{"report_id":"2dff27fc-f2fa-4b97-950c-902db68be615","version":6,"status":"done","tags":[],"date":"2025-10-27T18:27:49Z","url":{"schema":"http","addr":"www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"title":"jumplixytd.com/e/h0yjzcve?lv1=videy.tv","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":""}},"submit":{"url":{"schema":"http","addr":"www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-01T18:27:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":13}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"js.wpadmngr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"storage.multstorage.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"dbb8b55e45.7345dc0372.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"lleana.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"na.nawpush.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null},"summary":[{"fqdn":"ntvpforever.com","ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-11-18","domain_rank":18811,"first_seen":"2021-11-19T01:49:18Z","last_seen":"2025-10-27T08:06:03.822022Z","alert_count":0,"request_count":2,"received_data":681,"sent_data":1048,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"accounts.google.com","ip":{"addr":"173.194.221.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":103,"first_seen":"2012-05-23T06:57:57Z","last_seen":"2025-10-26T22:33:54.778126Z","alert_count":0,"request_count":3,"received_data":6933,"sent_data":1786,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"js.capndr.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2021-08-30","domain_rank":156902,"first_seen":"2021-08-30T12:51:01Z","last_seen":"2025-10-20T23:08:16.832652Z","alert_count":2,"request_count":2,"received_data":98908,"sent_data":853,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"lleana.com","ip":{"addr":"185.162.85.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-09-30","domain_rank":0,"first_seen":"2025-10-02T10:59:04.85817Z","last_seen":"2025-10-24T05:45:16.941153Z","alert_count":2,"request_count":2,"received_data":589,"sent_data":1053,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-10-26T22:15:38.172198Z","alert_count":0,"request_count":1,"received_data":18926,"sent_data":456,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"ads.google.com","ip":{"addr":"142.250.178.46","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":2062,"first_seen":"2013-08-25T13:03:13Z","last_seen":"2025-10-21T17:07:43.496294Z","alert_count":0,"request_count":1,"received_data":208,"sent_data":406,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.tapioni.com","ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-05-27","domain_rank":177570,"first_seen":"2021-07-01T10:46:55Z","last_seen":"2025-10-27T09:39:10.672368Z","alert_count":4,"request_count":4,"received_data":700136,"sent_data":1668,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"www.jumplixytd.com","ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-26","domain_rank":0,"first_seen":"2025-10-01T09:20:56.393087Z","last_seen":"2025-10-22T18:25:58.997793Z","alert_count":0,"request_count":8,"received_data":2887698,"sent_data":4185,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]}]},{"fqdn":"bereave.onelinevideo.com","ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"domain_registered":"2025-04-21","domain_rank":486265,"first_seen":"2025-06-06T00:49:08.421363Z","last_seen":"2025-10-22T18:25:59.022861Z","alert_count":0,"request_count":2,"received_data":492,"sent_data":1062,"comment":"","tags":null,"fingerprints":null},{"fqdn":"enrtx.com","ip":{"addr":"94.130.197.239","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2024-10-07","domain_rank":18023,"first_seen":"2024-11-04T09:19:58Z","last_seen":"2025-10-27T09:13:28.338121Z","alert_count":0,"request_count":1,"received_data":10063,"sent_data":500,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"na.nawpush.com","ip":{"addr":"45.133.44.24","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2020-12-21","domain_rank":175362,"first_seen":"2020-12-23T08:18:12Z","last_seen":"2025-10-27T17:16:36.513215Z","alert_count":1,"request_count":1,"received_data":1594,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"jyzkut.com","ip":{"addr":"104.21.47.67","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-01-19","domain_rank":36899,"first_seen":"2024-01-19T09:52:20Z","last_seen":"2025-10-25T22:33:45.667317Z","alert_count":0,"request_count":1,"received_data":11886,"sent_data":475,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"36946.phidonatome.com","ip":{"addr":"88.208.22.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-08-24","domain_rank":0,"first_seen":"2025-10-25T22:33:45.251193Z","last_seen":"2025-10-25T22:33:45.251193Z","alert_count":0,"request_count":1,"received_data":32112,"sent_data":424,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"driverhugoverblown.com","ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-03-12","domain_rank":75021,"first_seen":"2025-03-30T06:27:07.780857Z","last_seen":"2025-10-25T16:51:53.694667Z","alert_count":0,"request_count":4,"received_data":163129,"sent_data":2998,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"29359827-36946-ex.uncocleypercha.com","ip":{"addr":"88.208.22.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":2472,"sent_data":1405,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"sm.videqqwuieyui.com","ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2025-08-11","domain_rank":0,"first_seen":"2025-10-25T09:37:06.805519Z","last_seen":"2025-10-25T09:37:06.805519Z","alert_count":0,"request_count":4,"received_data":2418349,"sent_data":2261,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"storage.multstorage.com","ip":{"addr":"13.248.148.254","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2023-09-22","domain_rank":101055,"first_seen":"2023-09-22T12:56:00Z","last_seen":"2025-10-27T08:06:03.662099Z","alert_count":1,"request_count":1,"received_data":144,"sent_data":542,"comment":"","tags":null,"fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}]},{"fqdn":"nereserv.com","ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2020-12-21","domain_rank":17097,"first_seen":"2020-12-21T11:07:56Z","last_seen":"2025-10-27T08:06:03.809049Z","alert_count":4,"request_count":2,"received_data":644,"sent_data":1134,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":283,"first_seen":"2012-10-04T01:07:32Z","last_seen":"2025-10-26T22:13:34.663946Z","alert_count":0,"request_count":1,"received_data":428110,"sent_data":439,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"api.lixstreamingcaio.com","ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-04-29","domain_rank":492115,"first_seen":"2025-06-01T10:17:55.903035Z","last_seen":"2025-10-24T01:42:57.912506Z","alert_count":0,"request_count":6,"received_data":6071,"sent_data":3409,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"dbb8b55e45.7345dc0372.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2025-09-27","domain_rank":0,"first_seen":"2025-10-27T00:48:31.384315Z","last_seen":"2025-10-27T00:48:31.384315Z","alert_count":1,"request_count":1,"received_data":345,"sent_data":847,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"ur.foretopheaved.com","ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-10","domain_rank":0,"first_seen":"2025-08-13T14:30:31.596497Z","last_seen":"2025-10-27T06:02:50.285601Z","alert_count":2,"request_count":1,"received_data":1423,"sent_data":433,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"a.labadena.com","ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"domain_registered":"2020-01-21","domain_rank":266368,"first_seen":"2020-05-24T00:28:49Z","last_seen":"2025-10-21T21:33:28.874591Z","alert_count":4,"request_count":4,"received_data":4689,"sent_data":2354,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fp.metricswpsh.com","ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2021-10-29","domain_rank":154722,"first_seen":"2022-04-22T11:20:32Z","last_seen":"2025-10-27T08:06:03.692147Z","alert_count":2,"request_count":2,"received_data":827,"sent_data":1072,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"lz.faenasturbit.com","ip":{"addr":"172.241.53.182","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-06-20","domain_rank":0,"first_seen":"2025-09-26T02:41:00.932867Z","last_seen":"2025-10-22T18:25:59.058289Z","alert_count":0,"request_count":1,"received_data":1492,"sent_data":434,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"js.wpadmngr.com","ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2021-06-02","domain_rank":77954,"first_seen":"2021-06-02T14:43:46Z","last_seen":"2025-10-27T17:16:36.466608Z","alert_count":1,"request_count":1,"received_data":149980,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-FZ6E2FXG92","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6c709b255a433b17c9af3e6cc6091d4","sha1":"65dff3c9c343d6bf7485a7f85c5c6f2e74d6bacc","sha256":"7730d5d14a49a25973a6fa67baa5329aeced50c63681d0c9d2efad3befa668d3","sha512":"58624610f76038cf9d35fafa81c74f3504444ed20cb80d1e318154e10b364aab7b7d580f56fc083b5e71ad78b1bc0d5db42bef94553452477a966bbb59e9f362","ssdeep":"6144:X4BoyJBX138429Z8nP57wr/s0s/+Kxxc20hYllAk6KlhDjMc:XWrJBlZ29Z8nP58DG/mYl5X","tlshash":"369419ce73d670269396f078503f018ba57b29a2b45cc896f189cce42d74a9a4277f7c","size":427506,"data":"","first_seen":"2025-10-27T18:28:02.12199Z","last_seen":"2025-10-27T18:28:02.12199Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/vast-im.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8185f26ebe3e4675a3248b15e927b2d2","sha1":"d47683a50e5838a4843c58117a42ab17aec96ebe","sha256":"c841b953de5b67e61da9c796353eb552eea622f3b0cac6cb85802f312abe03ba","sha512":"ede02da627af03fc9e5bfea659502b6ac3f96f655ec222290f77e904edec9c9321b9fa13a44feef6bcb2377da1a1044524d5f3883f8f6996c434ccf302a0ecef","ssdeep":"6144:IdFL92ASnqBYfmMklUIWXsVjC+TpcB86ccfC:S97SnqBYfmMklUIWXAjC+9886ccfC","tlshash":"4764a4c9b6c6b0a543e7b0b8403f520ef276a955b44ac9c0e266e9d0ac7c94e5037f7d","size":315937,"data":"","first_seen":"2025-10-22T22:12:54.226509Z","last_seen":"2025-11-01T07:20:29.848175Z","times_seen":68,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1093619d97a61fa7ce2f8d49c60cd231","sha1":"7f26ad5a0cbabdadea7a9d9b7b199f7bc713062d","sha256":"17b2b709ef9077f810aa9997fb69052f2d98de8ba6347bfcf9fbb8d6d1526c63","sha512":"0704683b95e6e4303c67e6f81d5d4a17e40a118fc026c1a0536100034c9c65dcdbad33cce607717df85625a6bb51911cf64926001701d26b0c7c7802b31a99e9","ssdeep":"6144:M11ClGoWve5tbyJ3xuG/KMInUsrIFRRrOJO7GG0iiGlNAkw5GJlY3mADPIahWkAx:1lGezm3xuGCQ77","tlshash":"1534a68db6c1b06107a36174062f646af3773a44b45ec480b72dd9d16ebaa0f6d27e3c","size":245260,"data":"","first_seen":"2025-10-22T11:29:03.885295Z","last_seen":"2025-11-01T07:48:06.406226Z","times_seen":79,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494333?host=www.jumplixytd.com\u0026ev=223\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51\u0026i=1\u0026s1=1940313360218329090\u0026fs1=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"e17d14f6a5857a08d872a1c5a66c4809","sha1":"a00d37c877df159d560a34234ae0c70945d3b0b5","sha256":"b400e45a6653fbbd2743a0a769d9a8fa30569b00681b7a4c448f3f7b8a63976b","sha512":"f2c673d6efa4fc6f864f5b445b2dfa635134402c932e833c92ef9a32e8a2d0225ef97c0fd2cd108e04a9bdbdba164d1fee17fa134b82480b3e6f3ee5fb46e826","ssdeep":"","tlshash":"7a01d386568c55eb870850a3dd2e4e758a8d4d783704900afb75831a5dc924102601cb","size":660,"data":"","first_seen":"2025-10-27T18:28:02.139516Z","last_seen":"2025-10-27T18:28:02.139516Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/get/2081141?id=2081141\u0026jp=_clzngbaotyzvrjlkubhixw\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.622-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=COrzbvzaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZT9sdjE9dmlkZXkudHY\u0026afid=6026422050272768\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026dto=2\u0026pload=1474\u0026rlp=%5B0%2C4%2C101%2C73%2C53193%2C7486%2C1785%2C7140%2C1%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"6455011b98003f5fcac620924dfc347a","sha1":"8e8f1f9b78acb9faf8ff52053f987be798f99611","sha256":"bdfe4ab6de1852b096641aabbaa725cb03f9042084d998896c7e8f8a2072d528","sha512":"8c334013650dbbbba6f99aa96ad21dda204f187c2a7760e252f242c3a0741765248b3d806e2912fcdc52bde7552cf5d23975827ef3492229773ebed770b1996d","ssdeep":"","tlshash":"a36183d47240c750b0ca0a2dceeeed81f5d674e6988729d686aba74c135047d0f2f2ab","size":3236,"data":"","first_seen":"2025-10-27T18:28:02.156027Z","last_seen":"2025-10-27T18:28:02.156027Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-C6ZvijAs-1761271652135.