqIczUNkuaDYDYW6Blg8QgJBw7jzkg-1zxtbsxmOWtewcHX30F-h6jo4-_D_kg69PZ3rUuWSyqtQmdzBKG9CjGej-DIpqF8rNJdD1LojyQ9DyV7TyaA3ywfS8ywxoufesCGKlWEqWA5ayZUITssz8Hl_GNAwo4ymOI7x4Ip3OgDkPqvbTHlSpB1XhwUDudQhOiPBZGKU9KWJMGCFScdxLAoxZT8RQiVb7FpTFFohsC4T9eLvKhQvisX-vulZkQRiTJA79sb9dyPVyYzgtbaWmbc_Y__xxKYgXRSjsTdjQn86R5516EL4DtvoJ3Pred4xTQoQIegkjPBWYJlLhJIlwElIVhJwnUciCRAUq6qWRDGgSyUQITqnEIopVGGHBYs6poLEfpL4fxBFhEZGKpYLRsBUocSgiQuIwiHwiEy4Fk4QqQSM_pDKJqSI-YaEUDBMsVY_0OJYkjSmRIY2Jins-ZkzESS8OKGEUnFwCV86R99YHMJQN1ApB7RDUDEGtEdQlgnrY3JGZC1yzLTNXcf8gBgcx3OlbUxXX-MSU_TG7Y8q-yhEwuwVWNlNdvOdugSiPTDZTJyemdYyXX60uByTBy9YuR9f8CeOyGRf76L_tknnX35WwofY6CUtTyUmSKpZwSiRPMfVpIAOfpCpIfHC6Ae2WFquxqefo1NVjUOg5OvbR98DZLrhsF4T2gFUdYPUkDDCwdaAYNvO7102a6VG3vSNpGijKo1De8MbZPnpmselrzz0FStxHBwbCNlDYBq7rnxH0s9uTi6ZG04umdujb80WpB3qTtVdwqWSl-tfdN9SN2lh59ozb-uIV0RJteu-ycuUay6XO-w59eVpLqeyqsUKhH8-6K4pfqNz66crmVbF24dXVs4PCKue0yWfA9AP1Cwg9R__5_cTivk-4H0DbGdiqgUH1hNLiJrjiEDuDwGaHmBcI6qqZ2IAfFjONIFOHmPEG3BOYH-YTy9q_mW7G7jb0rQesvAX5oIGhbWCYNcCyLXDVkUlZ2Psv_xYuDHjmTXhm0ZRntuX1XicNVSAwTuLID5NU-SGRIqUJ6cmI4TBUULr5-vt_HP87AAD__yURXbC4BQAA
200 OK 0 B URL
sultrymomentarily.com/impr.gif?sid=H4sIAAAAAAAC_1RTz4sc1Ra-NUne5sEL7_F04aoXIhqcnltV91ZVG4IY40hwTGISiZBFvL-q52aq65b3VnV1BsFgVLIcXLmsPt2Z0RhFQdCNID2uDAhpFzKLjAv_BCFrqc7AxAN1zvnOdwq-cznnk3G1j0Ko2N6FN82mzjK2Qru48_wVnUtTu865yx0fd_HJzhWdR-RkZ9Q6O3zJD0kXv9B5XYkNsxJgH2Mf-51VbVVqRisLFnRxr-d3e7hLgq5PCYzsP7GrPHDMAzncR_8DLefH_0yvghYzyAffnFFuozTFi68NqoyVxsJQ7rydb-SmzmFwmKbWgzTfOegG4-YIfbYEJt85mADMcNpOAFzP0dLTD4HnOwcygQ_vPFbKM1A5cPlvqIczUNkuaDYDYW6Blg8QgJBw7jzkg-1zxtbsxmOWtewcHX30F-h6jo4-_D_kg69PZ3rUuWSyqtQmdzBKG9CjGej-DIpqF8rNJdD1LojyQ9DyV7TyaA3ywfS8ywxoufesCGKlWEqWA5ayZUITssz8Hl_GNAwo4ymOI7x4Ip3OgDkPqvbTHlSpB1XhwUDudQhOiPBZGKU9KWJMGCFScdxLAoxZT8RQiVb7FpTFFohsC4T9eLvKhQvisX-vulZkQRiTJA79sb9dyPVyYzgtbaWmbc_Y__xxKYgXRSjsTdjQn86R5516EL4DtvoJ3Pred4xTQoQIegkjPBWYJlLhJIlwElIVhJwnUciCRAUq6qWRDGgSyUQITqnEIopVGGHBYs6poLEfpL4fxBFhEZGKpYLRsBUocSgiQuIwiHwiEy4Fk4QqQSM_pDKJqSI-YaEUDBMsVY_0OJYkjSmRIY2Jins-ZkzESS8OKGEUnFwCV86R99YHMJQN1ApB7RDUDEGtEdQlgnrY3JGZC1yzLTNXcf8gBgcx3OlbUxXX-MSU_TG7Y8q-yhEwuwVWNlNdvOdugSiPTDZTJyemdYyXX60uByTBy9YuR9f8CeOyGRf76L_tknnX35WwofY6CUtTyUmSKpZwSiRPMfVpIAOfpCpIfHC6Ae2WFquxqefo1NVjUOg5OvbR98DZLrhsF4T2gFUdYPUkDDCwdaAYNvO7102a6VG3vSNpGijKo1De8MbZPnpmselrzz0FStxHBwbCNlDYBq7rnxH0s9uTi6ZG04umdujb80WpB3qTtVdwqWSl-tfdN9SN2lh59ozb-uIV0RJteu-ycuUay6XO-w59eVpLqeyqsUKhH8-6K4pfqNz66crmVbF24dXVs4PCKue0yWfA9AP1Cwg9R__5_cTivk-4H0DbGdiqgUH1hNLiJrjiEDuDwGaHmBcI6qqZ2IAfFjONIFOHmPEG3BOYH-YTy9q_mW7G7jb0rQesvAX5oIGhbWCYNcCyLXDVkUlZ2Psv_xYuDHjmTXhm0ZRntuX1XicNVSAwTuLID5NU-SGRIqUJ6cmI4TBUULr5-vt_HP87AAD__yURXbC4BQAA
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC_1RTz4sc1Ra-NUne5sEL7_F04aoXIhqcnltV91ZVG4IY40hwTGISiZBFvL-q52aq65b3VnV1BsFgVLIcXLmsPt2Z0RhFQdCNID2uDAhpFzKLjAv_BCFrqc7AxAN1zvnOdwq-cznnk3G1j0Ko2N6FN82mzjK2Qru48_wVnUtTu865yx0fd_HJzhWdR-RkZ9Q6O3zJD0kXv9B5XYkNsxJgH2Mf-51VbVVqRisLFnRxr-d3e7hLgq5PCYzsP7GrPHDMAzncR_8DLefH_0yvghYzyAffnFFuozTFi68NqoyVxsJQ7rydb-SmzmFwmKbWgzTfOegG4-YIfbYEJt85mADMcNpOAFzP0dLTD4HnOwcygQ_vPFbKM1A5cPlvqIczUNkuaDYDYW6Blg8QgJBw7jzkg-1zxtbsxmOWtewcHX30F-h6jo4-_D_kg69PZ3rUuWSyqtQmdzBKG9CjGej-DIpqF8rNJdD1LojyQ9DyV7TyaA3ywfS8ywxoufesCGKlWEqWA5ayZUITssz8Hl_GNAwo4ymOI7x4Ip3OgDkPqvbTHlSpB1XhwUDudQhOiPBZGKU9KWJMGCFScdxLAoxZT8RQiVb7FpTFFohsC4T9eLvKhQvisX-vulZkQRiTJA79sb9dyPVyYzgtbaWmbc_Y__xxKYgXRSjsTdjQn86R5516EL4DtvoJ3Pred4xTQoQIegkjPBWYJlLhJIlwElIVhJwnUciCRAUq6qWRDGgSyUQITqnEIopVGGHBYs6poLEfpL4fxBFhEZGKpYLRsBUocSgiQuIwiHwiEy4Fk4QqQSM_pDKJqSI-YaEUDBMsVY_0OJYkjSmRIY2Jins-ZkzESS8OKGEUnFwCV86R99YHMJQN1ApB7RDUDEGtEdQlgnrY3JGZC1yzLTNXcf8gBgcx3OlbUxXX-MSU_TG7Y8q-yhEwuwVWNlNdvOdugSiPTDZTJyemdYyXX60uByTBy9YuR9f8CeOyGRf76L_tknnX35WwofY6CUtTyUmSKpZwSiRPMfVpIAOfpCpIfHC6Ae2WFquxqefo1NVjUOg5OvbR98DZLrhsF4T2gFUdYPUkDDCwdaAYNvO7102a6VG3vSNpGijKo1De8MbZPnpmselrzz0FStxHBwbCNlDYBq7rnxH0s9uTi6ZG04umdujb80WpB3qTtVdwqWSl-tfdN9SN2lh59ozb-uIV0RJteu-ycuUay6XO-w59eVpLqeyqsUKhH8-6K4pfqNz66crmVbF24dXVs4PCKue0yWfA9AP1Cwg9R__5_cTivk-4H0DbGdiqgUH1hNLiJrjiEDuDwGaHmBcI6qqZ2IAfFjONIFOHmPEG3BOYH-YTy9q_mW7G7jb0rQesvAX5oIGhbWCYNcCyLXDVkUlZ2Psv_xYuDHjmTXhm0ZRntuX1XicNVSAwTuLID5NU-SGRIqUJ6cmI4TBUULr5-vt_HP87AAD__yURXbC4BQAA HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; u_pl23748731=1; pdhtkv23=true; uncs23=1; u_pl25350335=1; pdhtkv32=true; uncs32=1; u_pl23748708=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:31 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Origin: *
Vary: Origin
Access-Control-Allow-Credentials: true
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 12fe339e3a6f1d36633e21fdd1df4aa8
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET bahaviofilm.com/?s=alice
200 OK 112 kB URL
bahaviofilm.com/?s=alice
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (2177)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 112 kB (111811 bytes)
MD5 05c4b306cf245c5269a2119ed54058b7
SHA1 f796cb413e8374b40e4b39a8ac5dd5ea0d0a5d11
SHA256 64fb21ffecaab9b0553336f83a77b62ba5e9bc1f0256a5003594fcaeccae943e
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /?s=alice HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:28 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=me1zJ5XTzUGrXy0UOshWA5GTwUJ6rPkIHUVV8H7J6t0iPgYjPebKH%2Bra46IxtPxZxtfFT8ijAm9%2F9zYPXlmAMz91gz9sIizIf5PpBvI%3D"}]}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
speculation-rules: "/cdn-cgi/speculation"
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=11,cfOrigin;dur=454
content-encoding: br
set-cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; Secure; Path=/
cf-ray: 962269aabd50b4f7-OSL
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/zzEI9afGHbcN5DGEyR4ULoEj34j.jpg
200 OK 32 kB URL
image.tmdb.org/t/p/w300/zzEI9afGHbcN5DGEyR4ULoEj34j.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 32 kB (32222 bytes)
MD5 f42ea082c0d430f181f807914ef8784f
SHA1 84bb882fcee8b00ec88ded275924c2bb6d725392
SHA256 9a5c73458e741c39b0910354d3cdcfe9b78b78f450c2cccc93af0714111e892f
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/zzEI9afGHbcN5DGEyR4ULoEj34j.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 32222
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6804231f-7dde"
last-modified: Sat, 19 Apr 2025 22:26:39 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 916
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 05/22/2025 01:52:42
cdn-edgestorageid: 1055
cdn-requestid: ca5f45a97d5f089b6af414eaae4fd4eb
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
200 OK 87 kB URL
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 67254
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
cf-ray: 962269b14b5056cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 109182
expires: Fri, 10 Jul 2026 12:20:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DLCEvWyR4zt3%2FGLnyBFBE3EcfkqV7adzDUE71eKVkeM5Ski%2FhooxAYHlwowgjSAX7XdxQaCC1VZr%2FCCL2t10RwVTCLsApEVHAzhe7euEOJiEE1xu6hQXCw9p1ldBaQ1Z%2F3Mb%2FLuO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET sultrymomentarily.com/watch.1624994839044.js?key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&rb=&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
307 Temporary Redirect 5.0 kB URL
