Report - supervideo.tv/embed-20x7j9iedbb7.html

Report Overview

Visited public
2023-11-07 22:42:51
Tags
URL
supervideo.tv/embed-20x7j9iedbb7.html
Finishing URL
supervideo.tv/embed-20x7j9iedbb7.html
IP / ASN
104.21.21.104
#13335 CLOUDFLARENET
Title
supervideo.tv/embed-20x7j9iedbb7.html

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
addresseepaper.com	18169	2021-11-01	2021-11-01 22:11:31	2023-11-06 22:05:27	401 B	0 B	0.0.0.0
cvr.supervideo.tv	unknown	unknown	2022-07-03 21:17:40	2023-03-04 00:56:41	496 B	313 kB	104.21.21.104
ssl.p.jwpcdn.com	2512	2012-08-07	2017-01-30 06:00:14	2023-11-07 12:45:00	1.3 kB	401 kB	151.101.66.114
gihehazfdm.com	unknown	2023-05-09	2023-05-09 13:24:10	2023-10-31 22:08:26	1.5 kB	30 kB	139.45.197.244
cameesse.net	unknown	2023-10-18	2023-10-18 14:31:33	2023-11-07 17:40:16	398 B	647 B	139.45.197.242
revolvemockerycopper.com	unknown	2023-04-02	2023-04-02 07:16:11	2023-10-29 13:41:15	1.0 kB	995 B	192.243.61.225
dismantlepenantiterrorist.com	17847	2021-11-01	2021-11-01 22:12:12	2023-11-05 20:48:16	716 B	0 B	0.0.0.0
inklinkor.com	unknown	2022-04-01	2022-04-01 13:44:00	2023-11-07 19:25:29	400 B	82 kB	172.67.211.29
groorsoa.net	unknown	2023-10-23	2023-10-24 03:50:52	2023-11-07 18:36:57	1.5 kB	7.0 kB	139.45.197.245
supervideo.tv	321386	unknown	2015-01-23 16:43:54	2023-03-25 10:07:52	13 kB	443 kB	104.21.21.104
ophoacit.com	unknown	2022-07-08	2022-07-28 17:22:31	2023-11-07 15:04:38	4.0 kB	516 kB	139.45.197.242
regretfactor.com	unknown	2023-01-24	2021-02-01 22:52:01	2023-10-28 23:06:47	464 B	1.1 kB	192.243.59.12
hfs261.serversicuro.cc	unknown	2020-06-05	2022-06-09 20:54:56	2023-09-06 12:15:55	1.5 kB	2.4 MB	213.152.167.82
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-11-07 17:27:41	415 B	837 B	172.64.199.37
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-07 16:18:53	453 B	4.3 kB	142.250.74.106
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-07 16:24:59	865 B	299 kB	142.250.74.168
g.jwpsrv.com	113622	2012-10-04	2018-01-19 14:34:33	2023-11-06 07:17:58	539 B	325 B	151.101.66.114
simplewebanalysis.com	unknown	2022-02-15	2022-02-25 05:06:25	2023-08-29 15:49:41	860 B	0 B	0.0.0.0
ausoafab.net	74242	2021-07-05	2021-07-18 21:27:39	2023-11-06 15:07:27	1.9 kB	32 kB	139.45.197.239
gishejuy.com	unknown	2023-10-25	2023-10-25 15:14:32	2023-11-07 17:46:51	398 B	675 B	139.45.197.242
nezygmobha.com	unknown	2023-05-09	2023-05-10 02:04:34	2023-10-31 22:10:27	398 B	2.5 kB	104.21.5.247
my.rtmark.net	9054	2014-10-29	2015-02-04 10:54:57	2023-11-07 05:09:11	463 B	744 B	139.45.195.8

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-07 22:42:32	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-11-07 22:42:32	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-11-07 22:42:33	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-11-07 22:42:33	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-07	medium	ophoacit.com	Sinkholed
2023-11-07	medium	gihehazfdm.com	Sinkholed
2023-11-07	medium	cameesse.net	Sinkholed
2023-11-07	medium	regretfactor.com	Sinkholed
2023-11-07	medium	revolvemockerycopper.com	Sinkholed
2023-11-07	medium	ophoacit.com	Sinkholed
2023-11-07	medium	revolvemockerycopper.com	Sinkholed
2023-11-07	medium	gishejuy.com	Sinkholed
2023-11-07	medium	ophoacit.com	Sinkholed
2023-11-07	medium	ophoacit.com	Sinkholed
2023-11-07	medium	gihehazfdm.com	Sinkholed
2023-11-07	medium	dismantlepenantiterrorist.com	Sinkholed
2023-11-07	medium	addresseepaper.com	Sinkholed
2023-11-07	medium	groorsoa.net	Sinkholed
2023-11-07	medium	groorsoa.net	Sinkholed
2023-11-07	medium	ophoacit.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (31)

	URL	From	Size	First Seen	Last Seen
	nezygmobha.com/abs3.js	ScriptElement	1.4 kB	2023-06-02	2024-08-21
Pretty URL nezygmobha.com/abs3.js IP 104.21.5.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 01:33 Last Seen2024-08-21 07:11 Times Seen11 Hash 683abdda0e2aa9e6a2d5139f83c2fd6e 5a9395cd3f7f2850d6c3b11af4ec017ad02b638a 4587484bf4589cfd61ead81c6e834242bf1b338111c900544359aac124d799cd Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:40 Times Seen4642951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	supervideo.tv/sandbox%20eval%20code		147 B	2023-04-11	2025-05-10
Pretty URL supervideo.tv/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-10 10:38 Times Seen341631 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	ophoacit.com/27/34140bf7a9bfababc041a6dd34e08b17	ScriptElement	412 kB	2023-11-07	2023-11-15
Pretty URL ophoacit.com/27/34140bf7a9bfababc041a6dd34e08b17 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 15:04 Last Seen2023-11-15 10:26 Times Seen248 Hash 475e8d80bbb7ec1b0a987df1a0cb02b1 bccaada3ebaf548f842d8e7936c43ddd869d86e7 cbc0e6c0446c61080c87d5c5bdd7c4526cccd9671beeaf9312c090173f41f8bb Loading...

	ssl.p.jwpcdn.com/player/v/8.9.5/jwpsrv.js	ScriptElement	59 kB	2023-03-07	2025-03-25
Pretty URL ssl.p.jwpcdn.com/player/v/8.9.5/jwpsrv.js IP 151.101.66.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-03-25 00:43 Times Seen55 Hash dc6ac994f6a929ba177587504ee3c159 cd0d3f77e72d7fd250f4e8156326e5d95a4539b1 917650b0b99dcfa1360b8ace75ab13d3278e88506985af114193d3611febaac5 Loading...

	supervideo.tv/js/xupload.js?v=4	ScriptElement	7.3 kB	2023-03-07	2024-08-21
Pretty URL supervideo.tv/js/xupload.js?v=4 IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2024-08-21 07:11 Times Seen12 Hash 9a5c5bb884cb20d14efb5fe9323084c3 15b124caec06c32af151dcf67ba5fdb0fa5e21e8 762c5c785b1d13de533775ae431ea4d955be541fbf0cbc26ebd0323cbb36d1f4 Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	193 B	2023-05-11	2024-08-21
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-11 20:48 Last Seen2024-08-21 07:11 Times Seen11 Hash 6214a1c95a5237eb2027a6441ede7a9f 97618124420c6ebd828dbe3e082c7878fdacc711 4f3ddfdb28e828d825b3dc7d8004edbe3103f67272e2d2aa6c485463714a91a3 Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	54 B	2023-03-08	2024-08-21
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 00:40 Last Seen2024-08-21 07:11 Times Seen24 Hash adc32d4a13345c47ecd481ceaf9ce698 af5e778ec3bb0fe13988e7bcd8f758efd0e83979 7186e1ac5fc6f40aed1b48a1e2fb71a9d073431bbf2be83458cc9c4ed097ac45 Loading...

	supervideo.tv/js/pop.js	ScriptElement	30 B	2023-03-07	2025-02-19
Pretty URL supervideo.tv/js/pop.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05 Last Seen2025-02-19 06:00 Times Seen143 Hash 1c57f7e83ceae8ee7d8707cf3eb91c2c ca5b7c4bf30cbdb6a4680ee5345d5c68e90d0675 cdf19c04fc4fd1992d9cf69ee0ef7c83d03dfa4f6998f06c8d73611f5a6d1740 Loading...

	supervideo.tv/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.3 kB	2023-11-07	2023-11-07
Pretty URL supervideo.tv/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 23:42 Last Seen2023-11-07 23:42 Times Seen1 Hash a09f792670fe5695b5dc0a8b9e9443e0 ddefa3a92c02ac8a169c52e502e8e0d7b968246e 3595151ed37e515b93767fbfad6dd1b3a14fb6214b6c6be0929fbc57cfbc2a11 Loading...

	supervideo.tv/js/jquery.cookie.js	ScriptElement	990 B	2023-03-07	2024-10-23
Pretty URL supervideo.tv/js/jquery.cookie.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05 Last Seen2024-10-23 20:31 Times Seen169 Hash 532e8df5fdcf8bb2ac1a2cf408a9599d 0b8de3b1b4e1167693c51f461c8dc3c733602d52 39c8dcfca47db5df9169e58c7411bc8ffcc668d19686824c378a9b14351f04c8 Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	60 B	2024-08-20	2024-08-20
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash aa8d36843a481eea29df1d8df82fb12c c2a505ea9819f7e0343194a9ffa30db8f984835c 43a643e46d94d40906dbb337f134a987b35a6783e8bad0c65843809359aa8aa3 Loading...

	supervideo.tv/js/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-05-10
Pretty URL supervideo.tv/js/jquery.min.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 05:42 Times Seen25120 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-10
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-10 10:38 Times Seen340830 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	unknown	ScriptElement	247 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash 76f5e261ec42a38d299c1b1264ebe1c9 5128c345ffd86c749e46a8b309e59d982286993a abfb0c432b878077144f50f350784922ec8e8dfb02e1319a9990261f1bb15cae Loading...