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f803015e63e93264ff00d02b411b778c","sha1":"208d9d41d892b76a48f76cf2b9bdeb9de6b69f7d","sha256":"c3fcb8e3a4650e00834a0f34a33011d2410c1c62241efc69e0090b6797bcff3f","sha512":"fe3ce07451e8fc5c65c470f29375e03e820e528f3572aea835a99e6ab3590fadd5c1baeb3af82d81227314709513a8b6a2d951af6fcc2399f8db0a30188b2328","ssdeep":"1536:OOPdreulF4UUIRHwpIh7XkmwHq8Ff8mvU8CO5NdkhZ13/4RJPFTFBdlCSFwyT95W:OOFrBF4UUCLgHQmvbNlLvlzT95IZ4egu","tlshash":"d3937eed712d8e3df86108c278be943474253a2ffa18c8d1f0bd3c025b5499569aabdd","size":96916,"data":"","first_seen":"2025-10-25T09:37:12.241906Z","last_seen":"2025-10-27T23:52:24.738405Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-1xzJ-OW7-1761271652135.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"8898d7931d9c840ef747b6707c8ba138","sha1":"683e4eb9ac2e703943a19b19778f4598cea97f4d","sha256":"a6b40cbde6c5d3cf597006e29703e1b7f056b6b3055753d979235056c204a704","sha512":"8d78d0bbf5821f32fe7b023b27d13d476b00a5675e34c8cc26b0b0b7cc0c3fc8eb6368d896a4d8bf91a9ef6a1e63a01add3260e919247ef4a6d1543a5e1226ec","ssdeep":"24576:TLgcTD3IaDerXpsBbIZ58O6gJ2dSG6MIIsPGiUcWFYMKduqCw:TscTD3IaDerXpsBbIZ58O6gq6MIIsPGg","tlshash":"04454cd972a67062879361a4503f1207723a7d16248cc05cf63bf9ea2eb8d09647bf7d","size":1269720,"data":"","first_seen":"2025-10-22T18:26:11.434592Z","last_seen":"2025-11-03T03:56:15.096326Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/spots/494334?s1=1940313360218329090\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"introduction_type":"scriptElement","is_inline":false,"md5":"d5903fc0a90cfb38e29dd8fc133790f2","sha1":"b5253a5be5d97fc744beef4d81cc150ef757dd76","sha256":"8d0eb249e2c584a9f8c7ecf0bf0dc3aa3f4674f4258b5067a90e913c9e74c214","sha512":"c5ccfde59c7bc8f16cca06a18050bb9e961d42c07962ef65929a45828eee88a091dd7a42608f673aa373a2e2ef4d1ecd04c1ea2381d1581cffb20728ef606cc9","ssdeep":"","tlshash":"19516684d6fc6216f62b10a0dd7acb9f955ee141d2198075eff726a9c3cc64c067138e","size":2573,"data":"","first_seen":"2025-10-27T18:28:02.117257Z","last_seen":"2025-10-27T18:28:02.117257Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lz.faenasturbit.com/sSB8ld39qI9j8pgT/130607","fqdn":"lz.faenasturbit.com","domain":"faenasturbit.com","tld":"com"},"ip":{"addr":"172.241.53.182","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","size":5,"data":"","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-19T01:40:25.792285Z","times_seen":13960,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.wpadmngr.com/static/adManager.js","fqdn":"js.wpadmngr.com","domain":"wpadmngr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c90d1ef9543d7d56a6869ed4be6f7847","sha1":"6ff159593c9698ad541e6d3c149847b110c3deb6","sha256":"e7e748a324a548da8ce1ccc081a1339bf22142939106758ba1803fabafc42b2e","sha512":"8ac7ce5a0c7bc4daabb49051583a693f53e9d884f8deb32158c604abe682bfd2969dc1ac4e6ea8c50c0e63684ddd7424770fa0d7fbaf42c113e8118e981f0dbc","ssdeep":"1536:Z2c1pgoXEptQy9RixdpOkxQKf7YbK2Ec+tskajUOPVKIZujAB5R1pKKfVf3dnCjH:eRizplOK8mvDtsjbnujATLQ3+da","tlshash":"64e33ac9b2d2b47407e75099d43f1206f33a1a16b80c9058f6a6e9c17878ddb9237f7a","size":149592,"data":"","first_seen":"2025-10-20T14:02:56.309645Z","last_seen":"2025-11-06T12:09:31.49625Z","times_seen":392,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/popunder-admanager/build.m.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c876fdcba8a4218b55010f234c79f2af","sha1":"92c8ea61c92d0d93312ea15fc61654a92b301f2e","sha256":"f8eec33e26a9039e102fe503ea91fb580c426a7a1170f9b03957f8b7b99b94f6","sha512":"94edf7499d9597faf52659fa665e266081ac18ce4c8d9fcd88d2c25a0d2d99b43bc3ac71013d6ca355ef0678aec0af1882d54e241098b9890de9dd68292a4b22","ssdeep":"768:ubVWcprgLsdOKoFiXE9VIlKAelZ8JnN2m+sfy2WnXSqeq3Sg9C4+XuSOscdFPmzu:WYmOKjlM8JzdGeG+2","tlshash":"7aa318cdb7d2707042a7a4ba902f151ab33f29197809442cf969c9d138ad94f9327f79","size":98121,"data":"","first_seen":"2025-10-27T16:53:50.164553Z","last_seen":"2025-10-28T07:52:03.287331Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/ip-push.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"234db1e18366f7e413979a404360d46f","sha1":"e7dceeb1876e703a6d2ab89bd9df35a64886e3f2","sha256":"3e7d4dcc3892ff793e8c8a7bb6271ea75047599fa5809d5f5e45b2d295ebf459","sha512":"e8b0daecd87c566ced35978f6b5428d61b32b7d3f45af6dd7b48d4e07cafdd128f730b635a804c712b76d371c804db1629989b8aae43056323a9cbc7078c0a4d","ssdeep":"1536:gmodQeNLvXl70gGYlR5U3lItL+5HOUOdxuIV9LmWJgYeZJCt0ZqKyLKPHHQAtC/4:XodQeNB0gllgz5uzxup","tlshash":"c2d3518dbac1b5610ba37064023f640ef2bb3a54b44bc9c0f629d5d06e7e94f6167e2d","size":134898,"data":"","first_seen":"2025-10-22T17:23:50.676656Z","last_seen":"2025-11-01T07:48:06.418074Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a0eaaed582ff685dd1612d9b403738ff","sha1":"e1edc160f929904d6f72cf06fb89bdee0820d8c0","sha256":"1329ad4e3e1558a61554e9d122ddfd9cd3fc384efbdda3f84ff8c411a0456101","sha512":"b97c6ab213782628b715a2409294c82921e46608b494d6369217198f2418f4a0f13c9458088adee2582b634c35e0effcbf8043c2ed1c50ececfca56b068d548a","ssdeep":"","tlshash":"784126ee25a0fda0079b714c602b180af0bc35e0e3ace8c69ff984b43d3c6441111aed","size":2370,"data":"","first_seen":"2025-10-23T23:38:15.306982Z","last_seen":"2025-11-01T07:48:06.412972Z","times_seen":74,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"36946.phidonatome.com/4/js/260941","fqdn":"36946.phidonatome.com","domain":"phidonatome.com","tld":"com"},"ip":{"addr":"88.208.22.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"56437fb9e2f2a975f21c5545c89ad824","sha1":"fc63cac9f4db8e46514fd10b2578aa8bed4cb4db","sha256":"3fab3373fbf291a4569c44ce964f6da3b1b09392beb314fd7723f34a4b41661f","sha512":"aba1652f0b7075e351be70b128e88d07ce188f72cf47864901c8c5b749f1ef9540c111bbf42ca867c1a6914618fc3aabbcdb57968a0a289d7868ac733db3c0a6","ssdeep":"768:Hgmbr/4nqZVnyTPxVC2/R3hMwsZwJmvnDY87bBZzBPZvzXRb7iGqj:VyxnufF3qj","tlshash":"d7e22995f992703043f7186a403f521af3361a94789e8460da2b95c22c66fcb837bf7d","size":31409,"data":"","first_seen":"2025-10-27T18:28:02.164263Z","last_seen":"2025-10-27T18:28:02.164263Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c4b39905819a02943aab42aaa3ace049","sha1":"397c25ba91f8946c07fcd15b85dde33073d13cc0","sha256":"56b98849a8c00948afc8281671da6d0955145a28b9cab57cb3f3cb67803dc520","sha512":"45185272dd93386022e633bba5581ebd898db3eae1dac640eaab69d546c0f1037b10c423e2b94e8383cf196255c6fa96b4374e9ecad48cd30475491950b1e7c9","ssdeep":"","tlshash":"10c08ca82aab4c7110f73a428fbf21057016a3132090cd313e0eb6848f34e2bda94808","size":190,"data":"","first_seen":"2025-08-29T08:56:06.9123Z","last_seen":"2026-02-02T17:50:52.010918Z","times_seen":319,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"12dd498bf90c536803c2aad708b66c2b","sha1":"5f9363d39a405d1c94328cf2303ff4a05c0ad163","sha256":"c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a","sha512":"ec593a501ebf74c092e564a1aaf0b477d3da6813c9a88f29d0d2a0db8143bdf19718ba4e6b13f64295b077ca5cb9c13460c30f9f2f35982a82597b22f79ffdd1","ssdeep":"192:l3GySZoj5oOg8pu564aEzn5nVMnyk3sBakk3cx7x0IlQV0Hf1b5SwU+ahpfex/W9:lWytjU64auV0ISjyW5RAe","tlshash":"6f82b38cb295f0b553d710b5403f910fe2366928654ec4d8f288d5ea2c7899d663bf3d","size":17908,"data":"","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-04-18T22:28:19.312374Z","times_seen":7104,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jyzkut.com/p/waWQiOjEyMTA5MDYsInNpZCI6MTU1OTcxMywid2lkIjo3MjMwNTMsInNyYyI6Mn0=eyJ.js","fqdn":"jyzkut.com","domain":"jyzkut.com","tld":"com"},"ip":{"addr":"104.21.47.67","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"060e16d894f4082a0479139bb0732d6a","sha1":"b48929ba29159eb02772964e5a5b6bfa671d6d96","sha256":"0bb7c794ee98e35f4ddee8d3d1501eee230d1fe0f82749e51330737653671bfe","sha512":"2d19b0663e0b31c6e1c082643ff9594bd81d6d2862ded39b1269aa94191c3db6ae56c3d6be4a8af37ac455f9d899fa63f2b524b62635b3dc0f9522abf1abf902","ssdeep":"192:XPwyOzqHZJ4K9+BtnpTOLSyHyt1sfsKG3aSSR5W5J2QSjT8wCbXf45A88Q:XYyG+ZJ4K9+BtnpoSySt1sfFOabnGJ2V","tlshash":"8d3284507ec036a627474fbb7627b4e0e51b0d5b299848dfd114bc5878a273eebd2a30","size":11141,"data":"","first_seen":"2025-10-27T17:16:46.200798Z","last_seen":"2025-10-27T18:28:02.162728Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ur.foretopheaved.com/r4xjjmZUr51mvyQ/RNklR","fqdn":"ur.foretopheaved.com","domain":"foretopheaved.com","tld":"com"},"ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-19T02:41:50.612518Z","times_seen":15618,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/on.js","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"191540187eca44181a4ada5a4eb0c0c6","sha1":"9875f3660f6237c39f887da1d871a04fcb224cda","sha256":"336f47d289aef1d195870fca30d7032c5926c54bd05dd94ea22ed03849f85f02","sha512":"615eefd208df0b1b2b7f9aee44dfc5d456555f20a2439ac86bf344ca7bfc1449117045f6e4081385fde5b8f8f1ae5b132a8b8fde673ce080cbb31d52d7233bb8","ssdeep":"1536:wjC8TAueStkMo/1ok2XZm9KCepdFiYCYpqt2pl9E1b/0RSQ0HRF9YllHJ2nPiyoL:wxTAueM/kR0Cepr3qBQeRF9YXonbFKV","tlshash":"bae3878cba9a243341879029082f750feab558f69ccd4058e7f6d2cd6ef540de217eb9","size":155420,"data":"","first_seen":"2025-10-23T12:46:42.747433Z","last_seen":"2025-10-28T10:42:00.094421Z","times_seen":96,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ads.google.com/","fqdn":"ads.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.178.46","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adwords.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:35:01 GMT","end":"Wed, 24 Dec 2025 14:35:00 GMT"},"fingerprint":{"sha1":"2A:99:DD:75:02:AC:99:19:7D:95:F5:21:5B:BE:63:AE:D3:DF:EF:D4","sha256":"28:1C:85:32:9B:0B:D4:66:58:AD:C9:52:D8:1C:73:87:11:52:63:2D:37:CB:DB:61:6E:46:FA:96:91:98:FD:80"}}},"request":{"raw":"HEAD / HTTP/1.1\r\nHost: ads.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/2 429 Too Many Requests\r\ncontent-length: 1103\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"429","status_text":"Too Many Requests","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":632,"timings":{"blocked":122,"dns":0,"connect":43,"send":0,"wait":388,"receive":0,"ssl":76},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/check.html","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /check.html HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: text/html; charset=utf-8\r\nlast-modified: Thu, 23 Oct 2025 09:18:01 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68f9f2c9-39e\"\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":926,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"088dba8e97eede53134c93219f7ebbae","sha1":"adb707654d1fe0af7d0d7a9f55660d22bd3625e4","sha256":"6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff","sha512":"23a1f87731e8aee4658993cd1ce35ec179fea80b89bf52aca7634488f1bdfcf88b9cabca4859481357a9fee06cbb49df64bbe0878b1dae0e5df4fa34003c6d80","ssdeep":"","tlshash":"6211d04934e1684c1127a6301597a2183c32a40315cbd949fb9cd7301f815a7dc596df","first_seen":"2024-11-22T16:59:41.974716Z","last_seen":"2026-03-04T10:11:28.020186Z","times_seen":13721,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/ip-push.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 10:12:45 GMT","end":"Tue, 16 Dec 2025 11:12:39 GMT"},"fingerprint":{"sha1":"53:EE:30:9F:D0:82:6E:D3:05:D7:06:C0:89:A1:7F:95:D2:E2:01:7E","sha256":"21:58:AE:A3:46:B3:6B:EB:5F:82:88:D2:99:DE:87:F2:60:5D:36:27:10:AC:28:89:4F:06:F7:18:18:B4:95:23"}}},"request":{"raw":"GET /ip-push.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:28 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 41300\r\nserver: cloudflare\r\nlast-modified: Fri, 17 Oct 2025 09:38:19 GMT\r\nvary: Accept-Encoding\r\netag: \"68f20e8b-a154\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 459641\r\ncf-cache-status: HIT\r\ncf-ray: 99543f69ade8b500-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":134898,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65498), with no line terminators","md5":"234db1e18366f7e413979a404360d46f","sha1":"e7dceeb1876e703a6d2ab89bd9df35a64886e3f2","sha256":"3e7d4dcc3892ff793e8c8a7bb6271ea75047599fa5809d5f5e45b2d295ebf459","sha512":"e8b0daecd87c566ced35978f6b5428d61b32b7d3f45af6dd7b48d4e07cafdd128f730b635a804c712b76d371c804db1629989b8aae43056323a9cbc7078c0a4d","ssdeep":"1536:gmodQeNLvXl70gGYlR5U3lItL+5HOUOdxuIV9LmWJgYeZJCt0ZqKyLKPHHQAtC/4:XodQeNB0gllgz5uzxup","tlshash":"c2d3518dbac1b5610ba37064023f640ef2bb3a54b44bc9c0f629d5d06e7e94f6167e2d","first_seen":"2025-10-22T17:23:50.676656Z","last_seen":"2025-11-01T07:48:06.418074Z","times_seen":29,"resource_available":true,"data":null}},"time_used":74,"timings":{"blocked":29,"dns":11,"connect":1,"send":0,"wait":12,"receive":2,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ur.foretopheaved.com/r4xjjmZUr51mvyQ/RNklR","fqdn":"ur.foretopheaved.com","domain":"foretopheaved.com","tld":"com"},"ip":{"addr":"172.255.106.29","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ur.foretopheaved.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Sep 2025 09:56:09 GMT","end":"Sat, 13 Dec 2025 09:56:08 GMT"},"fingerprint":{"sha1":"91:AA:F1:1B:14:24:36:CD:6B:51:31:6E:5E:C4:CF:18:8E:A6:40:19","sha256":"C9:CD:6B:8D:1D:0B:25:5F:FC:34:0D:27:E0:29:A6:64:DE:36:11:67:88:AF:25:45:05:AA:32:99:35:95:94:EE"}}},"request":{"raw":"GET /r4xjjmZUr51mvyQ/RNklR HTTP/1.1\r\nHost: ur.foretopheaved.