sultrymomentarily.com/watch.1624994839044.js?key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&rb=&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 5.0 kB (4950 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1624994839044.js?key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&rb=&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Location: https://sultrymomentarily.com/watch.1624994839044.js?dev=e&key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=d9744a22f6d2a20c195c1aa208666fea63a75d2c264780ff90488696465464a6f239ce2c28b4ba3394e345a5f3b046091a9f392dfb0a96c69afe0067e837bfd5cc8260db02e50008760ef4b30d0b388686fac11be1a4e60e4847&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.vc8UNq_3WHRVW6OgClXqBXnSjqDnCYwnGS8Tx0NiK8c; expires=Sun, 20 Jul 2025 12:21:30 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1400de0aee5d153913ae09a53e830ef9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET image.tmdb.org/t/p/w300/iZCjhudaI7enpUEUUl02qDxzVLc.jpg
200 OK 17 kB URL
image.tmdb.org/t/p/w300/iZCjhudaI7enpUEUUl02qDxzVLc.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 17 kB (16580 bytes)
MD5 5c1ad7a60d68fd953d5394f788b3cac3
SHA1 6ca5292873702cce48886d42d8d19cf247b123ff
SHA256 7f7530a82e696e9ef824f98a4365883f1f5a2cec6adf93685fe0bf79f91056b1
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/iZCjhudaI7enpUEUUl02qDxzVLc.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 16580
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67ee6f1c-40c4"
last-modified: Thu, 03 Apr 2025 11:21:00 GMT
cdn-storageserver: NY-703
cdn-requestpullsuccess: True
cdn-fileserver: 914
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 04/03/2025 23:41:59
cdn-edgestorageid: 723
cdn-requestid: dac4270c12489f8d68d2020191fa4725
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET bahaviofilm.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL
bahaviofilm.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (1238)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 96856
Size 1.2 kB (1239 bytes)
MD5 9e8f56e8e1806253ba01a95cfc3d392c
SHA1 a8af90d7482e1e99d03de6bf88fed2315c5dd728
SHA256 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: application/javascript
expires: Sun, 20 Jul 2025 13:08:29 GMT
cache-control: public
vary: accept-encoding
x-frame-options: DENY
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BpRIEz7ltC2k%2BYo8rJYWszA0doCHNptl4lYHyA9i0LhdAyNWbi7ptw7Gk%2F6Aa0Vx3CZn93eydiyhYOFgo5AHsynQGP%2B2%2FlyW3Y1FvAo%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 962269b14ef0b4f7-OSL
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/assets/js/main.min.js?v=18071301
200 OK 47 kB URL
bahaviofilm.com/themes/JOS/assets/js/main.min.js?v=18071301
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (3509)
First Seen 2023-03-09
Last Seen 2025-07-20
Times Seen 40
Size 47 kB (47347 bytes)
MD5 9455e42ee62f0b02ec0e26df9b640e1f
SHA1 8b1dc569f14c59d5ae65ec9d23d17bac4380898e
SHA256 14650c6abc5f7c07c86aff7e3118d937feec469587cf8b36b5c82ac223230a0b
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/js/main.min.js?v=18071301 HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/javascript
content-length: 12478
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 4341
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=BvQlRadIfp1vMCKlYzgX3PMp58V%2BNcbEAy09D8thabFIogPyQPqeUSgv3RMEBwbtjmtwE5nAnQCRpvl%2BQv4hhuaAoRIbFONzMLZNtpQ%3D"}]}
cf-ray: 962269b14efbb4f7-OSL
X-Firefox-Spdy: h2
GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
200 OK 20 kB URL
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP / ASN
104.16.80.73
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (19948), with no line terminators
First Seen 2024-06-07
Last Seen 2025-08-02
Times Seen 101475
Size 20 kB (19948 bytes)
MD5 ec18af6d41f6f278b6aed3bdabffa7bc