	banquetunarmedgrater.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL banquetunarmedgrater.com/advertisers.js IP 172.64.199.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:40 Times Seen4642951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=UA-46849459-36	ScriptElement	190 kB	2023-11-07	2023-11-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-46849459-36 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 23:42 Last Seen2023-11-07 23:42 Times Seen1 Hash 50b7d2739c209bfe09b1808b7e002137 eb24b267bd7b51f89b304828afd9653515ba39fd cd351314cb9741bea0ffadd9f58aec7d6ec7ceb4af5e5b14c0e7977dc8b3383f Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:40 Times Seen4642951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:40 Times Seen4642951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ophoacit.com/1?z=5530353	ScriptElement	43 kB	2024-08-20	2024-08-20
Pretty URL ophoacit.com/1?z=5530353 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash f9bed5b6df8d6f2f1ff07e74abd63d45 be178193fc167de433a65ac11915e52364cf7cbb 8f57f5ed482f90ff3cfa356a46190b67742affb6c71b166b2a03c0d234e5eb72 Loading...

	inklinkor.com/tag.min.js	ScriptElement	81 kB	2023-11-07	2023-11-10
Pretty URL inklinkor.com/tag.min.js IP 172.67.211.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 15:04 Last Seen2023-11-10 10:37 Times Seen101 Hash 9886ced2a23f597e699da8c08cce79d8 052851b56885ea5ce57d98c36163680300f64bc0 515abc8669312dd2e623a0a8f1d6fce5593e131ddc96d330a38810dc3e04075c Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	1.1 kB	2024-08-20	2024-08-20
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash de4309819116defa55bca00072e5439a 01babfcafc019be09f08aa6904d71824f3d02a4c 68f6e23d2ef0c438404e91bc69d85791a597066fe99d84d1ef76cc921b9e704f Loading...

	ssl.p.jwpcdn.com/player/v/8.9.5/jwplayer.core.controls.js	ScriptElement	279 kB	2023-03-07	2025-03-25
Pretty URL ssl.p.jwpcdn.com/player/v/8.9.5/jwplayer.core.controls.js IP 151.101.66.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18 Last Seen2025-03-25 00:43 Times Seen54 Hash 1a9869122184328930c8b5dcb9124cc0 30bdc9850a57e30ef34de3147429a00df7677510 a3db025e4faa2e904c5b99522f90205bbc5d9f0d43a42916eec2e6d2ffa8b06e Loading...

	supervideo.tv/embed-20x7j9iedbb7.html	ScriptElement	0 B	0001-01-01	2025-05-10
Pretty URL supervideo.tv/embed-20x7j9iedbb7.html IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-10 10:40 Times Seen4642951 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	supervideo.tv/player8/jwplayer.js	ScriptElement	109 kB	2023-03-07	2024-10-12
Pretty URL supervideo.tv/player8/jwplayer.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28 Last Seen2024-10-12 13:58 Times Seen40 Hash 96621739b94d70a0c27c2dbf3b03d1c0 395260f1408af43ecc939b27bc5f9e6d3de49f20 4f5c0210ceb0fb77e8698fbd00f87197082706c17a0ad8da061e3da8db920a05 Loading...

	ssl.p.jwpcdn.com/player/v/8.9.5/provider.hlsjs.js	ScriptElement	315 kB	2023-03-07	2025-03-25
Pretty URL ssl.p.jwpcdn.com/player/v/8.9.5/provider.hlsjs.js IP 151.101.66.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:11 Last Seen2025-03-25 00:43 Times Seen50 Hash c1b935a682ff8774bd95d07321409839 98b616e937578c2bab36b66828d10138fe2676de 35373276dcac97c7c7a39cc6d56e71d86e586cd305f59834d5c2b2a0741e4d72 Loading...

	supervideo.tv/tag2.js	ScriptElement	70 kB	2023-05-11	2024-08-21
Pretty URL supervideo.tv/tag2.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 20:48 Last Seen2024-08-21 07:11 Times Seen11 Hash 26a0df05cedfd6333ddb2ea5b032deea 2b93ae208df4d4b32b56d39c8ed46e8ccf0f206d 1c44a2ad043085c8003dd0418b0500f38f2635382c185e2b7acb4d6528172d18 Loading...

	gihehazfdm.com/5/3897677?var=tag2	ScriptElement	71 kB	2024-08-20	2024-08-20
Pretty URL gihehazfdm.com/5/3897677?var=tag2 IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash f72c067a27dc5b0ffb7010508500b429 ee73c736988cb65521ce2f2a200dea26b45410bb 75d9e9058813914d3ea066851cf20f01b07ce3dbe72b142da313451521402dc2 Loading...

	supervideo.tv/tag01.js	ScriptElement	59 kB	2023-05-11	2024-08-21
Pretty URL supervideo.tv/tag01.js IP 104.21.21.104 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-11 20:48 Last Seen2024-08-21 07:11 Times Seen11 Hash 191a674ee9b585df10ae11751ca3465d b064b7e4b971a678a8028f1670e3a223f97c6bd6 162c5cab2d0a8fc8052205c4d3c2dcee578e178bfbfa828ce8b8ef24c3e3e825 Loading...

	www.googletagmanager.com/gtag/js?id=G-QYLE1DXYEC&l=dataLayer&cx=c	ScriptElement	229 kB	2023-11-07	2023-11-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-QYLE1DXYEC&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-07 23:42 Last Seen2023-11-07 23:42 Times Seen1 Hash a881580c45e6bb64a16583dfeea86770 2b2385cde890b77ba19ac0c35e2b6bf0e64cbd67 567996d98f5cf52227e666dafc960c8130feae0b80d52a29839963e0f2c398d0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ff37e0fbe6d9fcd1c4194426d88d69df	1.8 kB	2024-08-20 20:29	2024-08-20 20:29
Pretty Observations First Seen2024-08-20 20:29 Last Seen2024-08-20 20:29 Times Seen1 Hash ff37e0fbe6d9fcd1c4194426d88d69df 3ff5187c6f3fc3ef049c3f9604ad53e4a073deb6 85403f06e757559f0cf4e2c13acffd4130bdaee48269599cbd3a8e9889f7f6f0 Loading...

HTTP Transactions (59)

URL IP Response Size

supervideo.tv/embed-20x7j9iedbb7.html

104.21.21.104

200 OK

2.7 kB

URL HEAD HTTP/3
supervideo.tv/embed-20x7j9iedbb7.html
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1962)
Size
2.7 kB (2672 bytes)
Hash
08cde1c69ce0a1c56813122c4b77262e
a5f1b38f91a72dc351f5f4477ece869a51f318f3
3780e85c2e62a06f6535b660f82b63a687424338898b2ae774560c1823578acb

HTTP Headers

GET /embed-20x7j9iedbb7.html HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: lang=1; domain=.supervideo.tv; path=/; HttpOnly
x-cache-status: BYPASS
x-5-cache-date: Tue, 07 Nov 2023 22:42:31 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bM11P4AGZpN4aesFKvtmCSCi%2BPkENRDBJvyTeLJsdi3FlaV7DfmEUZa4K7YfIrLMpEKxsw8WdOubQtPxi%2F%2BZTahf0lV22Y%2FzPJ0aMK4fNUfFmPrHKn7ccMtc8d7gei6R"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 822916febbbb5685-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

supervideo.tv/tag01.js

104.21.21.104

200 OK

19 kB

URL GET HTTP/3
supervideo.tv/tag01.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (59393), with no line terminators
Size
19 kB (19335 bytes)
Hash
191a674ee9b585df10ae11751ca3465d
b064b7e4b971a678a8028f1670e3a223f97c6bd6
162c5cab2d0a8fc8052205c4d3c2dcee578e178bfbfa828ce8b8ef24c3e3e825

HTTP Headers

GET /tag01.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
etag: W/"e801-6016040e6efc2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Sat, 28 Oct 2023 01:06:12 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 937513
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QHwLCnOgvvuQlUzOap3P%2BgrRBejtH6Lu%2BPIGHD85%2BS0RYZRIXmI2iofJgv97V%2BuifT50ncjBG3JbdvddryR2P6rBbUTXaqwdfgDzep7rFWgZKFGpZbM5qv98MgalqNFe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb27b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/js/jquery.min.js

104.21.21.104

200 OK

35 kB

URL GET HTTP/3
supervideo.tv/js/jquery.min.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (32086)
Size
35 kB (34792 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1762a-5a160d2bbab00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Fri, 27 Oct 2023 05:04:44 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 1011884
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r6yPbXbSk09ZHlggh7bUtcWlrbr%2FHOAuRzo%2FonE26kYszbGQ9obPlr5mlZ13qxyMi199BTOeeS4k%2BQLepYk5OCu1k1HCZFueblhH0x6rP0vhUvl7QRe6uC26Yo6MKk62"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702ab23b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cvr.supervideo.tv/hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg

104.21.21.104

200 OK

313 kB

URL GET HTTP/3
cvr.supervideo.tv/hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x896, components 3\012- data
Size
313 kB (312564 bytes)
Hash
bce35d46254245940126197a3e84d68f
c6e37062e14949b42b4a06b34911788b6d856941
7a28fc73f28f0f35decfc3fcf5419bbd72550d0b10c359f7a3137b1cb02f334e

HTTP Headers

GET /hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg HTTP/1.1
Host: cvr.supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: image/jpeg
content-length: 312564
last-modified: Tue, 07 Nov 2023 22:41:57 GMT
etag: "654abd35-4c4f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSmHGig6PzSYkaCh6L1n55OiU%2FzA4ZRkj4Rn7hNW%2Fas8mAC8Kh4M5dVnEhgCuLkP1UjsNYw4GdUG3FOgh2NdUoqEfdz7lCc8gqvEtqXfjpLDeDG14TLe3lceAQyc6lwV7SeilQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82291702db3db527-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-46849459-36

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-46849459-36
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA
ValidityMon, 16 Oct 2023 08:02:30 GMT - Mon, 08 Jan 2024 08:02:29 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68650 bytes)
Hash
50b7d2739c209bfe09b1808b7e002137
eb24b267bd7b51f89b304828afd9653515ba39fd
cd351314cb9741bea0ffadd9f58aec7d6ec7ceb4af5e5b14c0e7977dc8b3383f

HTTP Headers

GET /gtag/js?id=UA-46849459-36 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Nov 2023 22:42:31 GMT
expires: Tue, 07 Nov 2023 22:42:31 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 Nov 2023 21:52:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68650
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ophoacit.com/1?z=5530353