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Tue, 28-Oct-2025 18:27:30 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwViD0LglAYRu99ESGS4gGHRpdW0VLBJSTndGhoaBILEcRXrtrH1F9pb4r%2BVWtTWzacA%2BcIIcicgsoGRujaoWN7C9v1PcgClKSgvIaesDpnV0gFcpYgVWOcthVbMfd1N%2Fwc2r8hS0zWVXmxtlz1Xcl1CxoYxawaVll3hGx0Cer47%2FZgCsiTPgNVmRFtPu9Xcf8OwUY0vz33u9UD1LTQHD8IfrcSKq4%3D; expires=Tue, 28-Oct-2025 18:27:30 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-19T02:41:50.612518Z","times_seen":15618,"resource_available":true,"data":null}},"time_used":297,"timings":{"blocked":133,"dns":91,"connect":17,"send":0,"wait":24,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"ur.foretopheaved.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/on.js","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /on.js HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 23 Oct 2025 11:54:44 GMT\r\nvary: Accept-Encoding\r\netag: W/\"68fa1784-25f1c\"\r\nexpires: Mon, 03 Nov 2025 18:27:30 GMT\r\ncache-control: max-age=604800\r\nx-js-ab: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":155420,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"191540187eca44181a4ada5a4eb0c0c6","sha1":"9875f3660f6237c39f887da1d871a04fcb224cda","sha256":"336f47d289aef1d195870fca30d7032c5926c54bd05dd94ea22ed03849f85f02","sha512":"615eefd208df0b1b2b7f9aee44dfc5d456555f20a2439ac86bf344ca7bfc1449117045f6e4081385fde5b8f8f1ae5b132a8b8fde673ce080cbb31d52d7233bb8","ssdeep":"1536:wjC8TAueStkMo/1ok2XZm9KCepdFiYCYpqt2pl9E1b/0RSQ0HRF9YllHJ2nPiyoL:wxTAueM/kR0Cepr3qBQeRF9YXonbFKV","tlshash":"bae3878cba9a243341879029082f750feab558f69ccd4058e7f6d2cd6ef540de217eb9","first_seen":"2025-10-23T12:46:42.747433Z","last_seen":"2025-10-28T10:42:00.094421Z","times_seen":96,"resource_available":true,"data":null}},"time_used":154,"timings":{"blocked":59,"dns":4,"connect":19,"send":0,"wait":31,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.wpadmngr.com/static/adManager.js","fqdn":"js.wpadmngr.com","domain":"wpadmngr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.026Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.wpadmngr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Sep 2025 03:32:10 GMT","end":"Mon, 01 Dec 2025 03:32:09 GMT"},"fingerprint":{"sha1":"A8:B8:5C:A8:67:08:FB:6F:5B:FE:20:D6:BB:7A:04:B0:B2:1A:BE:F7","sha256":"03:91:48:19:1B:C5:3E:CF:59:DE:C7:39:A3:C0:C3:E0:BC:41:15:48:FB:42:AB:77:8C:5B:FF:37:FE:1F:3C:54"}}},"request":{"raw":"GET /static/adManager.js HTTP/1.1\r\nHost: js.wpadmngr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Mon, 20 Oct 2025 10:58:05 GMT\r\netag: W/\"68f615bd-24858\"\r\ncontent-encoding: gzip\r\nexpires: Mon, 27 Oct 2025 18:32:30 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1742\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":149592,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"c90d1ef9543d7d56a6869ed4be6f7847","sha1":"6ff159593c9698ad541e6d3c149847b110c3deb6","sha256":"e7e748a324a548da8ce1ccc081a1339bf22142939106758ba1803fabafc42b2e","sha512":"8ac7ce5a0c7bc4daabb49051583a693f53e9d884f8deb32158c604abe682bfd2969dc1ac4e6ea8c50c0e63684ddd7424770fa0d7fbaf42c113e8118e981f0dbc","ssdeep":"1536:Z2c1pgoXEptQy9RixdpOkxQKf7YbK2Ec+tskajUOPVKIZujAB5R1pKKfVf3dnCjH:eRizplOK8mvDtsjbnujATLQ3+da","tlshash":"64e33ac9b2d2b47407e75099d43f1206f33a1a16b80c9058f6a6e9c17878ddb9237f7a","first_seen":"2025-10-20T14:02:56.309645Z","last_seen":"2025-11-06T12:09:31.49625Z","times_seen":392,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":74,"dns":27,"connect":21,"send":0,"wait":41,"receive":0,"ssl":25},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"js.wpadmngr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ntvpforever.com/keywords","fqdn":"ntvpforever.com","domain":"ntvpforever.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"OPTIONS /keywords HTTP/1.1\r\nHost: ntvpforever.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":214,"timings":{"blocked":91,"dns":14,"connect":25,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"173.194.221.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.423Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:35:37 GMT","end":"Wed, 24 Dec 2025 14:35:36 GMT"},"fingerprint":{"sha1":"45:9C:C5:B0:D8:76:3F:BA:4B:3A:7A:47:93:65:30:95:DD:92:AF:CB","sha256":"31:5E:7E:B1:E0:22:CE:95:3B:A8:33:71:E6:32:80:DE:88:EB:4F:25:93:F9:66:CE:01:A0:31:61:3F:B3:A9:52"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:SkRsUV5EL7QqXUTykSC4xRxi5aGCPg:6-K8BxXV1IOLNvO5; Expires=Wed, 27-Oct-2027 18:27:31 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1864251553:1761589651527029\u0026ifkv=ARESoU1nwIqauXpEpgFM-GMGTXfKviA4UfYf74mwxEYoJAiQ8bKeBAZvggX5lz0mmf42yiQUu2z2og\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: script-src 'nonce-SkyJSWEUJJU4z1URlxxs7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport\r\ncross-origin-opener-policy: unsafe-none\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncross-origin-resource-policy: cross-origin\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":209,"timings":{"blocked":92,"dns":0,"connect":18,"send":0,"wait":24,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1864251553:1761589651527029\u0026ifkv=ARESoU1nwIqauXpEpgFM-GMGTXfKviA4UfYf74mwxEYoJAiQ8bKeBAZvggX5lz0mmf42yiQUu2z2og","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"173.194.221.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.556Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:35:37 GMT","end":"Wed, 24 Dec 2025 14:35:36 GMT"},"fingerprint":{"sha1":"45:9C:C5:B0:D8:76:3F:BA:4B:3A:7A:47:93:65:30:95:DD:92:AF:CB","sha256":"31:5E:7E:B1:E0:22:CE:95:3B:A8:33:71:E6:32:80:DE:88:EB:4F:25:93:F9:66:CE:01:A0:31:61:3F:B3:A9:52"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://m.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026dsh=S1864251553:1761589651527029\u0026ifkv=ARESoU1nwIqauXpEpgFM-GMGTXfKviA4UfYf74mwxEYoJAiQ8bKeBAZvggX5lz0mmf42yiQUu2z2og HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:usZJGQPclDCYFAZ7IOxXO7okN7Guvw:ZEM5fFePe4dmPtwm;Path=/;Expires=Wed, 27-Oct-2027 18:27:31 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1864251553%3A1761589651527029\u0026hl=en\u0026ifkv=ARESoU0TzBFXMO0hHNx1KiRURu3zpbixpSbqriNRy5Urn3afczwF73rHMGrf392oOPBWn62_AjOpDg\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-WH_2OqKOdQY7vPImMoz0ZQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 416\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"OpenGSE","description":"OpenGSE is a test suite used for testing servlet compliance. It is deployed by using WAR files that are deployed on the server engine.","website":"https://code.google.com/p/opengse","common_platform_enumeration":"","icon":"Google.svg","categories":["Web servers"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":35,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"29359827-36946-ex.uncocleypercha.com/hixCBoUyPgjaQ8wooFzFJyJJnLkHqIHRdvhSOsieHZoVNpSTp9lY8s2GUtdqbZHeztkLK6Qiha69FenlHea5aULCk6eXuLnWeAARGO8ke3phtcxwxrWpRx9dzLMzlIbz79s81ZAkPvJUPULtfL7U_PZJkLW27CLE?kws=\u0026pageUri=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026referer=\u0026bdd=%5B%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0%22%2C%22false%22%2C%22Win32%22%2C%22llvmpipe%22%2C%22Mozilla%22%2C%22llvmpipe%22%2C%22Mesa%22%2C%22false%22%2C%22true%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%22false%22%2C%221%22%2C%2248%22%2C%220%22%2C%22aaaaacccefiflmmprrsstlllecstaaahtscellllpss%22%2C%22Mon%20Oct%2027%202025%2018%3A27%3A30%20GMT%2B0000%20(GMT)%22%2C%220%22%2C%22en-US%22%2C%22en-US%2Cen%22%2C%22false%22%2C%22true%22%2C%22781877177%22%2C%222697903995%22%2C%222%22%2C%22false%22%2C%22%5B%5D%22%5D\u0026btdb=0\u0026prsl=1","fqdn":"29359827-36946-ex.uncocleypercha.com","domain":"uncocleypercha.com","tld":"com"},"ip":{"addr":"88.208.22.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:33.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.uncocleypercha.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 28 Aug 2025 13:23:39 GMT","end":"Wed, 26 Nov 2025 13:23:38 GMT"},"fingerprint":{"sha1":"22:8A:CB:BF:F6:C8:BB:63:3B:40:60:50:E5:68:99:7F:9B:12:0F:74","sha256":"D1:A4:E0:CC:A1:89:9F:AB:A7:F6:82:AB:E0:1A:43:E1:74:3B:AA:F3:D3:9C:2F:D7:6A:20:6D:23:3C:ED:D7:6A"}}},"request":{"raw":"GET /hixCBoUyPgjaQ8wooFzFJyJJnLkHqIHRdvhSOsieHZoVNpSTp9lY8s2GUtdqbZHeztkLK6Qiha69FenlHea5aULCk6eXuLnWeAARGO8ke3phtcxwxrWpRx9dzLMzlIbz79s81ZAkPvJUPULtfL7U_PZJkLW27CLE?kws=\u0026pageUri=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026referer=\u0026bdd=%5B%22Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0%22%2C%22false%22%2C%22Win32%22%2C%22llvmpipe%22%2C%22Mozilla%22%2C%22llvmpipe%22%2C%22Mesa%22%2C%22false%22%2C%22true%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%221280%22%2C%221024%22%2C%22false%22%2C%221%22%2C%2248%22%2C%220%22%2C%22aaaaacccefiflmmprrsstlllecstaaahtscellllpss%22%2C%22Mon%20Oct%2027%202025%2018%3A27%3A30%20GMT%2B0000%20(GMT)%22%2C%220%22%2C%22en-US%22%2C%22en-US%2Cen%22%2C%22false%22%2C%22true%22%2C%22781877177%22%2C%222697903995%22%2C%222%22%2C%22false%22%2C%22%5B%5D%22%5D\u0026btdb=0\u0026prsl=1 HTTP/1.1\r\nHost: 29359827-36946-ex.uncocleypercha.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:33 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nreferrer-policy: unsafe-url\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Device-Memory\r\naccept-ch-lifetime: 31536000\r\np3p: CP=\"NOI DEVa TAIa OUR BUS UNI STA\"\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\nlast-modified: Mon, 27 Oct 2025 18:27:33 UTC\r\nexpires: Mon, 27 Oct 2025 18:27:33 UTC\r\nset-cookie: _ccid=15122700087479779019; expires=Fri, 27 Oct 2028 18:27:33 GMT; domain=uncocleypercha.com; path=/; HttpOnly; secure; SameSite=None\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1536,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (1536), with no line terminators","md5":"6afd270035f5c6ca788381e31ee4462d","sha1":"7c54fc901f64bc7134aa93ff4436804182d6910c","sha256":"017852a2d1da5bf9addd3c12a788d83f1544e7c1fa42c0c59e2aef4375e40b66","sha512":"8eb2d3224e5322cb4204b78fe84d7e9fc9987f78f7c171ff1b53952e5eac224d52f50857d9aab65e1a77edde844525f0d14ebd4ebed25dce2b5cef4291e5b3bd","ssdeep":"","tlshash":"e8312c7f09cf2abe9928cbd209cb687cc75755d20a853a02e38447e852ddccd1dde261","first_seen":"2025-10-27T18:28:02.11169Z","last_seen":"2025-10-27T18:28:02.11169Z","times_seen":1,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":64,"dns":5,"connect":17,"send":0,"wait":175,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Oct 2025 02:19:36 GMT","end":"Fri, 14 Nov 2025 03:15:32 GMT"},"fingerprint":{"sha1":"71:D4:0D:05:26:FE:0C:0D:3F:32:81:CC:67:68:50:74:BC:FE:94:5F","sha256":"CC:7D:3A:D6:24:63:7F:A9:52:40:6C:3C:F2:19:37:AD:CF:80:2D:0F:99:1E:C1:30:08:9D:E8:58:35:39:77:06"}}},"request":{"raw":"GET /xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4 HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=377225216-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 1087568\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A26ECE656B018E5BD2F4A222C\r\netag: \"d074e666035593d8d297ebe71b0d3341-73\"\r\nlast-modified: Mon, 07 Jul 2025 08:54:45 GMT\r\nx-amz-uploadid: 00000197E4184752B156319B37864A7E\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-origin-time: 348\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE1[362],EU-NLD-amsterdam-EDGE3-CACHE1[357,TCP_MISS,361],EU-GER-frankfurt-GLOBAL1-CACHE14[351],EU-GER-frankfurt-GLOBAL1-CACHE1[348,TCP_MISS,350]\r\nx-hcs-proxy-type: 0\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 3e1c06b536477db80be7e0f56a49a68a\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: 1d49dc42-7e4b-41f7-bff3-eb5f7f66ceab\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-range: bytes 377225216-378312783/378312784\r\nage: 1\r\nx-content-type-options: nosniff\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1087568,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"c2d2857e7538c5cf50e68a924ac7b75d","sha1":"29b4d4cc5a2797532a6a217730dfee54fcedf336","sha256":"80f96fe41b7abc7c0fe43c0d8223b69e7bcac900aab68c42fd63b1ecf6b183a7","sha512":"9b0f9d1507d02ce5be8800c72523ab55344e17d4b2b7dfac97525e1004d7b022d923d1e5ab0d4f01eb1609ef1426c838a0d532163dc4a78db91a8f7f44d0a94b","ssdeep":"24576:AfPvSis0C2wdJLApZfaBfz/litdM9zPWn:AXvzFwLApM9Zi/M9zPWn","tlshash":"2d252585b32905b3ee522b7895d27356bb38f0a2b743d482c094831e6c5f3ecde961d6","first_seen":"2025-10-27T18:28:02.113496Z","last_seen":"2025-10-27T18:28:02.113496Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1961,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1715,"receive":246,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"storage.multstorage.com/log/count.html","fqdn":"storage.multstorage.com","domain":"multstorage.com","tld":"com"},"ip":{"addr":"13.248.148.254","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"storage.multstorage.