SHA1 62c9e2cab76b888829f3c5335e91c320b22329ae
SHA256 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f
Certificate Info
Issuer Google Trust Services
Subject cloudflareinsights.com
Fingerprint 9D:9F:FB:08:8A:BA:46:3F:69:F6:F3:D7:AE:78:13:8D:FD:5A:C8:D5
Validity Wed, 25 Jun 2025 22:10:34 GMT - Tue, 23 Sep 2025 23:10:19 GMT
GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 962269b1ba1156ba-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
GET sultrymomentarily.com/watch.1624994839044.js?dev=e&key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=d9744a22f6d2a20c195c1aa208666fea63a75d2c264780ff90488696465464a6f239ce2c28b4ba3394e345a5f3b046091a9f392dfb0a96c69afe0067e837bfd5cc8260db02e50008760ef4b30d0b388686fac11be1a4e60e4847&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
200 OK 5.0 kB URL
sultrymomentarily.com/watch.1624994839044.js?dev=e&key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=d9744a22f6d2a20c195c1aa208666fea63a75d2c264780ff90488696465464a6f239ce2c28b4ba3394e345a5f3b046091a9f392dfb0a96c69afe0067e837bfd5cc8260db02e50008760ef4b30d0b388686fac11be1a4e60e4847&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (4074)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 5.0 kB (4950 bytes)
MD5 f1309167e0d6a2c594ab7371ef612072
SHA1 97fbf890b9601b6f1b4013470ec4c3f2d59b159a
SHA256 f84b3b07d1a08dec0b9f1bff6b14086f5b64337b5d0066eeee7455e67e816498
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1624994839044.js?dev=e&key=a54782d632b61a805e7c8d7449c0b807&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=d9744a22f6d2a20c195c1aa208666fea63a75d2c264780ff90488696465464a6f239ce2c28b4ba3394e345a5f3b046091a9f392dfb0a96c69afe0067e837bfd5cc8260db02e50008760ef4b30d0b388686fac11be1a4e60e4847&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
Referer: https://bahaviofilm.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.vc8UNq_3WHRVW6OgClXqBXnSjqDnCYwnGS8Tx0NiK8c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; expires=Sun, 27 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
pdhtkv27=true; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
uncs27=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
u_pl23748731=1; expires=Mon, 21 Jul 2025 12:20:30 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cc345dcd184cd1e989b660c3d74fe2b9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.storageimagedisplay.com/cti/2e/19/1d/2e191d53c2bed4aeafab0847c1e21463/1708270519.jpg
200 OK 51 kB URL
cdn.storageimagedisplay.com/cti/2e/19/1d/2e191d53c2bed4aeafab0847c1e21463/1708270519.jpg
IP / ASN
45.133.44.2
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 15:38:41], progressive, precision 8, 468x60, components 3
First Seen 2024-02-20
Last Seen 2025-07-29
Times Seen 226
Size 51 kB (50834 bytes)
MD5 9b75700732356a734073ed1778b4f0a3
SHA1 53399882ffce5a7af77c0795e3388407f4a8ad23
SHA256 1e9b1cfc21ebb604ec64674390ffeaa01f9daf0c7848e7a8c9942547b140df7d
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 06:D8:07:0F:AB:BF:D8:7F:C5:38:82:AC:A7:8A:20:4D:83:6C:EA:C9
Validity Thu, 10 Jul 2025 02:33:11 GMT - Wed, 08 Oct 2025 02:33:10 GMT
GET /cti/2e/19/1d/2e191d53c2bed4aeafab0847c1e21463/1708270519.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:31 GMT
content-type: image/jpeg
content-length: 50834
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:35:28 GMT
etag: "65d223c0-c692"
expires: Tue, 22 Jul 2025 12:20:31 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/css/bootstrap.min.css
200 OK 140 kB URL
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.1.0/css/bootstrap.min.css
IP / ASN
104.17.25.14
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with very long lines (65324)