139.45.197.242

200 OK

97 kB

URL GET HTTP/2
ophoacit.com/1?z=5530353
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintBA:22:E5:6C:16:E2:40:EC:4F:D5:BC:70:BD:70:0F:C0:76:C0:39:8F
ValidityWed, 16 Aug 2023 07:14:02 GMT - Tue, 14 Nov 2023 07:14:01 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
97 kB (96619 bytes)
Hash
9007742b7713bab1fe4b44e3a84c44fa
0d6ee676364c949eac609e6c61c534b9e692c969
e1c401893804cb248230890cb22c2cb124a2edfeb1c7c00d74c6a8edf1031c1e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=5530353 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 38ba76b1fe6ee410c20cfc35b46008c8
access-control-expose-headers: X-Sc
x-sc: ai5hVQ7tX2_awdZWwVb7uhz5X34MEAexwHw0oJoi6HgPJkelyWIzXVxwhWw1kAJAAx0ArtsqGswc_d9HYWdWJVwmqEA=
set-cookie: scm=1; expires=Wed, 06 Nov 2024 22:42:31 GMT; secure; SameSite=None
OAID=ee967d77a4d14534a9b5d98c4e0fbe27; expires=Wed, 06 Nov 2024 22:42:31 GMT; secure; SameSite=None
oaidts=1699396951; expires=Wed, 06 Nov 2024 22:42:31 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

ausoafab.net/tag.min.js

139.45.197.239

200 OK

26 kB

URL GET HTTP/2
ausoafab.net/tag.min.js
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectausoafab.net
Fingerprint76:48:0B:47:30:0D:DD:02:89:2A:3D:8D:EA:A5:68:84:23:69:6C:2E
ValiditySun, 17 Sep 2023 05:19:45 GMT - Sat, 16 Dec 2023 05:19:44 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
26 kB (25508 bytes)
Hash
9886ced2a23f597e699da8c08cce79d8
052851b56885ea5ce57d98c36163680300f64bc0
515abc8669312dd2e623a0a8f1d6fce5593e131ddc96d330a38810dc3e04075c

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: ausoafab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/javascript; charset=utf-8
content-length: 25508
content-encoding: br
x-trace-id: e98616e029e7b02fdce177e285c2f826
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 07 Nov 2023 13:38:54 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.9.5/jwplayer.core.controls.js

151.101.66.114

200 OK

67 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.9.5/jwplayer.core.controls.js
IP
151.101.66.114:443
ASN
#54113 FASTLY

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintAB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A
ValidityWed, 30 Aug 2023 18:09:48 GMT - Mon, 30 Sep 2024 18:09:47 GMT

File type
Unicode text, UTF-8 text, with very long lines (65134)
Size
67 kB (67405 bytes)
Hash
1a9869122184328930c8b5dcb9124cc0
30bdc9850a57e30ef34de3147429a00df7677510
a3db025e4faa2e904c5b99522f90205bbc5d9f0d43a42916eec2e6d2ffa8b06e

HTTP Headers

GET /player/v/8.9.5/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Fri, 26 Jul 2019 21:30:49 GMT
etag: "1a9869122184328930c8b5dcb9124cc0"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Nov 2023 22:42:32 GMT
via: 1.1 varnish
age: 677626
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 22
x-timer: S1699396952.099293,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 67405
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.9.5/jwpsrv.js

151.101.66.114

200 OK

17 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.9.5/jwpsrv.js
IP
151.101.66.114:443
ASN
#54113 FASTLY

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintAB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A
ValidityWed, 30 Aug 2023 18:09:48 GMT - Mon, 30 Sep 2024 18:09:47 GMT

File type
ASCII text, with very long lines (59078)
Size
17 kB (17400 bytes)
Hash
dc6ac994f6a929ba177587504ee3c159
cd0d3f77e72d7fd250f4e8156326e5d95a4539b1
917650b0b99dcfa1360b8ace75ab13d3278e88506985af114193d3611febaac5

HTTP Headers

GET /player/v/8.9.5/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Wed, 25 Nov 2020 15:46:32 GMT
etag: "dc6ac994f6a929ba177587504ee3c159"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Nov 2023 22:42:32 GMT
via: 1.1 varnish
age: 316
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1699396952.099146,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 17400
X-Firefox-Spdy: h2

supervideo.tv/assets/player/myskinfile.css?v=10

104.21.21.104

200 OK

116 kB

URL GET HTTP/3
supervideo.tv/assets/player/myskinfile.css?v=10
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (6530), with no line terminators
Size
116 kB (116383 bytes)
Hash
b8fa1e74304b99c7bc9c9d42f7f094cc
cc90ed79e6ddf9f0f4da7059bd5e513b1d006fe3
38a7dea80ff1ba98c8c2e90b9e1d7dbf2c40b181f194b2d3d8cc37a788eaf00e

HTTP Headers

GET /assets/player/myskinfile.css?v=10 HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=8406
etag: W/"20d6-5a73cf41d71c0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Wed, 25 Oct 2023 06:15:12 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1179815
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hc0iBHwJsJJ%2Bioz2FiYGYZDxhYb2PkWHx4w6g4ch2MbLdo1HYIzcDHZosK04kLBm5Crf1YA3phia6Nl4kIsV%2FzNAqQ6S1%2BuVZPgsD20Y8FD6GTQju9YCueMW6JHJrHnB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb2cb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/embed-20x7j9iedbb7.html

104.21.21.104

200 OK

0 B

URL HEAD HTTP/3
supervideo.tv/embed-20x7j9iedbb7.html
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /embed-20x7j9iedbb7.html HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-cache-status: BYPASS
x-5-cache-date: Tue, 07 Nov 2023 22:42:32 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lhOyKCDx20es7h6pcX3ZYU%2BGcGjdlASbVc4XrnO1jm5q1tvzXj4J0F3pH5WmHCsbSU3HtOrsBV9FT6PknNYso42hw1KzY0Z7jGHdMYygE5pNXSh3mknOS4sfeG9aKXv6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 822917044c34b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ausoafab.net/5/5859254/?oo=1&aab=1

139.45.197.239

200 OK

1.8 kB

URL GET HTTP/2
ausoafab.net/5/5859254/?oo=1&aab=1
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectausoafab.net
Fingerprint76:48:0B:47:30:0D:DD:02:89:2A:3D:8D:EA:A5:68:84:23:69:6C:2E
ValiditySun, 17 Sep 2023 05:19:45 GMT - Sat, 16 Dec 2023 05:19:44 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
1.8 kB (1840 bytes)
Hash
72b5a5d6be0caff86c12e87db9492e96
2795b0c35a85c91146f267f52a048bb407dee091
a7297e4be79baa2736b137ac9b93a9cf349b49e28464b366fa728e9a5b92b7fa

HTTP Headers

GET /5/5859254/?oo=1&aab=1 HTTP/1.1
Host: ausoafab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/json
x-trace-id: b595c212d37abc0d69f7c030875fb93a
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://supervideo.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:31 GMT; path=/; secure; SameSite=None
oaidts=1699396951; expires=Wed, 06 Nov 2024 22:42:31 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

gihehazfdm.com/5/3897677?var=tag2

139.45.197.244

200 OK

26 kB

URL GET HTTP/2
gihehazfdm.com/5/3897677?var=tag2
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectgihehazfdm.com
Fingerprint21:5C:92:AA:28:0F:0E:C5:0D:83:60:1A:5A:19:E0:61:A8:F6:FD:5D
ValidityThu, 26 Oct 2023 19:39:49 GMT - Wed, 24 Jan 2024 19:39:48 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
26 kB (26313 bytes)
Hash
82080b55e5950671dd559c267d9b1879
9b6f2b1383b90c6046b569568d161d9bbd603b94
dbd478c7de7a5ce529ef21abbeb13069d490842d5ecaeaef854c10da4ecc7a27

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/3897677?var=tag2 HTTP/1.1
Host: gihehazfdm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: application/javascript
x-trace-id: c6db4b3896d2922be632a07ee025d065
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=462799e840dd442689820c42a3210ada; expires=Wed, 06 Nov 2024 22:42:32 GMT; path=/; secure; SameSite=None
oaidts=1699396952; expires=Wed, 06 Nov 2024 22:42:32 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

supervideo.tv/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js

104.21.21.104

200 OK

3.9 kB

URL GET HTTP/3
supervideo.tv/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (7281), with no line terminators
Size
3.9 kB (3869 bytes)
Hash
a09f792670fe5695b5dc0a8b9e9443e0
ddefa3a92c02ac8a169c52e502e8e0d7b968246e
3595151ed37e515b93767fbfad6dd1b3a14fb6214b6c6be0929fbc57cfbc2a11

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vpsH2AClTvk68x0DoXHzxhFl0cOHrxbGw1KVXQpOKlT6rVghxtyTreLuQ%2Fn9ynJbwUSlF044YulAa0IkVg%2F8u%2FymCtdqp7k1%2FoyHPVSWZOHOS4V42QaWOneGd6wTEL8h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 822917086f13b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cameesse.net/1?z=4503926

139.45.197.242

404 Not Found

7 B

URL GET HTTP/2
cameesse.net/1?z=4503926
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectcameesse.net
Fingerprint95:AE:4C:29:A9:9F:0C:04:38:32:00:81:30:07:95:A7:F8:B0:77:D6
ValidityWed, 18 Oct 2023 10:27:53 GMT - Tue, 16 Jan 2024 10:27:52 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
3b66fb7a307f3ca29bd59b2f354055bd
d6ae6ccb37eb272d94d4a5191fa50372f4d06bba
de68e8f959bc131328db7581860711517d6ae1eb03aa047043dc7f826906e5a4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=4503926 HTTP/1.1
Host: cameesse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: text/plain; charset=utf-8
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: d39a2e343e4f3dfb85967a12094407a2
access-control-expose-headers: X-Sc
x-sc: 4KdnrdofxFOHMlcU
set-cookie: scm=1; expires=Wed, 06 Nov 2024 22:42:32 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

supervideo.tv/images/logo_p.png

104.21.21.104

200 OK

2.8 kB

URL GET HTTP/3
supervideo.tv/images/logo_p.png
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
PNG image data, 100 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2754 bytes)
Hash
f0275e5a475f13d8ba45e4838589543a
2fc8bd9b1f1c44832478b9b9e3f5ecbfc5bd06fa
987e4fc5193943637417505a5ed79056c8581f52139c8d6fa24a77a2531d4ff9

HTTP Headers

GET /images/logo_p.png HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/png
content-length: 2754
etag: "ac2-5a160d27ea200"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Fri, 27 Oct 2023 07:09:50 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 1004611
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2BryUOVHnw3FypjEtDFQRh46b%2Biddt7HR2Y6Z6z1gUzKpIiu98YIolTwUCamsVeWFV2OblkuEg0kp0B87YrBCErHCJx3HCAceXjHKhNpE5%2F4ivjznZ4CdLoo9awrAOJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82291709cffeb527-OSL
alt-svc: h3=":443"; ma=86400

regretfactor.com/48/23/18/4823183059309087ea8f392eb36cb0be.json

192.243.59.12

200 OK

415 B

URL GET HTTP/1.1
regretfactor.com/48/23/18/4823183059309087ea8f392eb36cb0be.json
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subject*.regretfactor.com
Fingerprint02:B9:9C:74:DD:82:DC:42:2F:3D:8C:F1:11:D4:CC:55:E3:3C:CB:C3
ValidityFri, 22 Sep 2023 06:40:40 GMT - Thu, 21 Dec 2023 06:40:39 GMT