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 23 Sep 2025 02:54:50 GMT","end":"Mon, 22 Dec 2025 02:54:49 GMT"},"fingerprint":{"sha1":"A7:F0:92:B0:60:17:0F:89:16:0D:51:27:DB:FE:C6:A0:D9:39:15:0F","sha256":"D8:BB:7C:8D:91:E4:6A:95:F9:86:5F:70:CE:DE:E9:AA:14:7C:0B:84:56:FC:96:09:E6:62:FD:5E:68:8E:E2:11"}}},"request":{"raw":"GET /log/count.html HTTP/1.1\r\nHost: storage.multstorage.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 410 Gone\r\nalt-svc: h3=\":50944\"; ma=2592000\r\nserver: Caddy\r\ncontent-length: 0\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"410","status_text":"Gone","fingerprints":[{"name":"Caddy","description":"","website":"https://caddyserver.com","common_platform_enumeration":"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*","icon":"caddy.svg","categories":["Web servers"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":190,"timings":{"blocked":83,"dns":26,"connect":1,"send":0,"wait":21,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"storage.multstorage.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-DoTr35U9-1761271652135.css","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:26.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/vendor-chunks-DoTr35U9-1761271652135.css HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F9544EB2D60161E0DAE13F\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 24 Oct 2025 02:07:43 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2485013\r\nvia: EU-FRA-marseille-EDGE1-CACHE1[5],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE3[5],EU-FRA-paris-GLOBAL1-CACHE23[0,TCP_HIT,3]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 18c684a80c237ed422963a116565481b\r\nnginx-hit: 1\r\nage: 106987\r\netag: W/\"583c695c76766d48b720411106e87599\"\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EyBl%2F3Iblid6hwhy3DnH3nQbOui3txcsbDlgoW6dv8TjvaAs%2FJv57keTjUNV2rCf7%2Bf5eYyaA5N5D33eJNxCqasVH2pVvI1PtNIxAnA8sxE%3D\"}]}\r\ncf-ray: 99543f5c4ef45687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":161718,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"583c695c76766d48b720411106e87599","sha1":"e7e75b7ea87593b675eac8f4937a1af7db66f102","sha256":"3f61af115313bbfe92c14794125043e3c53029cc5be9de758ce7a6a4e503275d","sha512":"a9c008b55f23c2460d6650529750b10d9ff30b66cdeb90ca7ad75ec21bb350c619593ae0e01975bacf784d013e08795f40f95c365deeaa4e594a6aa3785e2756","ssdeep":"768:eK4kaqXtxtd5+NuoRbV/es4idulogKFjY3xkjS5nz1miiJykXEK1rBw0OBp6EnUp:eKLvTdw7tejDxkjS5nzK8BTpZaKjpi","tlshash":"58f39569ea10a27de91faf259bc49f8ca224e881cd311af7f685610c4dc3bf115e274d","first_seen":"2025-06-14T07:01:13.355089Z","last_seen":"2026-02-27T13:27:16.333567Z","times_seen":523,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":294,"receive":11,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/settings/494334","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.999Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Sep 2025 23:28:42 GMT","end":"Sun, 07 Dec 2025 23:28:41 GMT"},"fingerprint":{"sha1":"75:0C:2C:D1:88:D9:87:78:0A:96:30:7B:67:42:16:4C:38:3E:51:6C","sha256":"2D:C0:E0:B0:44:25:E2:6F:08:EA:D5:19:60:6E:39:05:4F:0A:AC:38:FA:D8:9F:D6:B8:A1:C4:6F:3B:67:51:37"}}},"request":{"raw":"GET /api/settings/494334 HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1be64b6d6652effba7dcf744e90def6a","sha1":"d9fbc7d1fa49fa4733f90a3739882d63972c2352","sha256":"72d79d0ad9a70ef53c1bab65c588d44bffb1a1b5aba0eb2f9f6a886c4c3aec4f","sha512":"ff1aee5b5d4ba25f4f78a0ddc80cd878856815c1ded88b32370c72bff242e73522e6aefb60fa5e53c434f10d2611dab7679152edf9321edc2b656e0265ef7006","ssdeep":"","tlshash":"408004c00dc1545410c010f4434043150103140f535c3304d41d1701147f4d17030150","first_seen":"2023-04-06T10:58:14Z","last_seen":"2026-04-18T20:33:08.465506Z","times_seen":7281,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":72,"dns":11,"connect":28,"send":0,"wait":26,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/spots/494334?s1=1940313360218329090\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Sep 2025 23:28:42 GMT","end":"Sun, 07 Dec 2025 23:28:41 GMT"},"fingerprint":{"sha1":"75:0C:2C:D1:88:D9:87:78:0A:96:30:7B:67:42:16:4C:38:3E:51:6C","sha256":"2D:C0:E0:B0:44:25:E2:6F:08:EA:D5:19:60:6E:39:05:4F:0A:AC:38:FA:D8:9F:D6:B8:A1:C4:6F:3B:67:51:37"}}},"request":{"raw":"GET /api/spots/494334?s1=1940313360218329090\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51 HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nset-cookie: nauid=azMHg6qZOLClZGkirWnF; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2573,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (2071)","md5":"d5903fc0a90cfb38e29dd8fc133790f2","sha1":"b5253a5be5d97fc744beef4d81cc150ef757dd76","sha256":"8d0eb249e2c584a9f8c7ecf0bf0dc3aa3f4674f4258b5067a90e913c9e74c214","sha512":"c5ccfde59c7bc8f16cca06a18050bb9e961d42c07962ef65929a45828eee88a091dd7a42608f673aa373a2e2ef4d1ecd04c1ea2381d1581cffb20728ef606cc9","ssdeep":"","tlshash":"19516684d6fc6216f62b10a0dd7acb9f955ee141d2198075eff726a9c3cc64c067138e","first_seen":"2025-10-27T18:28:02.117257Z","last_seen":"2025-10-27T18:28:02.117257Z","times_seen":1,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":46,"dns":8,"connect":14,"send":0,"wait":14,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/icon-L3kzdSYP-1761271652135.png","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.917Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/icon-L3kzdSYP-1761271652135.png HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1761589647$o1$g0$t1761589647$j60$l0$h0; _ga=GA1.1.486434491.1761589647\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: image/png\r\ncontent-length: 12350\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AlNzCaQa2MgXfeQx6qXerHfJvA784%2B41nnwQUwWv1xOv9oEGUBT4eICsq%2B3UJg3FRZ1z06zbw0R%2FVWigvtr6BG6tMF%2Buuel4eqarl2P7big%3D\"}]}\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F953A9B199DE9EB5975DE3\r\netag: \"37e3e456df677e380ab34f5e0043db7d\"\r\nlast-modified: Fri, 24 Oct 2025 02:07:42 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2585847\r\nvia: EA-SGP-EDGE7-CACHE13[2],EA-SGP-EDGE7-CACHE5[0,TCP_HIT,1],EA-SGP-GLOBAL1-CACHE23[2],EA-SGP-GLOBAL1-CACHE27[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 246744637f8a089146d97ab7095b8d87\r\nnginx-hit: 1\r\nage: 3717\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 99543f6ff8665687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12350,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGB, non-interlaced","md5":"37e3e456df677e380ab34f5e0043db7d","sha1":"64ad1b4cca68328e5d987582f76ae59ea79a2d63","sha256":"0d8d6d6357c54934d059569ec6bd54e03b1f0ebad04ace58f8af20a88c2ea8a1","sha512":"7850cd6a4b9fe0cf8b0f1c07851fa283d4929e8d03e2c860470d89b621fbc3147a83812facd7f6b51b2fcc1bafb3cafabae9694077b9497bf7570c83983a273e","ssdeep":"192:whxxxL8uzJHxhnGn6dm0rrkV5Hm1qjDbPU6tbNi/esZtkcJ7Pzx0Xqh8:whxxxlRxhI6Zy5G1uDA+bNetvhVc08","tlshash":"dc429df7d9287f5827e17b23bad19a22f0ed40ae92056004f5da45b757393c8c046e93","first_seen":"2025-06-18T09:39:56.944198Z","last_seen":"2026-02-27T13:27:16.34167Z","times_seen":398,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/asg_embed.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.019Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 10:12:45 GMT","end":"Tue, 16 Dec 2025 11:12:39 GMT"},"fingerprint":{"sha1":"53:EE:30:9F:D0:82:6E:D3:05:D7:06:C0:89:A1:7F:95:D2:E2:01:7E","sha256":"21:58:AE:A3:46:B3:6B:EB:5F:82:88:D2:99:DE:87:F2:60:5D:36:27:10:AC:28:89:4F:06:F7:18:18:B4:95:23"}}},"request":{"raw":"GET /asg_embed.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 76815\r\nserver: cloudflare\r\nlast-modified: Fri, 17 Oct 2025 09:38:19 GMT\r\nvary: Accept-Encoding\r\netag: \"68f20e8b-12c0f\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 211274\r\ncf-cache-status: HIT\r\ncf-ray: 99543f709cddb500-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":245260,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"1093619d97a61fa7ce2f8d49c60cd231","sha1":"7f26ad5a0cbabdadea7a9d9b7b199f7bc713062d","sha256":"17b2b709ef9077f810aa9997fb69052f2d98de8ba6347bfcf9fbb8d6d1526c63","sha512":"0704683b95e6e4303c67e6f81d5d4a17e40a118fc026c1a0536100034c9c65dcdbad33cce607717df85625a6bb51911cf64926001701d26b0c7c7802b31a99e9","ssdeep":"6144:M11ClGoWve5tbyJ3xuG/KMInUsrIFRRrOJO7GG0iiGlNAkw5GJlY3mADPIahWkAx:1lGezm3xuGCQ77","tlshash":"1534a68db6c1b06107a36174062f646af3773a44b45ec480b72dd9d16ebaa0f6d27e3c","first_seen":"2025-10-22T11:29:03.885295Z","last_seen":"2025-11-01T07:48:06.406226Z","times_seen":79,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=349919","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.767Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 02:47:45 GMT","end":"Thu, 13 Nov 2025 02:47:44 GMT"},"fingerprint":{"sha1":"F4:AD:2A:0D:F1:0A:AB:04:F2:6F:6F:72:39:99:7F:4B:E4:5B:2E:4C","sha256":"12:8C:54:04:9B:26:0A:7E:35:D0:23:72:4F:A8:FC:52:77:D0:9D:FA:F5:AC:FE:2F:D2:49:97:F4:24:B6:72:0A"}}},"request":{"raw":"OPTIONS /fp?tag_id=349919 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/1.1 204 No Content\r\nServer: nginx/1.20.1\r\nDate: Mon, 27 Oct 2025 18:27:30 GMT\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: content-type\r\nAccess-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\nAccess-Control-Allow-Origin: https://www.jumplixytd.com\r\nVary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":194,"timings":{"blocked":84,"dns":3,"connect":24,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=8c92cfa3-b2e6-49ea-93fa-116dec21b86e\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-10-27\u0026timezone=0\u0026ver=1.168.27","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"GET /in/dip?event_id=8c92cfa3-b2e6-49ea-93fa-116dec21b86e\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-10-27\u0026timezone=0\u0026ver=1.168.27 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:32 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":1068,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":1066,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-1xzJ-OW7-1761271652135.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:27.648Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/vendor-chunks-1xzJ-OW7-1761271652135.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F95422B2D3C00052E2B163\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 24 Oct 2025 02:07:42 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2485013\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[7],EU-FRA-marseille-EDGE1-CACHE2[0,TCP_HIT,5],EU-FRA-paris-GLOBAL1-CACHE16[10],EU-FRA-paris-GLOBAL1-CACHE9[0,TCP_HIT,7]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 527c7ea15240415a7e6bd11c61326bcb\r\nnginx-hit: 1\r\nage: 0\r\netag: W/\"8898d7931d9c840ef747b6707c8ba138\"\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dEz%2BvGjWBLf9WkK74gnDD36bcDEJVH867dGnOVik7kU2m5AWJUU5r%2FTMWMXPpyHSgDljFvG7NSurYyd4Rqyy29D9WpvElKB2Bx6qF3mpgaY%3D\"}]}\r\ncf-ray: 99543f61cf575687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1269720,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (37925)","md5":"1f7f489abd21ebc22f4dfe364f33ceaa","sha1":"1ab7f4413e1f48775ea949987258fd45c8ab0c90","sha256":"94a78da6f81d7a55d6d78786f431c1bb6c929dee2b530a49edca4a8d301869ca","sha512":"fc7fc8a33e1b274e0ca43255a88b4abc0349ac63f47cf3d28e138f2c2c31d100901e0c55489751114acde08b7215b3f218912008e379955d0e138439ff17569c","ssdeep":"24576:TLgcTD3IaDerXpsBbIZ58O6gJ2dSG6MIIsPGiUcWFYMKduqCq:TscTD3IaDerXpsBbIZ58O6gq6MIIsPGa","tlshash":"28254bd932a6706287d361a4503f5207723a7d16248cc45cf63af9ea2eb8d09647bf7c","first_seen":"2025-10-22T18:26:11.322422Z","last_seen":"2025-11-03T03:56:15.081511Z","times_seen":30,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":60,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-FZ6E2FXG92","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.178.104","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:26.