First Seen 2023-04-05
Last Seen 2025-07-31
Times Seen 733
Size 140 kB (140421 bytes)
MD5 fee68c0f2f583161134a1fcb5950501d
SHA1 8e52dd818562db0ba0764bba172cb91ce248d8b0
SHA256 34959e43e6ecf368807a84f92ad9aa6e2dcd5f0c5c1e57da55e8f3248d9d9255
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
Validity Thu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT
GET /ajax/libs/twitter-bootstrap/4.1.0/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: text/css; charset=utf-8
content-length: 15749
cf-ray: 962269b13b4156cb-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-22485"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1494024
expires: Fri, 10 Jul 2026 12:20:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ii3tKywN%2ByFdtKjdX1xS9%2F4OxOD5fig%2FHZVOfK3BByWf1oTu8MXUqwCtGUECuKhgfEgMQ4GCRwugT1TWG%2F0K8KgrCKuv7EraGfNAIRkseDx9SOdF9sxUiBJkcz7tI4cB1icQecce"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET bahaviofilm.com/themes/JOS/assets/css/tooltipster-sideTip-shadow.min.css
200 OK 1.7 kB URL
bahaviofilm.com/themes/JOS/assets/css/tooltipster-sideTip-shadow.min.css
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with very long lines (1684), with no line terminators
First Seen 2023-04-06
Last Seen 2025-08-02
Times Seen 946
Size 1.7 kB (1684 bytes)
MD5 963b1810e2903311c299866636e46062
SHA1 46287cdb4aaa5cd840e3a7b16ad4e331c29db271
SHA256 970fb3515835fc779193ba0f88531ff29972b3c9cd76aba2fb1222fb97beeab6
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
GET /themes/JOS/assets/css/tooltipster-sideTip-shadow.min.css HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:28 GMT
content-type: text/css
content-length: 288
cache-control: public, max-age=604800
expires: Sat, 26 Jul 2025 15:50:55 GMT
last-modified: Wed, 01 Jan 2025 04:51:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
etag:
age: 73773
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=GE0wqDHzEZo8n%2B681Mo%2BOvbbUB0TFOgh00lGViKCMQ7CF4mzFAKLgReO54CwLODC9AfcEUCLhSLSzHHUQpVuN3JwZRA0RYS5JNfyRtY%3D"}]}
cf-ray: 962269b10eb3b4f7-OSL
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/Ac8ruycRXzgcsndTZFK6ouGA0FA.jpg
200 OK 14 kB URL
image.tmdb.org/t/p/w300/Ac8ruycRXzgcsndTZFK6ouGA0FA.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 14 kB (14342 bytes)
MD5 8f7e8db784f22cb803b1b920479594d7
SHA1 48a10958c76e7677d4bc1408789948fc68d92adf
SHA256 3abbdb5d80661ddaaffa370625fbd0189eaa9aeeb2057419e68720810e1bf1f1
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/Ac8ruycRXzgcsndTZFK6ouGA0FA.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 14342
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67f87f31-3806"
last-modified: Fri, 11 Apr 2025 02:32:17 GMT
cdn-storageserver: NY-346
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.27
cdn-requestpullcode: 200
cdn-cachedat: 05/05/2025 17:45:12
cdn-edgestorageid: 865
cdn-requestid: 132eee4efd08d788c3101cb058fe25b2
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET professionaltrafficmonitor.com/stats
200 OK 40 B URL
professionaltrafficmonitor.com/stats
IP / ASN
35.157.202.115
#16509 AMAZON-02
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 40 B (40 bytes)
MD5 22cf07eeafe0b86a9390e96286ac0ada
SHA1 1e59ac200dba783e7d16e25e2566841c82e67150
SHA256 1a6956bdddca5bcb80f143a219e2fda2e615bc1742704b10cd2f76fdec6a3da5
Certificate Info
Issuer Amazon
Subject protrafficinspector.com
Fingerprint 5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6
Validity Tue, 01 Jul 2025 00:00:00 GMT - Thu, 30 Jul 2026 23:59:59 GMT
GET /stats HTTP/1.1