File type
JSON data\012- , ASCII text, with very long lines (415), with no line terminators
Size
415 B (415 bytes)
Hash
2afb7f3241088d485b806a03b4210a85
c7bf38535371a44375571d988b0da424b891bee6
7867543bd83fa0ff39cb0222f1002ad614f3e4052551be0c1fb73dda9d9ba755

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /48/23/18/4823183059309087ea8f392eb36cb0be.json HTTP/1.1
Host: regretfactor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 Nov 2023 22:42:32 GMT
Content-Type: application/json
Content-Length: 415
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebc5b82d9a292daabe073386d7bb008e
Strict-Transport-Security: max-age=0; includeSubdomains

g.jwpsrv.com/g/gcid-0.1.2.html?notrack

151.101.66.114

204 No Content

0 B

URL GET HTTP/2
g.jwpsrv.com/g/gcid-0.1.2.html?notrack
IP
151.101.66.114:443
ASN
#54113 FASTLY

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintAB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A
ValidityWed, 30 Aug 2023 18:09:48 GMT - Mon, 30 Sep 2024 18:09:47 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /g/gcid-0.1.2.html?notrack HTTP/1.1
Host: g.jwpsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: Varnish
retry-after: 0
content-type: text/html; charset=utf-8
accept-ranges: bytes
date: Tue, 07 Nov 2023 22:42:32 GMT
via: 1.1 varnish
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1699396953.727954,VS0,VE0
access-control-allow-origin: *
X-Firefox-Spdy: h2

supervideo.tv/images/download2.png

104.21.21.104

200 OK

236 B

URL GET HTTP/3
supervideo.tv/images/download2.png
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
236 B (236 bytes)
Hash
e6d561d2041ff9113b7fd8fba623a32f
ee9827caa98c0f41a0696bd4764b984fdd648e36
7c100859ecfaf76071b075ca2dc39b0f67a0b32f1c0128be02dd4c3ad4546ba0

HTTP Headers

GET /images/download2.png HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/png
content-length: 236
etag: "ec-5a160d2601d80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Sat, 28 Oct 2023 06:18:00 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 921185
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jdl1f165J3FBDE4KDjdoCVE8edSNB8OPnZjSVoYQ92iv51VTMrsLO7OIo2DnfFFMdvscBX0S3yNsl%2F3uCzH1Ob9xmiAPt8ssug3wQq0%2FQrvbrbGC4fQrP1Ty4z71Naau"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8229170ad8c4b527-OSL
alt-svc: h3=":443"; ma=86400

revolvemockerycopper.com/pixel/pure

192.243.61.225

204 No Content

0 B

URL OPTIONS HTTP/1.1
revolvemockerycopper.com/pixel/pure
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subject*.revolvemockerycopper.com
FingerprintC8:F7:D3:C6:2D:3C:E1:7C:21:B1:C3:37:AE:2D:E9:1F:7C:8C:C5:92
ValidityFri, 29 Sep 2023 07:01:31 GMT - Thu, 28 Dec 2023 07:01:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /pixel/pure HTTP/1.1
Host: revolvemockerycopper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://supervideo.tv/
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Server: nginx/1.21.6
Date: Tue, 07 Nov 2023 22:42:32 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0

hfs261.serversicuro.cc/hls/,dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq,.urlset/master.m3u8

213.152.167.82

200 OK

475 B

URL GET HTTP/1.1
hfs261.serversicuro.cc/hls/,dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq,.urlset/master.m3u8
IP
213.152.167.82:443
ASN
#49453 Global Layer B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectserversicuro.cc
FingerprintD8:79:3A:BA:F2:0F:3B:DB:38:F4:78:0B:FE:DC:BA:E4:2C:4F:F0:74
ValidityMon, 06 Nov 2023 11:55:57 GMT - Sun, 04 Feb 2024 11:55:56 GMT

File type
M3U playlist, ASCII text
Size
475 B (475 bytes)
Hash
bb607f2672ee636195754843f6e84ce7
79f189775d3ddfce52bb3a32b0f8ee3f3b69f80b
9a4dd3ef9e037f6d24374579dc6face6b8b51de926bbc81015f1790669440143

HTTP Headers

GET /hls/,dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq,.urlset/master.m3u8 HTTP/1.1
Host: hfs261.serversicuro.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 22:42:32 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 475
Connection: keep-alive
Expires: Wed, 08 Nov 2023 10:42:32 GMT
Cache-Control: max-age=43200
ETag: "-1-1db"
Last-Modified: Sun, 11 Sep 2000 09:00:00 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ophoacit.com/9?z=5530353&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&oaid=b508e6002a21421bb3db5cbbb1667dcb

139.45.197.242

200 OK

0 B

URL POST HTTP/2
ophoacit.com/9?z=5530353&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&oaid=b508e6002a21421bb3db5cbbb1667dcb
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintBA:22:E5:6C:16:E2:40:EC:4F:D5:BC:70:BD:70:0F:C0:76:C0:39:8F
ValidityWed, 16 Aug 2023 07:14:02 GMT - Tue, 14 Nov 2023 07:14:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /9?z=5530353&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&oaid=b508e6002a21421bb3db5cbbb1667dcb HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://supervideo.tv/
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Tue, 07 Nov 2023 22:42:32 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://supervideo.tv
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

revolvemockerycopper.com/pixel/pure

192.243.61.225

204 No Content

0 B

URL OPTIONS HTTP/1.1
revolvemockerycopper.com/pixel/pure
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subject*.revolvemockerycopper.com
FingerprintC8:F7:D3:C6:2D:3C:E1:7C:21:B1:C3:37:AE:2D:E9:1F:7C:8C:C5:92
ValidityFri, 29 Sep 2023 07:01:31 GMT - Thu, 28 Dec 2023 07:01:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /pixel/pure HTTP/1.1
Host: revolvemockerycopper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 Nov 2023 22:42:32 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

supervideo.tv/dl?op=get_slides&length=2706.26&url=https://hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg

104.21.21.104

200 OK

7.4 kB

URL GET HTTP/3
supervideo.tv/dl?op=get_slides&length=2706.26&url=https://hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text
Size
7.4 kB (7360 bytes)
Hash
dae2e950bf7f002124bd472dfdb9e7f1
4f4f4dcf9c6c686ec3e2725756432a700155d57a
d34b1009dd3c13197638fa9dda1fbdbf8f021af40984f0d97745125ef1abc5b6

HTTP Headers

GET /dl?op=get_slides&length=2706.26&url=https://hfs261.serversicuro.cc/i/01/00298/20x7j9iedbb70000.jpg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: text/vtt
x-cache-status: BYPASS
x-6-cache-date: Tue, 07 Nov 2023 22:42:32 GMT
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: MISS
last-modified: Tue, 07 Nov 2023 22:42:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QdjqsU4FQgpu8BqwYmkebRS4R4BxawDTC9qZuw4Nmfr6LWC9A399xqZHBM%2BnDLz%2FKhBwRNYA%2BK48PFjHxh90LqjNa0ZF7Vv%2BlgZWaBJmh9PbC2F%2FXlWbpvT9QVTVDhCz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8229170a5864b527-OSL
alt-svc: h3=":443"; ma=86400

hfs261.serversicuro.cc/hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/index-v1-a1.m3u8

213.152.167.82

200 OK

6.0 kB

URL GET HTTP/1.1
hfs261.serversicuro.cc/hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/index-v1-a1.m3u8
IP
213.152.167.82:443
ASN
#49453 Global Layer B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectserversicuro.cc
FingerprintD8:79:3A:BA:F2:0F:3B:DB:38:F4:78:0B:FE:DC:BA:E4:2C:4F:F0:74
ValidityMon, 06 Nov 2023 11:55:57 GMT - Sun, 04 Feb 2024 11:55:56 GMT

File type
M3U playlist, ASCII text
Size
6.0 kB (6001 bytes)
Hash
e8d37205ed3999b994a9a300e06a0c04
0aa2df7ee10d62a48e1fd614297de0311b65f4e4
8f2b8983f1ca5fe5b56d7081e26e61491d06f4fa52b6aa54d9c7dfc63ec6572f

HTTP Headers

GET /hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/index-v1-a1.m3u8 HTTP/1.1
Host: hfs261.serversicuro.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 22:42:33 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 6001
Connection: keep-alive
Expires: Wed, 08 Nov 2023 10:42:33 GMT
Cache-Control: max-age=43200
ETag: "-1-1771"
Last-Modified: Sun, 11 Sep 2000 09:00:00 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

gishejuy.com/400/3710709

139.45.197.242

403 Forbidden

22 B

URL GET HTTP/2
gishejuy.com/400/3710709
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectgishejuy.com
Fingerprint99:91:AA:4E:BA:FC:75:A0:0A:79:EE:F6:15:64:FA:15:B2:BC:61:31
ValidityWed, 25 Oct 2023 09:21:45 GMT - Tue, 23 Jan 2024 09:21:44 GMT

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
b5e50d07b6b24e1e105e6e4fceb97bf6
95d7e8119b8befc7153b44b4c7be59f26bd6ad33
61c3148fba3befcce5b4636c4209a440913a136138bf62005df97386827f2ae2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /400/3710709 HTTP/1.1
Host: gishejuy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: text/plain; charset=utf-8
content-length: 22
x-trace-id: 72c09eaba2edcd05809e564db1911df4
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2