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:32:12 GMT","end":"Wed, 24 Dec 2025 14:32:11 GMT"},"fingerprint":{"sha1":"C1:75:0D:E5:E8:4D:AC:7F:C9:7A:40:D5:6C:2B:22:CE:ED:8F:6D:BB","sha256":"63:AB:E3:89:62:5A:B4:D8:9D:D3:5C:77:AE:75:C5:DE:49:CE:BA:43:6B:22:49:EF:48:59:47:A7:0E:75:FF:C2"}}},"request":{"raw":"GET /gtag/js?id=G-FZ6E2FXG92 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Mon, 27 Oct 2025 18:27:26 GMT\r\nexpires: Mon, 27 Oct 2025 18:27:26 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 142164\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":427506,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (6031)","md5":"d6c709b255a433b17c9af3e6cc6091d4","sha1":"65dff3c9c343d6bf7485a7f85c5c6f2e74d6bacc","sha256":"7730d5d14a49a25973a6fa67baa5329aeced50c63681d0c9d2efad3befa668d3","sha512":"58624610f76038cf9d35fafa81c74f3504444ed20cb80d1e318154e10b364aab7b7d580f56fc083b5e71ad78b1bc0d5db42bef94553452477a966bbb59e9f362","ssdeep":"6144:X4BoyJBX138429Z8nP57wr/s0s/+Kxxc20hYllAk6KlhDjMc:XWrJBlZ29Z8nP58DG/mYl5X","tlshash":"369419ce73d670269396f078503f018ba57b29a2b45cc896f189cce42d74a9a4277f7c","first_seen":"2025-10-27T18:28:02.12199Z","last_seen":"2025-10-27T18:28:02.12199Z","times_seen":1,"resource_available":true,"data":null}},"time_used":251,"timings":{"blocked":77,"dns":0,"connect":15,"send":0,"wait":43,"receive":50,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v1/user/gray/rules/check","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v1/user/gray/rules/check HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-length: 0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cQcegVAEEw0Cpgmf%2B%2BLqaFUgKFxjiX%2FR7I4W6tLqjP8UZ7N4jF7GCM7IC3llAcTR%2BfZLKMw9%2FKW7hS2hQxcx4SPlvFsI6za904HzKnR5XHqiSZgl%2FA%2B5gQ%3D%3D\"}]}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 99543f698ac635a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":773,"timings":{"blocked":0,"dns":1,"connect":0,"send":0,"wait":772,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Oct 2025 02:19:36 GMT","end":"Fri, 14 Nov 2025 03:15:32 GMT"},"fingerprint":{"sha1":"71:D4:0D:05:26:FE:0C:0D:3F:32:81:CC:67:68:50:74:BC:FE:94:5F","sha256":"CC:7D:3A:D6:24:63:7F:A9:52:40:6C:3C:F2:19:37:AD:CF:80:2D:0F:99:1E:C1:30:08:9D:E8:58:35:39:77:06"}}},"request":{"raw":"GET /xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4 HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 378312784\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 00000197E9C4569EB014EB6F606746F3\r\netag: \"d074e666035593d8d297ebe71b0d3341-73\"\r\nlast-modified: Mon, 07 Jul 2025 08:54:45 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 1057228\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE1[26],EU-NLD-amsterdam-EDGE3-CACHE1[23,TCP_MISS,25],EU-GER-frankfurt-GLOBAL1-CACHE14[15],EU-GER-frankfurt-GLOBAL1-CACHE1[0,TCP_HIT,14]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 387ee6b8691f70de7e0ee24d52ea37fc\r\ncontent-range: bytes 0-378312783/378312784\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: 2d13302f-1bf3-433c-a947-8c97a63fedad\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1063989,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"3e0be1c3ac50f05635eb873444f22d92","sha1":"586343504d2654f6ecc2022dc23aefb617d766ab","sha256":"67b8dafdc1815f4e1e5d4bc21f8d618547cb89e7d0fcdc9e209134ef728b78e3","sha512":"8a93d07003f169f01fc40892c33d2dae62c11fde928696e389c2ebab67ef866a946b940048adb34dda30f6b7cf296e20377c2aff7d9caadcd9d6545f75496552","ssdeep":"24576:16I+x3DzPpjiybbCismGaKGMZQU3k8kmIp/tKTaSuA:ZIXfBsmzKZQBftKTeA","tlshash":"922523d591f47536cf3d2ffeae55a22986d947bfc28ac3df51354100a2b026a968fe00","first_seen":"2025-10-27T18:28:02.124019Z","last_seen":"2025-10-27T18:28:02.124019Z","times_seen":1,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":51,"dns":1,"connect":9,"send":0,"wait":86,"receive":343,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ntvpforever.com/keywords","fqdn":"ntvpforever.com","domain":"ntvpforever.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"POST /keywords HTTP/1.1\r\nHost: ntvpforever.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 80\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/json\r\ncontent-length: 15\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":15,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"32323194b8b07fd0aa9b6f7fc79a7b30","sha1":"ea248c45722bff267b55a453dc794bc42171cef6","sha256":"080040b4937f3f423f32cd7f19b2a79ba1e1e213f1d9f4f4db4f609d4ad778d8","sha512":"e6b7cefe758be1e47a28ed8fc319cd61814e942838f0f65a26e629f0af39fae2547bece75c020c0cad5294b741a20911757b43b493dea2d3b109e4cf3ae3e9a3","ssdeep":"","tlshash":"9d600008200a08020880a000a20082002000a002002008282880008083002000888800","first_seen":"2023-09-22T06:12:14Z","last_seen":"2026-04-19T00:31:00.215608Z","times_seen":2342,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dbb8b55e45.7345dc0372.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI4Njk0MDM3NDI5ODQ2MjY0MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjIuMzguNyIsInRhZ19pZCI6MzQ5OTE5LCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjUsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MH0=","fqdn":"dbb8b55e45.7345dc0372.com","domain":"7345dc0372.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.763Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dbb8b55e45.7345dc0372.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Oct 2025 02:48:00 GMT","end":"Thu, 22 Jan 2026 02:47:59 GMT"},"fingerprint":{"sha1":"A8:AA:8E:15:B7:2A:C6:59:6F:10:62:51:ED:B1:67:79:F9:9F:3F:2C","sha256":"5C:63:78:0E:EF:7C:73:1A:1E:03:56:0C:5A:2B:29:EC:E5:EA:89:6B:69:77:7C:6C:D8:62:AC:D0:D4:46:58:CB"}}},"request":{"raw":"GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI4Njk0MDM3NDI5ODQ2MjY0MDAwIiwidGltZXpvbmUiOjAsInZlciI6IjIuMzguNyIsInRhZ19pZCI6MzQ5OTE5LCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjUsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MH0= HTTP/1.1\r\nHost: dbb8b55e45.7345dc0372.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-length: 0\r\nserver: nginx/1.18.0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nx-cdn-host-id: AH1742\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":113,"dns":65,"connect":21,"send":0,"wait":31,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"dbb8b55e45.7345dc0372.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-C6ZvijAs-1761271652135.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:26.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/main-C6ZvijAs-1761271652135.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F953C5B11BD5AC7B808846\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 24 Oct 2025 02:07:42 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2492321\r\nvia: EU-FRA-marseille-EDGE1-CACHE2[4],EU-FRA-marseille-EDGE1-CACHE3[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE15[5],EU-FRA-paris-GLOBAL1-CACHE12[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 650a05567fc160306b2ca1f628081a01\r\nnginx-hit: 1\r\nage: 99679\r\netag: W/\"f803015e63e93264ff00d02b411b778c\"\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o7gssk2moKI39tqK%2BxfGZEpLfYQEofesOyE8MSAlUqxEI4HuRpYkJ2fW4f0a5JrADfpQLyM9tJt4O%2B9r9J7Klor2YI%2FotmuNAALIRy49ukA%3D\"}]}\r\ncf-ray: 99543f5c3ef35687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":96916,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14304)","md5":"f803015e63e93264ff00d02b411b778c","sha1":"208d9d41d892b76a48f76cf2b9bdeb9de6b69f7d","sha256":"c3fcb8e3a4650e00834a0f34a33011d2410c1c62241efc69e0090b6797bcff3f","sha512":"fe3ce07451e8fc5c65c470f29375e03e820e528f3572aea835a99e6ab3590fadd5c1baeb3af82d81227314709513a8b6a2d951af6fcc2399f8db0a30188b2328","ssdeep":"1536:OOPdreulF4UUIRHwpIh7XkmwHq8Ff8mvU8CO5NdkhZ13/4RJPFTFBdlCSFwyT95W:OOFrBF4UUCLgHQmvbNlLvlzT95IZ4egu","tlshash":"d3937eed712d8e3df86108c278be943474253a2ffa18c8d1f0bd3c025b5499569aabdd","first_seen":"2025-10-25T09:37:12.241906Z","last_seen":"2025-10-27T23:52:24.738405Z","times_seen":13,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":296,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/favicon.ico","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:27.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1761589647$o1$g0$t1761589647$j60$l0$h0; _ga=GA1.1.486434491.1761589647\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: text/html\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F961A1B2D3C78557DD03EF\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=64SjIFziwU9IcKSExTmvMIcKhxuAw3KbmJlhxm9sKYCP8blSSM6VnowKDF92x5WDjqe0z%2FmRYVEw1peX%2FJLGLKJ7lXc%2BxnweUa3R4DEs8fQ%3D\"}]}\r\nlast-modified: Fri, 24 Oct 2025 02:07:43 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nvia: EU-GER-frankfurt-EDGE5-CACHE6[3],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,1],EU-FRA-paris-GLOBAL1-CACHE18[4],EU-FRA-paris-GLOBAL1-CACHE3[0,TCP_HIT,1]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 0675972543b50baa3f459fc44faf3877\r\nnginx-hit: 1\r\nage: 317926\r\nx-ccdn-expires: 2274097\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 99543f626f5d5687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2123,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"7baeac74248aa374ed520bc7c0d7688e","sha1":"ee314550901d78e8dae20f8f5e9f1c4082036d58","sha256":"6dbaad0e022facbeffa89904df56473da7c4a99dc2b51ccc2454ab901c8805ce","sha512":"044330afa7b941c710c5d3445176fb053e0e81ed2aa3888ee6cecb24121c4994c2690e151d30262eed76c9faea4753c007259d5bc4ef339141482da7694e6678","ssdeep":"","tlshash":"06412f472de3489864209a556fe2f138ae66e3475759e95471ed222cdf81b838cc34a4","first_seen":"2025-10-25T09:37:12.22794Z","last_seen":"2025-10-27T23:52:24.724436Z","times_seen":13,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":50,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/home/resources/h0yjzcve","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:27.751Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v2/s/home/resources/h0yjzcve HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,x-stream-l1\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:28 GMT\r\ncontent-length: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type, x-stream-l1\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JVyvgNe%2BkR%2FOmNxJ6bG32a0d1BH5bTbAaxoLbmbBBKIeoilnYN%2B6lAShMw1IyDWCT2hRWLcvURJ1vmSghllhpGstQ1bEDQG1%2FUiwsFn8%2BTC5uAzsx%2FhHEg%3D%3D\"}]}\r\ncf-ray: 99543f629c62b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":880,"timings":{"blocked":21,"dns":10,"connect":1,"send":0,"wait":831,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/home/resources/h0yjzcve","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"POST /v2/s/home/resources/h0yjzcve HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: application/json\r\nX-Stream-L1: videy.tv\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:28 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=iqlvkAQJtilkfgY0bPXHMlU4zm5KvNiUOVmjeEt6hYQmZUIJQxraxklSCerbCdwmIE9aRoTVCaCDMlJmSlQZebFJTnS5C2Ppobvsnbc050Tdhd1zEUqlvg%3D%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 99543f67c92cb28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":640,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"0988cc86b03a9089dda044ea1421cae4","sha1":"24104ee03824253a6f564fe001b8672d5e64d967","sha256":"e319415f26821794784f60090a4bdebee447e782c5180d6f234324ee17baa441","sha512":"52481c769e46b0631bd951af4b4b0e365224db24c3447936370cde15c996019065aab1adbef6e90f63ca7c278754aaa4c5620303fc7c0f6d0e831dad6038b4dd","ssdeep":"","tlshash":"82f062cc44818c0cea852a0ad0d58e3cc131c00add56aa0e98cfcc82c1440add7603f9","first_seen":"2025-10-27T18:28:02.128526Z","last_seen":"2025-10-27T18:28:02.128526Z","times_seen":1,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/adgpt.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.095Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 10:12:45 GMT","end":"Tue, 16 Dec 2025 11:12:39 GMT"},"fingerprint":{"sha1":"53:EE:30:9F:D0:82:6E:D3:05:D7:06:C0:89:A1:7F:95:D2:E2:01:7E","sha256":"21:58:AE:A3:46:B3:6B:EB:5F:82:88:D2:99:DE:87:F2:60:5D:36:27:10:AC:28:89:4F:06:F7:18:18:B4:95:23"}}},"request":{"raw":"GET /adgpt.