Host: professionaltrafficmonitor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:30 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://bahaviofilm.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=2235cf6a-e96c-4f1c-8b41-bbd47691cec4:2:1; expires=Wed, 18 Jul 2035 12:20:30 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET sultrymomentarily.com/watch.767177963096.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
307 Temporary Redirect 5.1 kB URL
sultrymomentarily.com/watch.767177963096.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 5.1 kB (5070 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.767177963096.js?key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&tz=0&dev=e&res=14.3095&abt=F-2480-rr-6_1&rb=&aioi=t&sub3=group_b&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:30 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Location: https://sultrymomentarily.com/watch.767177963096.js?abt=F-2480-rr-6_1&aioi=t&dev=e&key=8affdb48fea8b54dbf05152d214fe281&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=ab544cc298a4bfc058de08860835e23bb863a28e2e69f6d2586d8ccb55d0c67e360ca7bb5c5712f112764a64deafca534873d03c644732614d8bdcad45ec56135d875e414a3dca040de949b0d4f754d3574e7910aac7897254a5&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; expires=Sun, 20 Jul 2025 12:21:30 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: bd6be12a19b3a0b7c6aa2710b4647559
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET twigentirelysailor.com/8affdb48fea8b54dbf05152d214fe281/invoke.js
200 OK 27 kB URL
twigentirelysailor.com/8affdb48fea8b54dbf05152d214fe281/invoke.js
IP / ASN
192.243.59.20
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (27170), with no line terminators
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 27 kB (27170 bytes)
MD5 c1b4a26753dd594fc5c2ce81bee7a491
SHA1 b183357a749e367f5f4adfe7a4735b5615010d30
SHA256 906c9a9972571ff2305ae71be2f21e9f26a87782538399d547aa9191065a52ea
Certificate Info
Issuer Let's Encrypt
Subject twigentirelysailor.com
Fingerprint 75:18:B1:28:BE:92:01:11:B0:9D:C2:42:65:15:34:08:33:16:94:93
Validity Tue, 24 Jun 2025 22:17:39 GMT - Mon, 22 Sep 2025 22:17:38 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /8affdb48fea8b54dbf05152d214fe281/invoke.js HTTP/1.1
Host: twigentirelysailor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 20 Jul 2025 12:20:29 GMT
Content-Type: application/javascript
Content-Length: 11454
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_F-2480-rr-6=1; expires=Sun, 20 Jul 2025 12:20:29 GMT; secure; SameSite=None
Host: twigentirelysailor.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 98a8f34142626a5af3bd37bd4665e033
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET image.tmdb.org/t/p/w300/yb47XfDJJF6uNFEEi8rItnMSuJz.jpg
200 OK 17 kB URL
image.tmdb.org/t/p/w300/yb47XfDJJF6uNFEEi8rItnMSuJz.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 17 kB (17014 bytes)
MD5 2d47ba7f1295e8b01dbe3e62be4744af
SHA1 7f3cc62506edff4b494789a6d6a353e82e903c58
SHA256 5d447c36b1cbe61cab93a7b97c0def00327a1b268e9b4e47d5f8a7093fea5cac
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/yb47XfDJJF6uNFEEi8rItnMSuJz.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 17014
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67fc8585-4276"
last-modified: Mon, 14 Apr 2025 03:48:21 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 426
perma-cache: HIT
cdn-proxyver: 1.31
cdn-requestpullcode: 200
cdn-cachedat: 07/07/2025 12:19:15
cdn-edgestorageid: 723
cdn-requestid: 1196d512074672ab6a9f2f5c2b9ff51e
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET image.tmdb.org/t/p/w300/2lvWLSOPtsqkgVIfEz9ai7D6TUr.jpg
200 OK 31 kB URL