139.45.197.242

200 OK

3.1 kB

URL POST HTTP/2
ophoacit.com/9?z=5530353&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&oaid=b508e6002a21421bb3db5cbbb1667dcb
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintBA:22:E5:6C:16:E2:40:EC:4F:D5:BC:70:BD:70:0F:C0:76:C0:39:8F
ValidityWed, 16 Aug 2023 07:14:02 GMT - Tue, 14 Nov 2023 07:14:01 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
3.1 kB (3098 bytes)
Hash
b1ced142080266e84371f7b17beb045c
7f4e6e9d128dca710e69cdd47a7e500673f4a8c7
c3c3843120a7c856224b3c6004d6e90c26207e859d662cfaa3a1e51ac0d53aae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /9?z=5530353&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&oaid=b508e6002a21421bb3db5cbbb1667dcb HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 43
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Cookie: scm=1; OAID=ee967d77a4d14534a9b5d98c4e0fbe27; oaidts=1699396951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://supervideo.tv
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: a38402ee95809432a08bf292c9cf21e2
access-control-expose-headers: X-Sc
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:33 GMT; secure; SameSite=None
oaidts=1699396951; expires=Wed, 06 Nov 2024 22:42:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

ophoacit.com/11?rnd=3912408413&z=5530353&b=18615710&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=uAQEjOmWG8Q2ADMm9dscdO5FWuq7WD4dMScoDVDT2X85Nj78EfqJ1Jfc3Yz2XENZLzgIIbP-12WqgteamuNvEZTMlpU3s6h3EyP0WCJy7v-a1jHHWvb8ltVDyqXRpVqhp6eMiYbvYP02NIPvAzZkA4LpOUYdszXEmMoTm40kFlN1vpMf2NS4kjrYqKQpi1X-zdp7_O2ZGTM6hgaPBPZpVGpGYiSHf2LH-URs7ak8tClE8oacp4EbrfQxJJkrTbU-5vwfyafVJJmvYwI08jzamjYFA8oLczdMfC5DkwvipnbRGOgCrHbXPHoa82Asgef6vFpn43xGUs3KCL-Riq5tl1mDnrmdpUHtJXbDw2YJh1-0-cxkl1_1z7tccvGBwSDIZIJ_Rh3JMwRE89jyRXakAzxHQ1L1GLaMQwS2_3Q2Db0s24HW2AgMCVTmhtWIk1fC5kLhWiIwyT7Sih1Y6iTwxbTl0fpw7JWKUrV63PlSXb-_nK-mqs0_4io1Ny1NAvtW6vdQIWYF376x6DTKGNA9BgyoZG_2mieAdV4EV0f2lCzn36QX74XSx56sVxsJJmzCVIw8ociFgMxhdcDNPPvdAN9M7nYGgRC2aFdmITbpBAtRQBBbFbkCDpH0wSVHXWdW24zSliNqZLhuzAEvYo5rsQxJEqJByutPGQgzPQ==&ruid=caa68acd-1b52-4b68-a3f3-df65a9ea21af&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=199

139.45.197.242

200 OK

0 B

URL GET HTTP/2
ophoacit.com/11?rnd=3912408413&z=5530353&b=18615710&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=uAQEjOmWG8Q2ADMm9dscdO5FWuq7WD4dMScoDVDT2X85Nj78EfqJ1Jfc3Yz2XENZLzgIIbP-12WqgteamuNvEZTMlpU3s6h3EyP0WCJy7v-a1jHHWvb8ltVDyqXRpVqhp6eMiYbvYP02NIPvAzZkA4LpOUYdszXEmMoTm40kFlN1vpMf2NS4kjrYqKQpi1X-zdp7_O2ZGTM6hgaPBPZpVGpGYiSHf2LH-URs7ak8tClE8oacp4EbrfQxJJkrTbU-5vwfyafVJJmvYwI08jzamjYFA8oLczdMfC5DkwvipnbRGOgCrHbXPHoa82Asgef6vFpn43xGUs3KCL-Riq5tl1mDnrmdpUHtJXbDw2YJh1-0-cxkl1_1z7tccvGBwSDIZIJ_Rh3JMwRE89jyRXakAzxHQ1L1GLaMQwS2_3Q2Db0s24HW2AgMCVTmhtWIk1fC5kLhWiIwyT7Sih1Y6iTwxbTl0fpw7JWKUrV63PlSXb-_nK-mqs0_4io1Ny1NAvtW6vdQIWYF376x6DTKGNA9BgyoZG_2mieAdV4EV0f2lCzn36QX74XSx56sVxsJJmzCVIw8ociFgMxhdcDNPPvdAN9M7nYGgRC2aFdmITbpBAtRQBBbFbkCDpH0wSVHXWdW24zSliNqZLhuzAEvYo5rsQxJEqJByutPGQgzPQ==&ruid=caa68acd-1b52-4b68-a3f3-df65a9ea21af&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=199
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintBA:22:E5:6C:16:E2:40:EC:4F:D5:BC:70:BD:70:0F:C0:76:C0:39:8F
ValidityWed, 16 Aug 2023 07:14:02 GMT - Tue, 14 Nov 2023 07:14:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=3912408413&z=5530353&b=18615710&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=uAQEjOmWG8Q2ADMm9dscdO5FWuq7WD4dMScoDVDT2X85Nj78EfqJ1Jfc3Yz2XENZLzgIIbP-12WqgteamuNvEZTMlpU3s6h3EyP0WCJy7v-a1jHHWvb8ltVDyqXRpVqhp6eMiYbvYP02NIPvAzZkA4LpOUYdszXEmMoTm40kFlN1vpMf2NS4kjrYqKQpi1X-zdp7_O2ZGTM6hgaPBPZpVGpGYiSHf2LH-URs7ak8tClE8oacp4EbrfQxJJkrTbU-5vwfyafVJJmvYwI08jzamjYFA8oLczdMfC5DkwvipnbRGOgCrHbXPHoa82Asgef6vFpn43xGUs3KCL-Riq5tl1mDnrmdpUHtJXbDw2YJh1-0-cxkl1_1z7tccvGBwSDIZIJ_Rh3JMwRE89jyRXakAzxHQ1L1GLaMQwS2_3Q2Db0s24HW2AgMCVTmhtWIk1fC5kLhWiIwyT7Sih1Y6iTwxbTl0fpw7JWKUrV63PlSXb-_nK-mqs0_4io1Ny1NAvtW6vdQIWYF376x6DTKGNA9BgyoZG_2mieAdV4EV0f2lCzn36QX74XSx56sVxsJJmzCVIw8ociFgMxhdcDNPPvdAN9M7nYGgRC2aFdmITbpBAtRQBBbFbkCDpH0wSVHXWdW24zSliNqZLhuzAEvYo5rsQxJEqJByutPGQgzPQ==&ruid=caa68acd-1b52-4b68-a3f3-df65a9ea21af&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=2&sah=1024&drf=&hil=1&ist=0&ot=199 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Cookie: scm=1; OAID=b508e6002a21421bb3db5cbbb1667dcb; oaidts=1699396951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://supervideo.tv
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: c74f8331b879437197173b97d40ab923
access-control-expose-headers: X-Sc
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:33 GMT; secure; SameSite=None
oaidts=1699396951; expires=Wed, 06 Nov 2024 22:42:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

hfs261.serversicuro.cc/hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/seg-1-v1-a1.ts

213.152.167.82

200 OK

2.4 MB

URL GET HTTP/1.1
hfs261.serversicuro.cc/hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/seg-1-v1-a1.ts
IP
213.152.167.82:443
ASN
#49453 Global Layer B.V.

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectserversicuro.cc
FingerprintD8:79:3A:BA:F2:0F:3B:DB:38:F4:78:0B:FE:DC:BA:E4:2C:4F:F0:74
ValidityMon, 06 Nov 2023 11:55:57 GMT - Sun, 04 Feb 2024 11:55:56 GMT

File type
MPEG transport stream data\012- data
Size
2.4 MB (2361656 bytes)
Hash
6652353b79bb022f84c8f0653bc6eadf
064b0d441e5c5b31ca8abda89b7143e49cda9417
32615bce1f81cb01bf045e48355f1cefa99a1717a2b4d1c5c6fcc13d161a95de

HTTP Headers

GET /hls/dnzpebb333g4a3gyvdwh52trrmp3giz77isd5pbmk467t7lzt4m4o7lhphpq/seg-1-v1-a1.ts HTTP/1.1
Host: hfs261.serversicuro.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Nov 2023 22:42:33 GMT
Content-Type: video/MP2T
Content-Length: 2361656
Connection: keep-alive
Expires: Wed, 08 Nov 2023 10:42:33 GMT
Cache-Control: max-age=43200
ETag: "-1-240938"
Last-Modified: Sun, 11 Sep 2000 09:00:00 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

supervideo.tv/js/pop.js

104.21.21.104

200 OK

30 B

URL GET HTTP/3
supervideo.tv/js/pop.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
1c57f7e83ceae8ee7d8707cf3eb91c2c
ca5b7c4bf30cbdb6a4680ee5345d5c68e90d0675
cdf19c04fc4fd1992d9cf69ee0ef7c83d03dfa4f6998f06c8d73611f5a6d1740

HTTP Headers

GET /js/pop.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
content-length: 30
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=36
etag: "24-5a160d2bbab00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
x-7-cache-date: Thu, 26 Oct 2023 04:07:53 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1102293
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvnPE4kKDDMJVnnUAvEapvjsqlW8lY2cPP1b72fDSiOdnClIwcVvdQB9hUh4ikIhSBQ%2FxGS4u7U244p%2Fm1FuCBhB%2FaqLQnOY9JI9URILjbKwTzNRyk9Ok8eKtrJqcsdv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82291702bb2db527-OSL
alt-svc: h3=":443"; ma=86400

supervideo.tv/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.21.104

302 Found

7.3 kB

URL GET HTTP/3
supervideo.tv/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type

Size
7.3 kB (7281 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=1; file_id=1492364; aff=14532
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Tue, 07 Nov 2023 22:42:32 GMT
access-control-allow-origin: *
vary: accept-encoding
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X6N%2BJTs4jheDhhM8WF3C6AMMQVFMwy47z%2F02ZQsDATm%2BsTIjaYHQqQjXXmerNcKzh%2Bid2vOMpplHdqe2iBnmjw0N1UMiPmQCCPhmP1NKkgZle2MmFaP5MW1XBZu79QAM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 822917068dd2b527-OSL
alt-svc: h3=":443"; ma=86400

supervideo.tv/cdn-cgi/challenge-platform/h/g/jsd/r/822916febbbb5685

104.21.21.104

200 OK

0 B

URL POST HTTP/3
supervideo.tv/cdn-cgi/challenge-platform/h/g/jsd/r/822916febbbb5685
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/822916febbbb5685 HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12207
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952; path=/; expires=Wed, 06-Nov-24 22:42:32 GMT; domain=.supervideo.tv; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wv5uHLzx7w7GIsqH%2BQkRXzaEr9zXocZFHJsztBpkJBQvba4%2Bf6ro8qRSDIMkX1mhINab%2FTcYrP0jlTLxz4nUc1RqgOHObzLWfzGAPXNGX43sxJHc%2FYGGYuu5gYokIKgu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291709bff0b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

simplewebanalysis.com/stats

0.0.0.0

0 B

URL GET
simplewebanalysis.com/stats
IP
0.0.0.0:0
ASN
#0

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

ausoafab.net/?rb=QX7R8DuTvImKn1RyZpAezJXRg73lHrfAPhjH8YsYvMB2EMlluQ1PgHLmr0RR-JQyWsNiepULb_qqA1_zcviWZVhLXTbw4otygk7QBksN3m9ZgbHXDDZU4sk7jVjl-IoYHTOU-iJ3Gx-0YgI2HfqYWsQm7iiI2FPIKWCzdr9Z-w2t8kWHe7eQksOe8Z-dAedHxWU6MpAAEu3wA2HptVRL-nNIYwM%3D&request_ab2=0&zoneid=5859254&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=c9029475-ea55-4846-ba83-fcbd085a5dd7&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link