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 872\r\nserver: cloudflare\r\nlast-modified: Fri, 17 Oct 2025 09:38:19 GMT\r\nvary: Accept-Encoding\r\netag: \"68f20e8b-368\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 318878\r\ncf-cache-status: HIT\r\ncf-ray: 99543f711d7ab500-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2370,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2370), with no line terminators","md5":"a0eaaed582ff685dd1612d9b403738ff","sha1":"e1edc160f929904d6f72cf06fb89bdee0820d8c0","sha256":"1329ad4e3e1558a61554e9d122ddfd9cd3fc384efbdda3f84ff8c411a0456101","sha512":"b97c6ab213782628b715a2409294c82921e46608b494d6369217198f2418f4a0f13c9458088adee2582b634c35e0effcbf8043c2ed1c50ececfca56b068d548a","ssdeep":"","tlshash":"784126ee25a0fda0079b714c602b180af0bc35e0e3ace8c69ff984b43d3c6441111aed","first_seen":"2025-10-23T23:38:15.306982Z","last_seen":"2025-11-01T07:48:06.412972Z","times_seen":74,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/main-BOgndWu6-1761271652135.css","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:26.769Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/main-BOgndWu6-1761271652135.css HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: text/css\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F953A8B11A3F82267565DD\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 24 Oct 2025 02:07:42 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2507814\r\nvia: EU-FRA-marseille-EDGE3-CACHE7[3],EU-FRA-marseille-EDGE3-CACHE11[0,TCP_HIT,3],EU-FRA-paris-GLOBAL1-CACHE26[5],EU-FRA-paris-GLOBAL1-CACHE11[0,TCP_HIT,2]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 3491c4271b611e6936c560f11c01f2dc\r\nnginx-hit: 1\r\nage: 84186\r\netag: W/\"439a2c07c479f9bfae500c03884ea23c\"\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f3i8RGatHAga8I8j7%2Bnrwf9gpflKuJGGaTeHppdSnHmWEZgC3%2BCrQBliZw7jINatBR83PD4Wr8ZTc7vVDiDjqPHRa6ojTD7861ljSAOgg4s%3D\"}]}\r\ncf-ray: 99543f5c4ef65687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":62242,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (62241)","md5":"439a2c07c479f9bfae500c03884ea23c","sha1":"1a453064b43881187b5ad2262650b2648af09589","sha256":"ab5cb9c5e5a42504a4fc75da3d084e5ccb6c697e22247302a88e0e2731ef8449","sha512":"ec71855676051cef60aefd2651bc8bf666c7cce76b5799ef8f5ce8a1739ade7d1945ad04d38191127742c077659fc03917d9b8e3a69741e39a8864a2d847580c","ssdeep":"1536:TSMWKxZ2v1/pPhcgQ5qNsmbHDXEfSCZDfhTwDzfTK2HnO0iyAoP7GitdtmnyWl05:sKxZ2vzZ7Q5qNsmbHDXEfpDfhTwDzfTj","tlshash":"e3538321b6178129b833b9e6e5d4ab5e31349d0ec922d7def601752dcece391243722e","first_seen":"2025-10-25T09:37:12.243157Z","last_seen":"2025-10-27T23:52:24.734763Z","times_seen":13,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/popunder-admanager/build.m.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.765Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.capndr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Oct 2025 02:32:03 GMT","end":"Sun, 11 Jan 2026 02:32:02 GMT"},"fingerprint":{"sha1":"4F:91:E2:5E:A1:B1:4D:7F:49:01:1E:73:C6:07:EB:0A:BE:44:4C:44","sha256":"7B:0D:8E:03:0E:6E:23:65:30:3D:E8:FC:0C:E7:66:46:E2:5B:7F:FA:FD:D2:FF:61:4C:A4:18:08:24:70:51:6B"}}},"request":{"raw":"GET /popunder-admanager/build.m.js HTTP/1.1\r\nHost: js.capndr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nserver: nginx/1.18.0\r\nlast-modified: Mon, 27 Oct 2025 14:19:49 GMT\r\netag: W/\"68ff7f85-17f49\"\r\ncontent-encoding: gzip\r\nexpires: Mon, 27 Oct 2025 18:32:30 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1747\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":98121,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"c876fdcba8a4218b55010f234c79f2af","sha1":"92c8ea61c92d0d93312ea15fc61654a92b301f2e","sha256":"f8eec33e26a9039e102fe503ea91fb580c426a7a1170f9b03957f8b7b99b94f6","sha512":"94edf7499d9597faf52659fa665e266081ac18ce4c8d9fcd88d2c25a0d2d99b43bc3ac71013d6ca355ef0678aec0af1882d54e241098b9890de9dd68292a4b22","ssdeep":"768:ubVWcprgLsdOKoFiXE9VIlKAelZ8JnN2m+sfy2WnXSqeq3Sg9C4+XuSOscdFPmzu:WYmOKjlM8JzdGeG+2","tlshash":"7aa318cdb7d2707042a7a4ba902f151ab33f29197809442cf969c9d138ad94f9327f79","first_seen":"2025-10-27T16:53:50.164553Z","last_seen":"2025-10-28T07:52:03.287331Z","times_seen":21,"resource_available":true,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":80,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:32.610Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Oct 2025 02:19:36 GMT","end":"Fri, 14 Nov 2025 03:15:32 GMT"},"fingerprint":{"sha1":"71:D4:0D:05:26:FE:0C:0D:3F:32:81:CC:67:68:50:74:BC:FE:94:5F","sha256":"CC:7D:3A:D6:24:63:7F:A9:52:40:6C:3C:F2:19:37:AD:CF:80:2D:0F:99:1E:C1:30:08:9D:E8:58:35:39:77:06"}}},"request":{"raw":"GET /xbox-streaming/1940313360218329090/1a873a5c-1543-4520-893a-b269aae3d40f.mp4 HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=1048576-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\ncontent-type: video/mp4\r\ncontent-length: 377264208\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A26ECE656B018E5BD2F4A222C\r\netag: \"d074e666035593d8d297ebe71b0d3341-73\"\r\nlast-modified: Mon, 07 Jul 2025 08:54:45 GMT\r\nx-amz-uploadid: 00000197E4184752B156319B37864A7E\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-origin-time: 348\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE1[362],EU-NLD-amsterdam-EDGE3-CACHE1[357,TCP_MISS,361],EU-GER-frankfurt-GLOBAL1-CACHE14[351],EU-GER-frankfurt-GLOBAL1-CACHE1[348,TCP_MISS,350]\r\nx-hcs-proxy-type: 0\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 3e1c06b536477db80be7e0f56a49a68a\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: 11e2b32a-0136-4517-a636-90debacf8664\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncontent-range: bytes 1048576-378312783/378312784\r\nage: 1\r\nx-content-type-options: nosniff\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16384,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"c33a8f76dacc27dc73dc5aa49bce4684","sha1":"e2a1048eaf01cfc27c9a3d2ee8108d88dfcec662","sha256":"37a6535d3358f83b0be56bef2ca5e766677ca56aef31af7457ef7c099575dbb4","sha512":"73794348363f045217e1cd5aaebd0f4d200d21f01d888fe170b5f9d8368f235f98fb3ae03bcb5d66b4b4046a7bac102b2388aadfdb10fafcb7ee35b617b74516","ssdeep":"384:vnyNG8C1M5RGiVnGHhM/KR+FsBpni0LOzRHvqyPxg5GXiXp4:vn8G8t5RlVnGkKR+4niAOzNqyJgEXii","tlshash":"2272c02048fd37c99bb831ada8722ad453ce93e8611eb27a296f639062c141153f179e","first_seen":"2025-10-27T18:28:02.133073Z","last_seen":"2025-10-27T18:28:02.133073Z","times_seen":1,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":85,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bereave.onelinevideo.com/moire/calibre/eclipse","fqdn":"bereave.onelinevideo.com","domain":"onelinevideo.com","tld":"com"},"ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bereave.onelinevideo.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 21 Apr 2025 00:00:00 GMT","end":"Mon, 20 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E0:8E:3E:B2:04:D3:F1:8E:24:9D:86:3A:9E:82:A4:F5:45:3F:D1:AD","sha256":"92:99:82:77:56:12:E5:7A:6F:E4:9E:E1:33:D0:ED:6E:11:A4:AF:65:E4:1A:60:B9:75:F8:9B:59:74:D7:01:8B"}}},"request":{"raw":"POST /moire/calibre/eclipse HTTP/1.1\r\nHost: bereave.onelinevideo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 921\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"36f9685755b3a8b17873d665fe5a995e","sha1":"c2edd9a5fa4b2c02148d0fdd5d1dbe2a532320dd","sha256":"6477b67ad05c76f24ad0149d5a93d346076992fc3841806be8ca19a70caba047","sha512":"20bae09144b9eaf9e3a8b44174d0bb3af96066a58a4d017a904ffb8e183706e37d2103e4e1eccfb8eba1eb6d3014a7b7b67909375bcf031d95772587232a766c","ssdeep":"","tlshash":"af80040d7105110f17c17500304774100353c10f704515111c0303050d11344c3f4713","first_seen":"2025-10-27T18:28:02.135484Z","last_seen":"2025-10-27T18:28:02.135484Z","times_seen":1,"resource_available":false,"data":null}},"time_used":882,"timings":{"blocked":390,"dns":61,"connect":103,"send":0,"wait":102,"receive":0,"ssl":224},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v1/user/gray/rules/check","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"POST /v1/user/gray/rules/check HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 259\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PH2eMd6Y65ZOImEk5Foph%2Bsk2s59U2KD4a%2B0%2FM59%2FqBnjbRJ1MMev%2FU8zEvdKet3JWyNPZ5iRtHsy61G%2FulCzfy4pImwbDInw%2BAK2TkGfa%2BvQYEkMOrCXg%3D%3D\"}]}\r\ncontent-encoding: br\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 99543f6e5b5a35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":281,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a3ccdf4f5cc8da7a6c2caa521331e46a","sha1":"dfe98614ee3b455bca14db2eef682f1338580a8a","sha256":"017e430f25345405c1b0bfeb89dce3a8f2be65237a718e8ad7563b2e977d9b5f","sha512":"afacf3e0a96434042d8417442f5a16ed1642ffb0e964552926b6ef374bfd2cd4e2a270fd66ee6fa906a67a47e750c72731cbcae88c0189c0a51c7a0f3bbe1b24","ssdeep":"","tlshash":"34d05e7d297154ad14985152d651e9c9f78058aabf58b750c423c11f34eb0c8723d2b7","first_seen":"2025-10-16T16:52:07.242118Z","last_seen":"2025-11-20T22:31:42.767036Z","times_seen":72,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":211,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494333?host=www.jumplixytd.com\u0026ev=223\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51\u0026i=1\u0026s1=1940313360218329090\u0026fs1=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Sep 2025 23:28:42 GMT","end":"Sun, 07 Dec 2025 23:28:41 GMT"},"fingerprint":{"sha1":"75:0C:2C:D1:88:D9:87:78:0A:96:30:7B:67:42:16:4C:38:3E:51:6C","sha256":"2D:C0:E0:B0:44:25:E2:6F:08:EA:D5:19:60:6E:39:05:4F:0A:AC:38:FA:D8:9F:D6:B8:A1:C4:6F:3B:67:51:37"}}},"request":{"raw":"GET /api/users/494333?host=www.jumplixytd.com\u0026ev=223\u0026wh=1024\u0026ww=1280\u0026uuid=\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51\u0026i=1\u0026s1=1940313360218329090\u0026fs1=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: nauid=U96aHtm9oWsEQEX7jjMF\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-robots-tag: noindex, nofollow\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":660,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (351)","md5":"e17d14f6a5857a08d872a1c5a66c4809","sha1":"a00d37c877df159d560a34234ae0c70945d3b0b5","sha256":"b400e45a6653fbbd2743a0a769d9a8fa30569b00681b7a4c448f3f7b8a63976b","sha512":"f2c673d6efa4fc6f864f5b445b2dfa635134402c932e833c92ef9a32e8a2d0225ef97c0fd2cd108e04a9bdbdba164d1fee17fa134b82480b3e6f3ee5fb46e826","ssdeep":"","tlshash":"7a01d386568c55eb870850a3dd2e4e758a8d4d783704900afb75831a5dc924102601cb","first_seen":"2025-10-27T18:28:02.139516Z","last_seen":"2025-10-27T18:28:02.139516Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/solid.gif?z=2081141\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.622-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=COrzbvzaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZT9sdjE9dmlkZXkudHY\u0026afid=6026422050272768\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026dto=2\u0026pload=1474\u0026rlp=%5B0%2C4%2C101%2C73%2C53193%2C7486%2C1785%2C7140%2C1%5D\u0026im=1\u0026noch=1\u0026cs=5","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"POST /solid.gif?z=2081141\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.622-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=COrzbvzaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZT9sdjE9dmlkZXkudHY\u0026afid=6026422050272768\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026dto=2\u0026pload=1474\u0026rlp=%5B0%2C4%2C101%2C73%2C53193%2C7486%2C1785%2C7140%2C1%5D\u0026im=1\u0026noch=1\u0026cs=5 HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: CHCK=1; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\nUID=25102713272bd6996edf7d49aa98e2d45f3f; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-04-19T01:23:10.697453Z","times_seen":20960,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fp.metricswpsh.com/fp?tag_id=349919","fqdn":"fp.metricswpsh.com","domain":"metricswpsh.com","tld":"com"},"ip":{"addr":"157.90.84.242","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"notification.tubecup.net","organization":""},"issuer":{"commonName":"E6","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 02:47:45 GMT","end":"Thu, 13 Nov 2025 02:47:44 GMT"},"fingerprint":{"sha1":"F4:AD:2A:0D:F1:0A:AB:04:F2:6F:6F:72:39:99:7F:4B:E4:5B:2E:4C","sha256":"12:8C:54:04:9B:26:0A:7E:35:D0:23:72:4F:A8:FC:52:77:D0:9D:FA:F5:AC:FE:2F:D2:49:97:F4:24:B6:72:0A"}}},"request":{"raw":"POST /fp?tag_id=349919 HTTP/1.1\r\nHost: fp.metricswpsh.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json;charset=utf-8\r\nContent-Length: 1970\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.20.1\r\nDate: Mon, 27 Oct 2025 18:27:30 GMT\r\nContent-Type: application/json; charset=UTF-8\r\nContent-Length: 58\r\nConnection: keep-alive\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://www.jumplixytd.com\r\nSet-Cookie: id=16480754561542906055; Expires=Tue, 27 Oct 2026 18:27:30 GMT; Secure; SameSite=None\r\nVary: Origin\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.20.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":58,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"c4efc1d6d16235d9433cd2565d887460","sha1":"22d069a5f536640e46122475c79db933e82d7f2e","sha256":"f0a6b8c736b7d8c5d3304a9ccd10d2114a0f25f2ba946cce62204df3384a131f","sha512":"af1cfe529f3173efdc7f4aff67355529095e775d8edb38d8a7c9565e09807aff470a465ffdf89ef6555f06cc88efa675823becc942896c63fa64a3140858f539","ssdeep":"","tlshash":"5ba00294c5c00e3c80200c3a73cf901628e4d304120217880ca66b5108822abe333c91","first_seen":"2025-07-26T17:44:43.174102Z","last_seen":"2026-04-19T01:23:10.688117Z","times_seen":6280,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":-1,"dns":6,"connect":24,"send":0,"wait":25,"receive":0,"ssl":59},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"fp.metricswpsh.