image.tmdb.org/t/p/w300/2lvWLSOPtsqkgVIfEz9ai7D6TUr.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x450, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 31 kB (31376 bytes)
MD5 bc3aff9254b80157e70e4c97003b95f3
SHA1 886f427317ddb8b3d8d0fca0617360bf4ea4b229
SHA256 f4a4c6f698d19d228d90eb2b7f0e9d03088b05a887bc0e86e6a66d1fab35a32e
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/2lvWLSOPtsqkgVIfEz9ai7D6TUr.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 31376
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67ee2d92-7a90"
last-modified: Thu, 03 Apr 2025 06:41:22 GMT
cdn-storageserver: NY-753
cdn-requestpullsuccess: True
cdn-fileserver: 673
perma-cache: HIT
cdn-proxyver: 1.28
cdn-requestpullcode: 200
cdn-cachedat: 05/24/2025 06:14:54
cdn-edgestorageid: 722
cdn-requestid: 813ac6836dddb631518a2257dcf3f388
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET sultrymomentarily.com/watch.120453001132.js?abt=F-2480-rr-7_1&aioi=t&dev=e&key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=2e1dc8fe41cff676bbb92ed5c503b00c8c789b1e58ab9805e5d104a643cbe1f319430ce4f96b8033851937d8538e8a9e0d61f780944589abc0b7fcb10ccc0288cd4d2b9836c115634c38499585c4e4149a703ee1211c65726cd7&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
200 OK 5.1 kB URL
sultrymomentarily.com/watch.120453001132.js?abt=F-2480-rr-7_1&aioi=t&dev=e&key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=2e1dc8fe41cff676bbb92ed5c503b00c8c789b1e58ab9805e5d104a643cbe1f319430ce4f96b8033851937d8538e8a9e0d61f780944589abc0b7fcb10ccc0288cd4d2b9836c115634c38499585c4e4149a703ee1211c65726cd7&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type JavaScript source, ASCII text, with very long lines (4253)
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 5.1 kB (5129 bytes)
MD5 e7c6c5d711e8905dac764596a5dd9955
SHA1 7c4e1e6a0602e77f054cae203ac1925d161c09fc
SHA256 dcca6b7cdcdfd5a3664008f9d86ea438240712aa5127fd928ac798971c6fd2e7
Certificate Info
Issuer Let's Encrypt
Subject sultrymomentarily.com
Fingerprint 2D:7B:79:9C:C0:6D:57:CE:0F:A9:5C:53:6D:FD:67:18:A7:A4:87:86
Validity Sat, 28 Jun 2025 22:27:43 GMT - Fri, 26 Sep 2025 22:27:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.120453001132.js?abt=F-2480-rr-7_1&aioi=t&dev=e&key=95673bf8da131c2a04f1986cfce5ba49&kw=%5B%22search%22%2C%22results%22%2C%22for%22%2C%22alice%22%5D&pst=1753014090&rb=&refer=https%3A%2F%2Fbahaviofilm.com%2F%3Fs%3Dalice&res=14.3095&rmtc=t&shu=2e1dc8fe41cff676bbb92ed5c503b00c8c789b1e58ab9805e5d104a643cbe1f319430ce4f96b8033851937d8538e8a9e0d61f780944589abc0b7fcb10ccc0288cd4d2b9836c115634c38499585c4e4149a703ee1211c65726cd7&sub3=group_b&tz=0&uuid=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1 HTTP/1.1
Host: sultrymomentarily.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bahaviofilm.com
Referer: https://bahaviofilm.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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_cz1hbGljZSIsImFyIjpbXX19.-ZqTSUc2EnXM76V0Qlw8TnNNW80euhcAtSliDxGhOVo; uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; u_pl23748731=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Jul 2025 12:20:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://bahaviofilm.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=c27eeaf4-2afa-4584-a19b-05325abf0760:1:1; expires=Sun, 27 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
uncs=2; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
u_pl25350335=1; expires=Mon, 21 Jul 2025 12:20:31 GMT; path=/; secure; SameSite=None
Host: sultrymomentarily.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 24640f8564785afcb4b609252ed105d8
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
POST bahaviofilm.com/cdn-cgi/rum?