139.45.197.239

200 OK

1.7 kB

URL GET HTTP/2
ausoafab.net/?rb=QX7R8DuTvImKn1RyZpAezJXRg73lHrfAPhjH8YsYvMB2EMlluQ1PgHLmr0RR-JQyWsNiepULb_qqA1_zcviWZVhLXTbw4otygk7QBksN3m9ZgbHXDDZU4sk7jVjl-IoYHTOU-iJ3Gx-0YgI2HfqYWsQm7iiI2FPIKWCzdr9Z-w2t8kWHe7eQksOe8Z-dAedHxWU6MpAAEu3wA2HptVRL-nNIYwM%3D&request_ab2=0&zoneid=5859254&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=c9029475-ea55-4846-ba83-fcbd085a5dd7&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link
IP
139.45.197.239:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectausoafab.net
Fingerprint76:48:0B:47:30:0D:DD:02:89:2A:3D:8D:EA:A5:68:84:23:69:6C:2E
ValiditySun, 17 Sep 2023 05:19:45 GMT - Sat, 16 Dec 2023 05:19:44 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1710), with no line terminators
Size
1.7 kB (1690 bytes)
Hash
06d036128fc78df51ae42eefb5b06b0a
593a670b9e04564ba81195cf02f4b5c6ed42e556
538d74ca9fc16e054a3199b11693dd9d99836ae2e0ad7eade2f997ba98db9d65

HTTP Headers

GET /?rb=QX7R8DuTvImKn1RyZpAezJXRg73lHrfAPhjH8YsYvMB2EMlluQ1PgHLmr0RR-JQyWsNiepULb_qqA1_zcviWZVhLXTbw4otygk7QBksN3m9ZgbHXDDZU4sk7jVjl-IoYHTOU-iJ3Gx-0YgI2HfqYWsQm7iiI2FPIKWCzdr9Z-w2t8kWHe7eQksOe8Z-dAedHxWU6MpAAEu3wA2HptVRL-nNIYwM%3D&request_ab2=0&zoneid=5859254&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=c9029475-ea55-4846-ba83-fcbd085a5dd7&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link HTTP/1.1
Host: ausoafab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://supervideo.tv/
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; oaidts=1699396951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: application/json
x-trace-id: 67368b8ed90586ae031944d382eafd96
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://supervideo.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
oaidts=1699396953; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 14 Nov 2023 22:42:33 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

gihehazfdm.com/?rb=PPy_OmUvSAJlarW6p1ghYg16O5zd8DXoYE_D-uGFWLK5-V-PjEGQ8M1u05DiRxceCeZStlsKJ6zzilNMRQG5ZW-JvBiewnJtQO2tU8qhurEQsk8FfIkVdAZX7j3N9pQSV2vNy0v2_J3xqtE1urprWrkG28UA8QmPbYR5z43OeCBAShYFK6_t6uGCoHCBDQQtDi2LZrl_HyfBv6ZCjvDPUf1kdrKw4796CX8Jqg%3D%3D&request_ab2=0&zoneid=3897677&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=114a57a9-3e03-41a1-9e66-7b5eb4ef818d&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link

139.45.197.244

200 OK

1.7 kB

URL GET HTTP/2
gihehazfdm.com/?rb=PPy_OmUvSAJlarW6p1ghYg16O5zd8DXoYE_D-uGFWLK5-V-PjEGQ8M1u05DiRxceCeZStlsKJ6zzilNMRQG5ZW-JvBiewnJtQO2tU8qhurEQsk8FfIkVdAZX7j3N9pQSV2vNy0v2_J3xqtE1urprWrkG28UA8QmPbYR5z43OeCBAShYFK6_t6uGCoHCBDQQtDi2LZrl_HyfBv6ZCjvDPUf1kdrKw4796CX8Jqg%3D%3D&request_ab2=0&zoneid=3897677&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=114a57a9-3e03-41a1-9e66-7b5eb4ef818d&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectgihehazfdm.com
Fingerprint21:5C:92:AA:28:0F:0E:C5:0D:83:60:1A:5A:19:E0:61:A8:F6:FD:5D
ValidityThu, 26 Oct 2023 19:39:49 GMT - Wed, 24 Jan 2024 19:39:48 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1740), with no line terminators
Size
1.7 kB (1720 bytes)
Hash
eaef0a6c15fe2ac0c6b36fbcac80039d
135dfbc3308f3c9597343a7f1845e4c27586fdd3
f7bd90616086daa82db375376514847721d6b0afc1ae30f14caa3726bffee1df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=PPy_OmUvSAJlarW6p1ghYg16O5zd8DXoYE_D-uGFWLK5-V-PjEGQ8M1u05DiRxceCeZStlsKJ6zzilNMRQG5ZW-JvBiewnJtQO2tU8qhurEQsk8FfIkVdAZX7j3N9pQSV2vNy0v2_J3xqtE1urprWrkG28UA8QmPbYR5z43OeCBAShYFK6_t6uGCoHCBDQQtDi2LZrl_HyfBv6ZCjvDPUf1kdrKw4796CX8Jqg%3D%3D&request_ab2=0&zoneid=3897677&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=2&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=114a57a9-3e03-41a1-9e66-7b5eb4ef818d&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link HTTP/1.1
Host: gihehazfdm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://supervideo.tv/
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Cookie: OAID=462799e840dd442689820c42a3210ada; oaidts=1699396952
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: application/json
x-trace-id: c2a768ab3ec0fe1caaf491256fd0d52b
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://supervideo.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
oaidts=1699396953; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 14 Nov 2023 22:42:33 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

ssl.p.jwpcdn.com/player/v/8.9.5/provider.hlsjs.js

151.101.66.114

200 OK

315 kB

URL GET HTTP/2
ssl.p.jwpcdn.com/player/v/8.9.5/provider.hlsjs.js
IP
151.101.66.114:443
ASN
#54113 FASTLY

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintAB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A
ValidityWed, 30 Aug 2023 18:09:48 GMT - Mon, 30 Sep 2024 18:09:47 GMT

File type

Size
315 kB (314658 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /player/v/8.9.5/provider.hlsjs.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Fri, 26 Jul 2019 21:30:52 GMT
etag: "c1b935a682ff8774bd95d07321409839"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Nov 2023 22:42:32 GMT
via: 1.1 varnish
age: 688177
x-served-by: cache-bma1621-BMA
x-cache: HIT
x-cache-hits: 22
x-timer: S1699396952.099856,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 87639
X-Firefox-Spdy: h2

banquetunarmedgrater.com/advertisers.js

172.64.199.37

200 OK

0 B

URL GET HTTP/2
banquetunarmedgrater.com/advertisers.js
IP
172.64.199.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint77:2B:76:51:D0:51:70:02:2E:BF:B7:9B:02:8B:5A:A4:91:FA:0B:9E
ValidityMon, 11 Sep 2023 08:34:11 GMT - Sun, 10 Dec 2023 08:34:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 2eb8cd0dc08fba8ff132ef05303b806c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 07 Nov 2023 22:42:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x8KqW7nQvwLjKcs4IwCPZOP0HoZl5sYeHS9Z8kfmkRFWDKjKP%2Fkx8bQ9AJNjSzPVjBLHwrT0WUGvjClxT2AbbpZtsMwFZP0Zt3FW7gro8dlx92BXn38v5SLPJes9vTrCjFajIEJ2n0wx6oU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8229170c09b488b0-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

supervideo.tv/tag2.js

104.21.21.104

200 OK

70 kB

URL GET HTTP/3
supervideo.tv/tag2.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type

Size
70 kB (70542 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tag2.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
etag: W/"1138e-5f9edc253d7f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Fri, 27 Oct 2023 09:03:53 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 996468
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CYOpcBID8nBQ7iHP5KGsSVrSQ7Rmz54pmAeb4cc4BgDwPktnfERWzE8JtNkF7xVCRJBL0TqM8W2%2BTBVKzYNb90lGkrz7mJyA15qdrWTqHbtg2qfwwe%2F1XoCItwUgViE3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb29b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dismantlepenantiterrorist.com/pxf.gif?uuid=&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=13.2079&b_frame=0&pk=4823183059309087ea8f392eb36cb0be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22

0.0.0.0

0 B

URL GET
dismantlepenantiterrorist.com/pxf.gif?uuid=&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=13.2079&b_frame=0&pk=4823183059309087ea8f392eb36cb0be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22
IP
0.0.0.0:0
ASN
#0

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=13.2079&b_frame=0&pk=4823183059309087ea8f392eb36cb0be&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

supervideo.tv/assets/player/close.svg

104.21.21.104

200 OK

599 B

URL GET HTTP/3
supervideo.tv/assets/player/close.svg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (652), with no line terminators
Size
599 B (599 bytes)
Hash
c114a2b1152aa1e3861ca9efb953f040
2520aa43c47bff0f4cc8c1d96f75accdb252c41c
846a64d0d9596971e53fcbc6303161fadb5a8e1780444a37cce05efc129d696f

HTTP Headers

GET /assets/player/close.svg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/assets/player/myskinfile.css?v=10
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"257-5a160d1e60b80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Tue, 07 Nov 2023 11:46:45 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 35417
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXP7hs7qk6g7dmk9CQelQ0DO7ETME2KDFl1bvaRF1ijJaR7lxfAZUzWW7tzLh8IkVg4htdAZPMQG8yuJzMNEYKCfdiiuqjlGE0PCuoQ0gmIskawA%2B4HXYvonCH9OBCwO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8229170aa8a3b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/css/main.css