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enrtx.com/get/","fqdn":"enrtx.com","domain":"enrtx.com","tld":"com"},"ip":{"addr":"94.130.197.239","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.773Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"popunder-base.infrapu.sh","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 05 Sep 2025 07:32:10 GMT","end":"Thu, 04 Dec 2025 07:32:09 GMT"},"fingerprint":{"sha1":"50:EA:C1:7E:9B:20:00:A4:62:CE:FD:F9:FD:D2:E9:BE:77:FE:08:47","sha256":"81:9C:C4:CA:23:66:01:BB:6E:7A:21:04:B3:6B:69:EF:E7:F2:C5:8D:CB:6E:F7:3D:A2:3C:90:1F:BE:0B:6F:48"}}},"request":{"raw":"POST /get/ HTTP/1.1\r\nHost: enrtx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1739\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.16.0\r\ndate: Mon, 27 Oct 2025 18:27:32 GMT\r\ncontent-type: application/json\r\ncontent-length: 3157\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.16.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9684,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9e81e57e448dacd51e78ee8c44e51713","sha1":"13aeb4db8a288a2f663f0adfc20b7cbf084eb06b","sha256":"de8f82e788d3ec1f1c94be84aac8d07a8be9b97c18f2ec98c68598d154f3df2f","sha512":"1bf85882d9e2195fb103dab525eeafb9db979108c8c37914cad4c349ccdf8eb35f2babb640942dadeb75709a9613622c1a828183102337bbc8caa9a5d950b9da","ssdeep":"192:mBew+G4tQcW+yrXk+BlbMpv473jWq+DO27HsmR+BlbMpv473jWe+DOwBew+G4tQC:mBewr4ycRO0ElbMpAzjnITHsmRElbMps","tlshash":"3e12179715a3e5b0acace497e0f2d324e6c7e5f109474ccfe9a28679898d24105c8f9d","first_seen":"2025-10-27T18:28:02.143344Z","last_seen":"2025-10-27T18:28:02.143344Z","times_seen":1,"resource_available":false,"data":null}},"time_used":515,"timings":{"blocked":108,"dns":27,"connect":25,"send":0,"wait":297,"receive":0,"ssl":55},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lleana.com/cuload?a=1\u0026e=aeyJwaWQiOjEyMTA5MDYsInNpZCI6MTU1OTcxMywid2lkIjo3MjMwNTMsImQiOiJzdHJlYW1saW5rdHR3LmNvbSIsImxpIjoxfQ==\u0026tz=0\u0026if=0\u0026u=aHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZQ==","fqdn":"lleana.com","domain":"lleana.com","tld":"com"},"ip":{"addr":"185.162.85.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lleana.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Oct 2025 11:46:15 GMT","end":"Tue, 30 Dec 2025 11:46:14 GMT"},"fingerprint":{"sha1":"53:13:86:9C:70:45:AB:EB:47:CF:40:84:31:B1:97:B8:0C:90:69:94","sha256":"F5:D5:AC:9F:E5:CC:3D:6A:4C:DA:55:FA:AD:77:74:B3:A6:65:3C:E0:8F:B5:80:0D:6A:A2:69:1F:59:CF:74:4B"}}},"request":{"raw":"GET /cuload?a=1\u0026e=aeyJwaWQiOjEyMTA5MDYsInNpZCI6MTU1OTcxMywid2lkIjo3MjMwNTMsImQiOiJzdHJlYW1saW5rdHR3LmNvbSIsImxpIjoxfQ==\u0026tz=0\u0026if=0\u0026u=aHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZQ== HTTP/1.1\r\nHost: lleana.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\naccept-ch: Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":150,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JSON text data","md5":"2cb4a5f1d3896222d80e0d037ec34572","sha1":"7689dac4a4c6e3e94cdb2331c1cc105b76a61ae7","sha256":"3f3bc01d9e40c8e7f514374ff937ae7872422334b55f1489998f86c9ee876bb2","sha512":"2d24e76cd0463006be9bca5d0ec8685a321d96044cc09241e27ae23f90d74ca2f2348ee5381305fff2932ef58a331f85ca1982b981f7e92ef2e6b8d090a130b1","ssdeep":"","tlshash":"4ac08c48425021618e4ac0c322090c5544cc290e14ec81c2c944ad8896e32ad5b4c0ee","first_seen":"2025-10-27T18:28:02.146407Z","last_seen":"2025-10-27T18:28:02.146407Z","times_seen":1,"resource_available":false,"data":null}},"time_used":151,"timings":{"blocked":73,"dns":0,"connect":17,"send":0,"wait":21,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"lleana.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1864251553%3A1761589651527029\u0026hl=en\u0026ifkv=ARESoU0TzBFXMO0hHNx1KiRURu3zpbixpSbqriNRy5Urn3afczwF73rHMGrf392oOPBWn62_AjOpDg\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"173.194.221.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.600Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:35:37 GMT","end":"Wed, 24 Dec 2025 14:35:36 GMT"},"fingerprint":{"sha1":"45:9C:C5:B0:D8:76:3F:BA:4B:3A:7A:47:93:65:30:95:DD:92:AF:CB","sha256":"31:5E:7E:B1:E0:22:CE:95:3B:A8:33:71:E6:32:80:DE:88:EB:4F:25:93:F9:66:CE:01:A0:31:61:3F:B3:A9:52"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fm.youtube.com%2Ffavicon.ico\u0026dsh=S1864251553%3A1761589651527029\u0026hl=en\u0026ifkv=ARESoU0TzBFXMO0hHNx1KiRURu3zpbixpSbqriNRy5Urn3afczwF73rHMGrf392oOPBWn62_AjOpDg\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: script-src 'nonce-KfAlEYXP2C0a2ZLcXwHPLw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport\r\ncontent-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/enterprise.js https://www.gstatic.com/recaptcha/ https://www.google.com/tools/feedback/chat_load.js https://www.google.com/tools/feedback/help_api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.gstatic.com/feedback/js/ https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.Mp9mjkH_buc.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":58,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nereserv.com/in/dip?event_id=8c92cfa3-b2e6-49ea-93fa-116dec21b86e\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-10-27\u0026timezone=0\u0026ver=1.168.27","fqdn":"nereserv.com","domain":"nereserv.com","tld":"com"},"ip":{"addr":"168.119.25.102","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:31.771Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"inpage.infrapu.sh","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 02:00:40 GMT","end":"Sat, 24 Jan 2026 02:00:39 GMT"},"fingerprint":{"sha1":"2B:72:A9:3F:14:00:92:B9:05:AC:BC:3B:22:CB:D9:87:80:23:C8:3D","sha256":"60:5B:BA:7E:5F:7A:B1:E0:55:4D:4C:29:EA:C7:21:68:37:AF:03:5B:A7:3D:15:98:F1:65:96:AB:4A:3E:17:3B"}}},"request":{"raw":"GET /in/dip?event_id=8c92cfa3-b2e6-49ea-93fa-116dec21b86e\u0026subid=1450210302\u0026spot_id=1457063\u0026created_at=2025-10-27\u0026timezone=0\u0026ver=1.168.27 HTTP/1.1\r\nHost: nereserv.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:31 GMT\r\ncontent-length: 0\r\nvary: Origin\r\ncache-control: no-transform, no-cache, no-store, must-revalidate\r\npragma: no-cache\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":42,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"nereserv.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-27T18:27:26.280Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /e/h0yjzcve?lv1=videy.tv HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:26 GMT\r\ncontent-type: text/html\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F95EC9B0D362D4B177C3E2\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Dmz7YTPDTN7O%2BZ3tg2I3mLzDoa%2FUCcmha8P86tFUvvFm56JZdG5B7CnGDP8OhJlZFUZ13akqbCEcaHnIWa9pKKqDo%2Fh4yatf3Hblck1D8TI%3D\"}]}\r\nlast-modified: Fri, 24 Oct 2025 02:07:43 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2274485\r\nvia: EU-GER-frankfurt-EDGE5-CACHE6[4],EU-GER-frankfurt-EDGE5-CACHE3[0,TCP_HIT,2],EU-FRA-paris-GLOBAL1-CACHE25[8],EU-FRA-paris-GLOBAL1-CACHE22[0,TCP_HIT,6]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 16becacb5a6d4726772f5ad17c866eef\r\nnginx-hit: 1\r\nage: 317515\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 99543f596b34b4f4-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Analytics","description":"Google Analytics is a free web analytics service that tracks and reports website traffic.","website":"https://google.com/analytics","common_platform_enumeration":"","icon":"Google Analytics.svg","categories":["Analytics"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2123,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"7baeac74248aa374ed520bc7c0d7688e","sha1":"ee314550901d78e8dae20f8f5e9f1c4082036d58","sha256":"6dbaad0e022facbeffa89904df56473da7c4a99dc2b51ccc2454ab901c8805ce","sha512":"044330afa7b941c710c5d3445176fb053e0e81ed2aa3888ee6cecb24121c4994c2690e151d30262eed76c9faea4753c007259d5bc4ef339141482da7694e6678","ssdeep":"","tlshash":"06412f472de3489864209a556fe2f138ae66e3475759e95471ed222cdf81b838cc34a4","first_seen":"2025-10-25T09:37:12.22794Z","last_seen":"2025-10-27T23:52:24.724436Z","times_seen":13,"resource_available":false,"data":null}},"time_used":369,"timings":{"blocked":24,"dns":1,"connect":1,"send":0,"wait":320,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/assets/f?id=3e29ff85-8b98-4dd8-86af-b944d166b9ab\u0026uid=1940313360218329090","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.841Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"OPTIONS /v2/s/assets/f?id=3e29ff85-8b98-4dd8-86af-b944d166b9ab\u0026uid=1940313360218329090 HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-length: 0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE\r\naccess-control-allow-headers: content-type\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5lmSBuhZw4EIePtLxUXWHVStZoruPMUa0xGZE29wP5Bjmytll7MdDKT%2Fx8ha5SibtYNNPZHM5tqVwEdrn%2FlG3YcMbLmVR6cqBtGAAuUARfkfmfDwMU%2FJjw%3D%3D\"}]}\r\ncf-ray: 99543f694c31b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":209,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":209,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lz.faenasturbit.com/sSB8ld39qI9j8pgT/130607","fqdn":"lz.faenasturbit.com","domain":"faenasturbit.com","tld":"com"},"ip":{"addr":"172.241.53.182","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.247Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lz.faenasturbit.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 25 Aug 2025 21:30:44 GMT","end":"Sun, 23 Nov 2025 21:30:43 GMT"},"fingerprint":{"sha1":"13:83:22:2A:A8:74:75:99:1D:B5:40:D3:0C:98:ED:AE:AF:58:E6:7F","sha256":"CB:DB:2B:D4:50:B9:74:60:4A:8C:FB:0B:16:75:AA:35:D4:89:87:48:74:0B:08:15:A0:97:A6:B5:40:09:1D:FC"}}},"request":{"raw":"GET /sSB8ld39qI9j8pgT/130607 HTTP/1.1\r\nHost: lz.faenasturbit.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5\r\nvary: Origin\r\naccess-control-expose-headers: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Megageocheckolololo, X-Forwarded-For, X-Requested-With, Cache-Control, Pragma, Expires, Credentials\r\naccess-control-allow-methods: GET, HEAD, POST, PUT, OPTIONS\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nset-cookie: GGI10=G/oAAMTPn1PZ5ukSnmw8bfFluN+NzXY8UNxgu2vRX1kBBUFRI0khkN4mIl6+sph1ZvUL+3+QLmPYQQgMNdBV21QNx4aMrtlAiGKwleH+ntQGAmTEmCDoFqnJiHnepJOR3v59EG8FIwaOdobz8JLu23zdp8CQsTYiK/UGYXW5Ny4h28/t9QY9BoGM1KWZOetFAxnyVyaG5gRZMngvluyDhYW+4JZLLNyzdOH/Bw==; max-age=3600000; path=/; secure; SameSite=None\nGUI42=G1EDAGRzTeWjR7p6Qu3mU4YH9Pm/d8f/s18Bwh2ttYAWSICBJJLv1p7hISgwsLmvbx6l1gny/4B8HjAzIAA9j+CKoejWQE7Q1BwPyagP3EDzrQkKAFxCMsFpubg+UtqnIlX8zN9T+7IO1X2MMktWiYNbyuVNiRJnf7wfUIbm+H7AEgzQyUwzPGiPsMTAVKsDJfFwD4xfforJPYXioCIf2lWxUYhhKoQ7HRcZYY50oYzyqxv9qsGaDbWD1wCyt75hKpW3uB8gHqUhyEoTSk1RxkUr1lwWVmkJtMRDLDKRhK6JKZeSpVJNYZhr9NBIY1zkqp1pIcXRmpOuXZbnZmrK1GQprh3FhAWw37LLQmbTCH66VE33X9bD3yqgSeP7AeXr1OsuO6qcJayqp9VMtT1A/4JTwT1AkJZzjPhTkAfWGyG/j8JzziRG0P/cNw==; max-age=3600000; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-19T01:40:25.792285Z","times_seen":13960,"resource_available":true,"data":null}},"time_used":214,"timings":{"blocked":97,"dns":55,"connect":17,"send":0,"wait":19,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lleana.com/er?a=1","fqdn":"lleana.com","domain":"lleana.com","tld":"com"},"ip":{"addr":"185.162.85.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.107Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lleana.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Oct 2025 11:46:15 GMT","end":"Tue, 30 Dec 2025 11:46:14 GMT"},"fingerprint":{"sha1":"53:13:86:9C:70:45:AB:EB:47:CF:40:84:31:B1:97:B8:0C:90:69:94","sha256":"F5:D5:AC:9F:E5:CC:3D:6A:4C:DA:55:FA:AD:77:74:B3:A6:65:3C:E0:8F:B5:80:0D:6A:A2:69:1F:59:CF:74:4B"}}},"request":{"raw":"GET /er?a=1 HTTP/1.1\r\nHost: lleana.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx/1.18.0\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 9\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"9d1ead73e678fa2f51a70a933b0bf017","sha1":"d205cbd6783332a212c5ae92d73c77178c2d2f28","sha256":"0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5","sha512":"935b3d516e996f6d25948ba8a54c1b7f70f7f0e3f517e36481fdf0196c2c5cfc2841f86e891f3df9517746b7fb605db47cdded1b8ff78d9482ddaa621db43a34","ssdeep":"","tlshash":"a250000c0003c3cc0000003030c0000000000300300000300000c000000000000c000c","first_seen":"2023-03-08T03:03:03Z","last_seen":"2026-04-19T01:58:44.274784Z","times_seen":73631,"resource_available":true,"data":null}},"time_used":183,"timings":{"blocked":84,"dns":20,"connect":21,"send":0,"wait":18,"receive":0,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"lleana.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.labadena.com/api/users/494331?v2=1\u0026fill=0\u0026s1=1940313360218329090\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51","fqdn":"a.labadena.com","domain":"labadena.com","tld":"com"},"ip":{"addr":"37.27.230.125","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Finland","country_code":"FI"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.labadena.