204 No Content 0 B URL
bahaviofilm.com/cdn-cgi/rum?
IP / ASN
104.21.24.249
#13335 CLOUDFLARENET
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5605947
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject bahaviofilm.com
Fingerprint E3:1A:47:EE:CE:5A:E5:A0:2C:55:51:2C:E3:A6:81:88:CC:8A:CD:30
Validity Fri, 30 May 2025 07:13:56 GMT - Thu, 28 Aug 2025 08:12:23 GMT
POST /cdn-cgi/rum? HTTP/1.1
Host: bahaviofilm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1028
Origin: https://bahaviofilm.com
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/?s=alice
Cookie: PHPSESSID=72d7dac039462598a2e8dff48d5f4a3c; dom3ic8zudi28v8lr6fgphwffqoz0j6c=c27eeaf4-2afa-4584-a19b-05325abf0760%3A1%3A1; _pk_id.1.4655=3486c7a926efc9fe.1753014031.1.1753014031.1753014031.; _pk_ses.1.4655=*
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Sun, 20 Jul 2025 12:20:31 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://bahaviofilm.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 962269beea34568a-OSL
x-frame-options: DENY
GET image.tmdb.org/t/p/w300/4f9C2SANPrH0ckQabrLoAuDmYgC.jpg
200 OK 15 kB URL
image.tmdb.org/t/p/w300/4f9C2SANPrH0ckQabrLoAuDmYgC.jpg
IP / ASN
138.199.36.10
#60068 Datacamp Limited
Requested by https://bahaviofilm.com/?s=alice
Resource Info
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x400, Scaling: [none]x[none], YUV color, decoders should clamp
First Seen 2025-07-20
Last Seen 2025-07-20
Times Seen 1
Size 15 kB (14566 bytes)
MD5 c06b1355b6ee8772b5b6e9a836e8ab5b
SHA1 954a07e8eb2d219ec80284b10f778f830872ce89
SHA256 82606a889e52c6ab444d7ea24cfe67afc7c9bac18dccdd477cbcad31d06ff869
Certificate Info
Issuer Let's Encrypt
Subject image.tmdb.org
Fingerprint 93:C8:EB:85:ED:65:D6:F3:06:B5:FE:77:58:9B:68:AF:92:56:3C:A7
Validity Fri, 27 Jun 2025 18:10:43 GMT - Thu, 25 Sep 2025 18:10:42 GMT
GET /t/p/w300/4f9C2SANPrH0ckQabrLoAuDmYgC.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bahaviofilm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 20 Jul 2025 12:20:29 GMT
content-type: image/webp
content-length: 14566
server: BunnyCDN-DE1-1053
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "680030bd-38e6"
last-modified: Wed, 16 Apr 2025 22:35:41 GMT
cdn-storageserver: NY-753
cdn-requestpullsuccess: True
cdn-fileserver: 629
perma-cache: HIT
cdn-proxyver: 1.32
cdn-requestpullcode: 200
cdn-cachedat: 07/20/2025 12:20:29
cdn-edgestorageid: 1076
cdn-requestid: a472b39ad7704435a47ff6562e0d4e01
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