104.21.21.104

200 OK

39 kB

URL GET HTTP/3
supervideo.tv/css/main.css
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (38592), with no line terminators
Size
39 kB (38592 bytes)
Hash
d5197a9ef2a539283f94896862a58c6b
d4bc8b1046ea9511a9dff91132ce42ae174cd8e3
3e1f228e49be7c11c9fafde5dc5de439b0e845ff35017ea2f95b2544ea9b6bf6

HTTP Headers

GET /css/main.css HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=48675
etag: W/"be23-5a160d2049000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Wed, 25 Oct 2023 05:10:51 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1184494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q7%2BppB4aMo7rmHpSI7c93Ca5gNM4nuzHP3uCNIC1lpgNbDi0OCqaI77Az56C13G3eGorT6mcNz%2FsqqCKjNnyh7TG1UDUazrgga%2FGyksfoiB4YuPebbUPySmP1OkSEbQn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702ab22b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/js/xupload.js?v=4

104.21.21.104

200 OK

7.3 kB

URL GET HTTP/3
supervideo.tv/js/xupload.js?v=4
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (7489), with no line terminators
Size
7.3 kB (7342 bytes)
Hash
8a8a7c16f7f8d4e7c5f88238653caeea
4642bcd606d758ab7d94fcf7f806f91f081c8cd0
f9777f372e21c449350288a79f2db95df148c91bbf9099012c6c21a94bd7843f

HTTP Headers

GET /js/xupload.js?v=4 HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=9817
etag: W/"2659-5a160d2bbab00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Fri, 27 Oct 2023 01:35:15 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1024173
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D3NaPdGPfbPg0lGSa7JhBoQiPqIHUYHDsjHhp%2BkZwcmYIxrUzDikrLrRV5Oe4sp4yv2PeS6hvM0Qa64q57jnMaK%2FQpXqPgYp0boLYNSmPG8ENLn%2BS%2BdyUUgoKK8PpbCu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb24b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Montserrat:400,600&display=swap

142.250.74.106

200 OK

3.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Montserrat:400,600&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (3750), with no line terminators
Size
3.7 kB (3660 bytes)
Hash
dddb430c1361c5368aa15d7f5a05088f
7c9be8dfcdd38656ab7ebfca95500e0485ceacb7
074bc28e6be30e95608a48758a2d46902b00127ed25594db8284639f7ee691d6

HTTP Headers

GET /css?family=Montserrat:400,600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Nov 2023 22:42:31 GMT
date: Tue, 07 Nov 2023 22:42:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

0.0.0.0

0 B

URL GET
simplewebanalysis.com/stats
IP
0.0.0.0:0
ASN
#0

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

supervideo.tv/player8/jwplayer.js

104.21.21.104

200 OK

109 kB

URL GET HTTP/3
supervideo.tv/player8/jwplayer.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (65169)
Size
109 kB (108623 bytes)
Hash
96621739b94d70a0c27c2dbf3b03d1c0
395260f1408af43ecc939b27bc5f9e6d3de49f20
4f5c0210ceb0fb77e8698fbd00f87197082706c17a0ad8da061e3da8db920a05

HTTP Headers

GET /player8/jwplayer.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=108648
etag: W/"1a868-5a160d3544180"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Fri, 27 Oct 2023 05:11:17 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1011884
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IDcUXOCbhnRktu5OkJ2uUHWNtPrwHvaA77tZC%2FoC0Owebq91pzLGKUYdx8ZsvFiwbCgIjlv%2FgDN%2FeqVUvwO%2BElWn2wV0Bgsmt5kmUSb4UV7fr0KxFwRTMkYMQWwmNbmv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb2ab527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/assets/player/fullscreen-on.svg

104.21.21.104

200 OK

636 B

URL GET HTTP/3
supervideo.tv/assets/player/fullscreen-on.svg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (692), with no line terminators
Size
636 B (636 bytes)
Hash
9eef47650cde2a6d44e72fad546ebc21
94afc0264399f5723207c712adc135599879155d
8a648772235c38740555911d464d0584ab0486fc30bd583a868b46c2dfe441e5

HTTP Headers

GET /assets/player/fullscreen-on.svg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/assets/player/myskinfile.css?v=10
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"27c-5a160d1e60b80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Thu, 26 Oct 2023 01:31:17 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 1107513
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Za3C3GIG2gE4FCLAheYUTkoP2FlIqAEziibqKzKPbexkRtk6EolwSe%2F4UA1arwQDFxggpnqUYj%2F321xXPfF6w88mT1SupQCbG1Cl8Kc3kItLLKOnH49AiOCJ2sMnuDS9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8229170b08e9b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-QYLE1DXYEC&l=dataLayer&cx=c

142.250.74.168

200 OK

229 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-QYLE1DXYEC&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA
ValidityMon, 16 Oct 2023 08:02:30 GMT - Mon, 08 Jan 2024 08:02:29 GMT

File type
ASCII text, with very long lines (5955)
Size
229 kB (228695 bytes)
Hash
a881580c45e6bb64a16583dfeea86770
2b2385cde890b77ba19ac0c35e2b6bf0e64cbd67
567996d98f5cf52227e666dafc960c8130feae0b80d52a29839963e0f2c398d0

HTTP Headers

GET /gtag/js?id=G-QYLE1DXYEC&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Nov 2023 22:42:31 GMT
expires: Tue, 07 Nov 2023 22:42:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80877
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

inklinkor.com/tag.min.js

172.67.211.29

200 OK

81 kB

URL GET HTTP/2
inklinkor.com/tag.min.js
IP
172.67.211.29:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subjectinklinkor.com
Fingerprint5D:E8:2B:4E:1D:87:E7:D0:24:0C:11:4B:6D:AF:1B:8A:38:CB:A3:6E
ValidityMon, 23 Oct 2023 14:48:09 GMT - Sun, 21 Jan 2024 14:48:08 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
81 kB (80827 bytes)
Hash
9886ced2a23f597e699da8c08cce79d8
052851b56885ea5ce57d98c36163680300f64bc0
515abc8669312dd2e623a0a8f1d6fce5593e131ddc96d330a38810dc3e04075c

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: ec92f9a0342baae4670b61d773a47637
cache-control: max-age=86400
last-modified: Tue, 07 Nov 2023 13:38:54 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Wed, 08 Nov 2023 21:06:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 5754
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zDM6RByGZCkgu1AaljbQ%2BcMIb7Fuos%2FdgTG0G7vCLoHHSDr%2FI7elW1OmUWknUnOnzKMYwwaXYZZCqWtke%2BbrTT%2F%2BmCQVnN%2BBVUPm3gb2q0JmKvMRVfz7eIQL4U56wCT1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 822917045ef35688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

addresseepaper.com/sfp.js

0.0.0.0

0 B

URL GET
addresseepaper.com/sfp.js
IP
0.0.0.0:0
ASN
#0

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

supervideo.tv/assets/images/favicon/favicon.ico

104.21.21.104

200 OK

539 B

URL GET HTTP/3
supervideo.tv/assets/images/favicon/favicon.ico
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
539 B (539 bytes)
Hash
4ce353ce981a65a16b1725bbe32b6ecf
8cfedade8a86cf6362e08ff516364ea05d234ef4
ac42ed69c2d1c2a716fc7d3bed064465cec5a7e76279d0a39b4f6f4cfe9f8c17

HTTP Headers

GET /assets/images/favicon/favicon.ico HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952; prefetchAd_5859254=true; prefetchAd_3897677=true; prefetchAd_3636729=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: image/vnd.microsoft.icon
etag: W/"21b-5a160d1e60b80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Sat, 28 Oct 2023 06:53:18 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 918462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FcvW59sVf65MvgOmMHskOeNbBq8PjX086gIdo9ejGQBBbgtb8G17IRwfM%2BL0Obhq7kz%2F079AWknqJ2AuOZcDbze95h4odobXKRGfZ7VLr3UJHRcJImMjov1ViG8d5FPm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8229170e3acdb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/assets/player/volume-100.svg

104.21.21.104

200 OK

670 B

URL GET HTTP/3
supervideo.tv/assets/player/volume-100.svg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (726), with no line terminators
Size
670 B (670 bytes)
Hash
7714afdbe52713e50c95c9a0023c5b55
7c5712f66e6f8ef9b2100acf97a72cea9f1fc421
1e9086af0ec4bcd65c2a1b003cfdd6a38cafc098c12162df289831791e65ae81

HTTP Headers

GET /assets/player/volume-100.svg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/assets/player/myskinfile.css?v=10
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"29e-5a160d2049000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Wed, 25 Oct 2023 01:58:59 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 1195511
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2FNC5Nfh3dbHuOkLOBz4vpThFYnAOTO%2FpD0kweqBadamX0T59lMDgJPpSI2scl4WKDB8uvhXGzbDfAzrmElrOcJBr7%2B4z9ba8DUGokzEsAgWM%2BtYtzdzuTBuEIaIft1u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8229170ad8bfb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

supervideo.tv/assets/player/settings.svg

104.21.21.104

200 OK

632 B

URL GET HTTP/3
supervideo.tv/assets/player/settings.svg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (688), with no line terminators
Size
632 B (632 bytes)
Hash
ec3126a9a01e3d3a12f92737d3afe3c7
8ff89f46ce26814bdcc6434c9afb3a093364824f
4e31f68d8d54637b1acd987c133cd3715b4ba21d887fdb32586da2a5ad8106e3

HTTP Headers

GET /assets/player/settings.svg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/assets/player/myskinfile.css?v=10
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"278-5a160d2049000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: HIT
x-7-cache-date: Sun, 29 Oct 2023 00:22:57 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 852681
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cd1D9Mz6vC1BqcXZDI4vnqiOz9b2oFwJ5SWZyAvj2nmWyq1wqOxJffPXyRs38YhrxCX8My3zliziW3Sd1QLtYxyFcEY8UIoObn4o6OUZ6sQxEmTz5oOQ9IFZzjMg5N4H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8229170ae8d4b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

groorsoa.net/5/3636729/?oo=1&js_build=iclick-v1.624.0

139.45.197.245

200 OK

2.8 kB

URL GET HTTP/2
groorsoa.net/5/3636729/?oo=1&js_build=iclick-v1.624.0
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectgroorsoa.net
FingerprintD7:6E:83:AB:7A:9A:E5:7C:B8:7B:8D:12:E4:FD:B6:E5:71:49:D0:F8
ValidityMon, 23 Oct 2023 16:34:15 GMT - Sun, 21 Jan 2024 16:34:14 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3024), with no line terminators
Size
2.8 kB (2784 bytes)
Hash
961db6de7d62f478ae93e4f535f8fb8d
98e53be9b1cb4cfcd7619262168602af38280853
924d65c9894ec69eb1114f1556d347be7d4bd3046f849555932288f12017398a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/3636729/?oo=1&js_build=iclick-v1.624.0 HTTP/1.1
Host: groorsoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: application/json
x-trace-id: d4faf73b0cd0e085dd3147adee62faac
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://e2ertt.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://supervideo.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=5081a932541545db8a293412c461e303; expires=Wed, 06 Nov 2024 22:42:32 GMT; path=/; secure; SameSite=None
oaidts=1699396952; expires=Wed, 06 Nov 2024 22:42:32 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

supervideo.tv/js/jquery.cookie.js

104.21.21.104

200 OK

990 B

URL GET HTTP/3
supervideo.tv/js/jquery.cookie.js
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
ASCII text, with very long lines (994), with no line terminators
Size
990 B (990 bytes)
Hash
2af5e791a2ced283f5c0683bc8a73e23
6e7d535372bfd4a13da00e5ee913d18d7d47a023
e6cb21733bd4a2be7662f823f8c1507c2717783298b80cd703119127e88c6dd7

HTTP Headers

GET /js/jquery.cookie.js HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/embed-20x7j9iedbb7.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=4331
etag: W/"10eb-5a160d2bbab00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-7-cache-date: Thu, 26 Oct 2023 01:28:50 GMT
x-cache-status: HIT
cf-cache-status: HIT
age: 1110350
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2BkI%2BtyuismtR3Jevyn%2FNLsElrQnWlm47nF1PAO6xsqFXxj25yz6ORhs835P2Kup355PoIGHGVH1ItT5qJ4XFvPzVmv1jH4rZgc%2BIXFGdGxmTwILD0sfNzduVaIX5Hlv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82291702bb26b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

nezygmobha.com/abs3.js

104.21.5.247

200 OK

1.4 kB

URL GET HTTP/2
nezygmobha.com/abs3.js
IP
104.21.5.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerGoogle Trust Services LLC
Subjectnezygmobha.com
Fingerprint45:7C:6F:25:4A:75:43:B6:8B:B1:22:2E:7F:CD:18:52:36:70:28:85
ValiditySat, 04 Nov 2023 01:19:15 GMT - Fri, 02 Feb 2024 01:19:14 GMT

File type
ASCII text, with very long lines (1379), with no line terminators
Size
1.4 kB (1358 bytes)
Hash
1c5a7c8d921414a85a25fe832f95a807
957e487147584b811c1a0b50048c0439213bb01c
739684b610ea4eecd4e8b184cfec2d3570aad301ec81b5d6822e02dd259451f4

HTTP Headers

GET /abs3.js HTTP/1.1
Host: nezygmobha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
last-modified: Tue, 20 Jun 2023 16:17:57 GMT
etag: W/"6491d135-54e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=14400
cf-cache-status: HIT
age: 4787
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JhlFuBs7edcQbXMN6j6iG7hSjuJtXvruVzCbAn02U1r32O%2B8r1q6jp%2FLI719Il22iYuYdIsTP2iD%2BPiTuhr6EOPKpFZfrlWtLKosClnmGtN%2BsP8eouv7T9Mu6nOZ2am%2BIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82291702ea2e56cb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

groorsoa.net/?rb=S5Gw3Pnu7slF5OoeI_CGH1UsVHg3mg6cHGUWQAm4ZfudMFL3QNg1ssTkHB96Q7yDZu4Ppkvn5bQgfxVpD3f-U3-2nMcTzcrdVOVF_GA344jDrxiUFtL210oTXZSRXqQ6-lgUH9KDovFwChL5XIUgS5U19wqJk77TSOBOCuWf20F7Ngl0ct1LpOGHcy7G17kta4PokaClPtR_sQVx3LYLeKsD0do%3D&request_ab2=0&zoneid=3636729&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=33ce9657-fa17-49e4-9c6b-c1f691a50581&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link

139.45.197.245

200 OK

1.7 kB

URL GET HTTP/2
groorsoa.net/?rb=S5Gw3Pnu7slF5OoeI_CGH1UsVHg3mg6cHGUWQAm4ZfudMFL3QNg1ssTkHB96Q7yDZu4Ppkvn5bQgfxVpD3f-U3-2nMcTzcrdVOVF_GA344jDrxiUFtL210oTXZSRXqQ6-lgUH9KDovFwChL5XIUgS5U19wqJk77TSOBOCuWf20F7Ngl0ct1LpOGHcy7G17kta4PokaClPtR_sQVx3LYLeKsD0do%3D&request_ab2=0&zoneid=3636729&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=33ce9657-fa17-49e4-9c6b-c1f691a50581&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectgroorsoa.net
FingerprintD7:6E:83:AB:7A:9A:E5:7C:B8:7B:8D:12:E4:FD:B6:E5:71:49:D0:F8
ValidityMon, 23 Oct 2023 16:34:15 GMT - Sun, 21 Jan 2024 16:34:14 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1706), with no line terminators
Size
1.7 kB (1686 bytes)
Hash
ca95d9cc582126f3a0cd15bb60136c32
5a83211e33781a8c38cca4d3531612acec719937
c0a8b7d0de9149021ca19681533b596e02a9f2bf224d3f60ba2ce0d3147d7e6a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=S5Gw3Pnu7slF5OoeI_CGH1UsVHg3mg6cHGUWQAm4ZfudMFL3QNg1ssTkHB96Q7yDZu4Ppkvn5bQgfxVpD3f-U3-2nMcTzcrdVOVF_GA344jDrxiUFtL210oTXZSRXqQ6-lgUH9KDovFwChL5XIUgS5U19wqJk77TSOBOCuWf20F7Ngl0ct1LpOGHcy7G17kta4PokaClPtR_sQVx3LYLeKsD0do%3D&request_ab2=0&zoneid=3636729&js_build=iclick-v1.624.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fsupervideo.tv%2Fembed-20x7j9iedbb7.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.624.0&bs=33ce9657-fa17-49e4-9c6b-c1f691a50581&userId=b508e6002a21421bb3db5cbbb1667dcb&m=link HTTP/1.1
Host: groorsoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://supervideo.tv/
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Cookie: OAID=5081a932541545db8a293412c461e303; oaidts=1699396952
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:33 GMT
content-type: application/json
x-trace-id: 74c277a20d26523fb537998b2a1a9ca9
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://supervideo.tv
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
oaidts=1699396953; expires=Wed, 06 Nov 2024 22:42:33 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 14 Nov 2023 22:42:33 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

ophoacit.com/27/34140bf7a9bfababc041a6dd34e08b17

139.45.197.242

200 OK

412 kB

URL GET HTTP/2
ophoacit.com/27/34140bf7a9bfababc041a6dd34e08b17
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintBA:22:E5:6C:16:E2:40:EC:4F:D5:BC:70:BD:70:0F:C0:76:C0:39:8F
ValidityWed, 16 Aug 2023 07:14:02 GMT - Tue, 14 Nov 2023 07:14:01 GMT

File type
ASCII text, with very long lines (65523)
Size
412 kB (412507 bytes)
Hash
475e8d80bbb7ec1b0a987df1a0cb02b1
bccaada3ebaf548f842d8e7936c43ddd869d86e7
cbc0e6c0446c61080c87d5c5bdd7c4526cccd9671beeaf9312c090173f41f8bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /27/34140bf7a9bfababc041a6dd34e08b17 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Cookie: scm=1; OAID=ee967d77a4d14534a9b5d98c4e0fbe27; oaidts=1699396951
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:31 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 66ec2330a459e384ed3ad49b7f59ac21
cache-control: max-age:290304000, public
last-modified: Tue, 07 Nov 2023 08:53:13 GMT
expires: Tue, 07 Dec 2083 08:53:13 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=b508e6002a21421bb3db5cbbb1667dcb

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=b508e6002a21421bb3db5cbbb1667dcb
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
ea9f1dd041c88c7357649d2991ef4268
9c670a9677b03d04734ca5c5c69540c76820a5fe
1e2e9470cf28fb9c7910c9b2b5d595a530d2af54e568462d910d10601053e5f0

HTTP Headers

GET /gid.js?userId=b508e6002a21421bb3db5cbbb1667dcb HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://supervideo.tv
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://supervideo.tv
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b508e6002a21421bb3db5cbbb1667dcb; expires=Wed, 06 Nov 2024 22:42:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

supervideo.tv/assets/player/play.svg

104.21.21.104

200 OK

1.2 kB

URL GET HTTP/3
supervideo.tv/assets/player/play.svg
IP
104.21.21.104:443
ASN
#13335 CLOUDFLARENET

Requested by
https://supervideo.tv/embed-20x7j9iedbb7.html
Certificate
IssuerLet's Encrypt
Subjectsupervideo.tv
Fingerprint49:95:2B:29:EA:8B:87:83:80:72:C9:2D:1A:E0:EC:97:DB:42:01:7D
ValidityThu, 19 Oct 2023 10:15:49 GMT - Wed, 17 Jan 2024 10:15:48 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1329), with no line terminators
Size
1.2 kB (1215 bytes)
Hash
4ac4caee36a8bfd3d172da00b9a4407d
5e788c936274c6bd13578cc48f9f16931cc73ff7
ca2d7c560c4373bc0ae3947c17b61699bedf9ac3a880ad9e0da89b79dc21000b

HTTP Headers

GET /assets/player/play.svg HTTP/1.1
Host: supervideo.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://supervideo.tv/assets/player/myskinfile.css?v=10
Cookie: lang=1; file_id=1492364; aff=14532; _ga_QYLE1DXYEC=GS1.1.1699396952.1.0.1699396952.0.0.0; _ga=GA1.1.867758762.1699396952; cf_clearance=KkVcGJVRdGYTptzMotlFvxLowZxB.Ur0t1f72VGdfPw-1699396952-0-1-69b0ef05.6b0d8b6b.438cce4a-0.2.1699396952
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 Nov 2023 22:42:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
etag: W/"4bf-5a160d2049000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-status: EXPIRED
x-7-cache-date: Thu, 26 Oct 2023 06:51:21 GMT
access-control-allow-origin: *
cf-cache-status: HIT
age: 1093871
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ymtTSQmBpgeFqyj580Tuj1Tyrzo6C06XsLGi1t9KJ3pPBIjtvJeUTpjOb9JNwkIbjvSUzyU8pMq244q9VTjSaUPBp52%2BR0g5YlPArvRkd%2Bd1O3dKmm%2FfInTPq3dqeZ2f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8229170a989eb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by