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 08 Sep 2025 23:28:42 GMT","end":"Sun, 07 Dec 2025 23:28:41 GMT"},"fingerprint":{"sha1":"75:0C:2C:D1:88:D9:87:78:0A:96:30:7B:67:42:16:4C:38:3E:51:6C","sha256":"2D:C0:E0:B0:44:25:E2:6F:08:EA:D5:19:60:6E:39:05:4F:0A:AC:38:FA:D8:9F:D6:B8:A1:C4:6F:3B:67:51:37"}}},"request":{"raw":"GET /api/users/494331?v2=1\u0026fill=0\u0026s1=1940313360218329090\u0026fs1=1\u0026i=1\u0026url=https%3A%2F%2Fwww.jumplixytd.com%2Fe%2Fh0yjzcve%3Flv1%3Dvidey.tv\u0026sid=4d19c2ce-f281-4892-bd79-b52db5f4ae51 HTTP/1.1\r\nHost: a.labadena.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: text/xml\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Asg-Config, X-t\r\nset-cookie: nauid=U96aHtm9oWsEQEX7jjMF; Path=/; Expires=Wed, 11 Nov 2037 11:11:11 GMT; Secure; SameSite=None\r\nx-robots-tag: noindex, nofollow\r\nx-t: 0\r\ncache-control: private\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":96,"size_decoded":0,"mime_type":"text/xml","magic":"XML 1.0 document, ASCII text","md5":"73d174f378b492e8958d14c2e6a9a4ec","sha1":"7d699dc411131a000b55c5e3808d6c75b443a25f","sha256":"c6f441dbb28602e988f9ae260f3f9c8556ac8d11eac13a6f997c04519267a621","sha512":"dd3c103c5a448e2e3df63dd51379b0f2225bbe5ce804402f5b13d102bd64500652eff4a136f311426d152d0068f4e9d0ce036e054b567246fb9e1a4156c0d195","ssdeep":"","tlshash":"e0b012867301b43305f16f135b24c01513783b85089d588ce8f30ad01e6440c03481ce","first_seen":"2025-09-24T04:41:31.323262Z","last_seen":"2025-11-20T22:31:42.782605Z","times_seen":115,"resource_available":false,"data":null}},"time_used":92,"timings":{"blocked":41,"dns":2,"connect":14,"send":0,"wait":14,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"a.labadena.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.8/postscribe.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/postscribe/2.0.8/postscribe.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 5117\r\ncf-ray: 99543f6b2d0175ab-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03faa-45f4\"\r\nlast-modified: Mon, 04 May 2020 16:15:38 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 490187\r\nexpires: Sat, 17 Oct 2026 18:27:29 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=CLz3%2B3YLMLb0h6%2Fv4cAv9xxgxkxoUS8hLhAhXH4IAWxHDi%2F666eBFWT0RoYuZGqpMJsHcFfv3KqumglRIoBrWettnRR%2BQazBzyNhOVjE6ZaRccEQnIP6Mf8PaQPnmysvkpJyWglC\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17908,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (17660)","md5":"12dd498bf90c536803c2aad708b66c2b","sha1":"5f9363d39a405d1c94328cf2303ff4a05c0ad163","sha256":"c4e20f53f5ef0ed44b783437aa3f4638a9a56cc4aa29ae83ed9212eb2807052a","sha512":"ec593a501ebf74c092e564a1aaf0b477d3da6813c9a88f29d0d2a0db8143bdf19718ba4e6b13f64295b077ca5cb9c13460c30f9f2f35982a82597b22f79ffdd1","ssdeep":"192:l3GySZoj5oOg8pu564aEzn5nVMnyk3sBakk3cx7x0IlQV0Hf1b5SwU+ahpfex/W9:lWytjU64auV0ISjyW5RAe","tlshash":"6f82b38cb295f0b553d710b5403f910fe2366928654ec4d8f288d5ea2c7899d663bf3d","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-04-18T22:28:19.312374Z","times_seen":7104,"resource_available":true,"data":null}},"time_used":56,"timings":{"blocked":20,"dns":0,"connect":1,"send":0,"wait":16,"receive":1,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sm.videqqwuieyui.com/thumbnails/xbox-streaming/1940313360218329090/4cfc1066-6fba-46ef-9f86-6a29760de491/screenshot/3x3.jpg","fqdn":"sm.videqqwuieyui.com","domain":"videqqwuieyui.com","tld":"com"},"ip":{"addr":"34.126.238.65","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sm.videqqwuieyui.com","organization":""},"issuer":{"commonName":"WR3","organization":"Google Trust Services"},"validity":{"start":"Wed, 15 Oct 2025 02:19:36 GMT","end":"Fri, 14 Nov 2025 03:15:32 GMT"},"fingerprint":{"sha1":"71:D4:0D:05:26:FE:0C:0D:3F:32:81:CC:67:68:50:74:BC:FE:94:5F","sha256":"CC:7D:3A:D6:24:63:7F:A9:52:40:6C:3C:F2:19:37:AD:CF:80:2D:0F:99:1E:C1:30:08:9D:E8:58:35:39:77:06"}}},"request":{"raw":"GET /thumbnails/xbox-streaming/1940313360218329090/4cfc1066-6fba-46ef-9f86-6a29760de491/screenshot/3x3.jpg HTTP/1.1\r\nHost: sm.videqqwuieyui.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 245779\r\nserver: Google-Edge-Cache\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 00000199CB7223E2B2D3C3ABC75898C7\r\netag: \"378c9d700c011511bb43c9e921723192\"\r\nlast-modified: Mon, 07 Jul 2025 08:55:43 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 1057229\r\nvia: EU-NLD-amsterdam-EDGE3-CACHE1[54],EU-NLD-amsterdam-EDGE3-CACHE1[49,TCP_MISS,54],EU-GER-frankfurt-GLOBAL1-CACHE2[24],EU-GER-frankfurt-GLOBAL1-CACHE8[0,TCP_HIT,23]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 409889b64995067f6141b54614c0943d\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\nx-request-id: 364d09e0-687b-475d-9375-b98da8aae2b4\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\ncache-control: public,max-age=86000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":245779,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: \"Lavc60.31.102\", baseline, precision 8, 3840x2160, components 3","md5":"378c9d700c011511bb43c9e921723192","sha1":"1608067766a7308152452f511314c942833ebe9e","sha256":"ded962336f2bdccb8ba31905ebbb5cc5fe66e1ed99a925bd6396023622c9a166","sha512":"afc71636a9ae9cbd24cfb17f4d1d814905c17dffe1e02e3d2d6d99cb2eec6ddeaa29aec5b41f214e89ff556981ee452d435308d159a18c10450fba30942268ea","ssdeep":"6144:ZkisLlRqkvDV+Xf+o8ON9ChNYQbbTGXGl01J/z:ZkDhRgf+pOUNYQrGXGAJ7","tlshash":"ae3423054f9df87d6e05647f7abb3e8a4d78d30a67337d0a4134316ca3aa014a21f3a1","first_seen":"2025-10-27T18:28:02.15215Z","last_seen":"2025-10-27T18:28:02.15215Z","times_seen":1,"resource_available":false,"data":null}},"time_used":322,"timings":{"blocked":82,"dns":9,"connect":8,"send":0,"wait":112,"receive":46,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"na.nawpush.com/tags/349919?version_name=b\u0026domain=www.jumplixytd.com","fqdn":"na.nawpush.com","domain":"nawpush.com","tld":"com"},"ip":{"addr":"45.133.44.24","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"na.nawpush.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Sep 2025 02:32:20 GMT","end":"Thu, 18 Dec 2025 02:32:19 GMT"},"fingerprint":{"sha1":"38:85:B2:05:59:7D:15:16:9D:87:1B:83:46:10:68:2E:DC:7C:7A:D1","sha256":"FE:22:4E:C6:6F:85:46:CA:64:38:8F:48:77:17:E8:29:0E:7C:14:27:20:EA:A9:7B:CB:5E:49:87:A6:B0:60:2F"}}},"request":{"raw":"GET /tags/349919?version_name=b\u0026domain=www.jumplixytd.com HTTP/1.1\r\nHost: na.nawpush.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/json\r\nserver: nginx/1.24.0\r\ncache-control: max-age=300, public\r\nx-cdn-host-id: DS5058\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1355,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"8ffde819ccaa33f1682bff8cec8f0171","sha1":"710f1a90788daf2fad56ef410703d2c8d86c8ce6","sha256":"62f576fe820ab024b3486658b48308fe1eadb9ff9392c056bbb6555f662c3fa2","sha512":"4d51b313afc623aed87b9b2ad2e57bef61f2e7b0fbf38acbcf2a6db68e18f68777c906a6d0e8ebc2f75c60b566e5d9ac5bd2a1a914da67dc015213de2a9791df","ssdeep":"","tlshash":"d62153fc95359caac0c0478a84d67f4c02a4327bb2c8745af5ad09b81acf5971d2f20b","first_seen":"2025-10-27T18:28:02.154097Z","last_seen":"2025-10-27T18:28:02.154097Z","times_seen":1,"resource_available":false,"data":null}},"time_used":171,"timings":{"blocked":69,"dns":27,"connect":19,"send":0,"wait":23,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"na.nawpush.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"js.capndr.com/advertising.js","fqdn":"js.capndr.com","domain":"capndr.com","tld":"com"},"ip":{"addr":"45.133.44.52","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"js.capndr.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 13 Oct 2025 02:32:03 GMT","end":"Sun, 11 Jan 2026 02:32:02 GMT"},"fingerprint":{"sha1":"4F:91:E2:5E:A1:B1:4D:7F:49:01:1E:73:C6:07:EB:0A:BE:44:4C:44","sha256":"7B:0D:8E:03:0E:6E:23:65:30:3D:E8:FC:0C:E7:66:46:E2:5B:7F:FA:FD:D2:FF:61:4C:A4:18:08:24:70:51:6B"}}},"request":{"raw":"GET /advertising.js HTTP/1.1\r\nHost: js.capndr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 0\r\nserver: nginx/1.18.0\r\nlast-modified: Fri, 14 Jul 2023 08:23:25 GMT\r\netag: \"64b105fd-0\"\r\nexpires: Mon, 27 Oct 2025 18:32:30 GMT\r\ncache-control: max-age=300\r\nx-cdn-host-id: AH1747\r\nx-proxy-cache: HIT\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-19T02:23:19.368905Z","times_seen":13918819,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":58,"dns":17,"connect":21,"send":0,"wait":22,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"js.capndr.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"driverhugoverblown.com/get/2081141?id=2081141\u0026jp=_clzngbaotyzvrjlkubhixw\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.622-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=COrzbvzaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZT9sdjE9dmlkZXkudHY\u0026afid=6026422050272768\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026dto=2\u0026pload=1474\u0026rlp=%5B0%2C4%2C101%2C73%2C53193%2C7486%2C1785%2C7140%2C1%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0","fqdn":"driverhugoverblown.com","domain":"driverhugoverblown.com","tld":"com"},"ip":{"addr":"94.242.247.35","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.604Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"driverhugoverblown.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 14:23:57 GMT","end":"Wed, 21 Jan 2026 14:23:56 GMT"},"fingerprint":{"sha1":"AB:39:B2:8C:70:D6:0B:38:B0:1E:73:99:51:2D:35:30:EA:6B:4A:70","sha256":"86:18:14:14:6C:52:E9:C3:AC:03:AF:10:49:19:37:24:9D:9A:36:E6:1A:05:C8:1C:8E:69:BE:53:1E:CE:6F:65"}}},"request":{"raw":"GET /get/2081141?id=2081141\u0026jp=_clzngbaotyzvrjlkubhixw\u0026dr=49\u0026cuaa=2\u0026nojs=0\u0026bavar=0\u0026febuild=1.0.622-st\u0026t=0\u0026wcks=1\u0026wgl=1\u0026cnvs=1\u0026os=0\u0026tz=UTC\u0026ss=1\u0026ls=1\u0026bb=0\u0026cti=0\u0026fn=3\u0026es=13\u0026ge=2\u0026th=\u0026pcs=2\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Win32\u0026cd=24\u0026vcv=Mesa\u0026vcn=llvmpipe\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026psu=COrzbvzaHR0cHM6Ly93d3cuanVtcGxpeHl0ZC5jb20vZS9oMHlqemN2ZT9sdjE9dmlkZXkudHY\u0026afid=6026422050272768\u0026eclog=0\u0026snc=0\u0026ssc=0\u0026vp=0\u0026dto=2\u0026pload=1474\u0026rlp=%5B0%2C4%2C101%2C73%2C53193%2C7486%2C1785%2C7140%2C1%5D\u0026im=1\u0026noch=1\u0026cs=5\u0026uf=0 HTTP/1.1\r\nHost: driverhugoverblown.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nCookie: cart=1; cart_p=2\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\nPTS=; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\nUID=25102713272fbe500f152340b78867b16612; Path=/; Expires=Mon, 30 Nov 2026 18:27:30 GMT; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":3236,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3236), with no line terminators","md5":"6455011b98003f5fcac620924dfc347a","sha1":"8e8f1f9b78acb9faf8ff52053f987be798f99611","sha256":"bdfe4ab6de1852b096641aabbaa725cb03f9042084d998896c7e8f8a2072d528","sha512":"8c334013650dbbbba6f99aa96ad21dda204f187c2a7760e252f242c3a0741765248b3d806e2912fcdc52bde7552cf5d23975827ef3492229773ebed770b1996d","ssdeep":"","tlshash":"a36183d47240c750b0ca0a2dceeeed81f5d674e6988729d686aba74c135047d0f2f2ab","first_seen":"2025-10-27T18:28:02.156027Z","last_seen":"2025-10-27T18:28:02.156027Z","times_seen":1,"resource_available":true,"data":null}},"time_used":24,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.jumplixytd.com/assets/vendor-chunks-1xzJ-OW7-1761271652135.js","fqdn":"www.jumplixytd.com","domain":"jumplixytd.com","tld":"com"},"ip":{"addr":"172.67.177.17","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:27.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jumplixytd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 26 Sep 2025 05:53:30 GMT","end":"Thu, 25 Dec 2025 06:50:42 GMT"},"fingerprint":{"sha1":"29:DA:0E:01:F1:31:AE:92:69:B4:6B:7D:ED:07:40:14:94:0E:A3:29","sha256":"64:BF:FD:D8:62:72:85:32:5D:30:ED:EE:8D:49:00:E4:AF:DF:BD:98:FA:E9:5E:B1:B2:86:A9:39:84:1B:28:BD"}}},"request":{"raw":"GET /assets/vendor-chunks-1xzJ-OW7-1761271652135.js HTTP/1.1\r\nHost: www.jumplixytd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/assets/main-C6ZvijAs-1761271652135.js\r\nCookie: _ga_FZ6E2FXG92=GS2.1.s1761589647$o1$g0$t1761589647$j60$l0$h0; _ga=GA1.1.486434491.1761589647\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:27 GMT\r\ncontent-type: application/x-javascript\r\nvary: accept-encoding\r\ncontent-encoding: br\r\nserver: cloudflare\r\nx-reserved: amazon, aws and amazon web services are trademarks or registered trademarks of Amazon Technologies, Inc\r\ncloudservicediscount: CDN\r\nx-amz-request-id: 0000019A13F95422B2D3C00052E2B163\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 24 Oct 2025 02:07:42 GMT\r\nx-amz-id-2: 36AAAQAAEAABAAAQAAEAABAAAQAAEAABAAAaI=AAAAAAAAAAAAAAAAAAAAAAAAAA\r\nx-ccdn-expires: 2485013\r\nvia: EU-FRA-marseille-EDGE1-CACHE4[7],EU-FRA-marseille-EDGE1-CACHE2[0,TCP_HIT,5],EU-FRA-paris-GLOBAL1-CACHE16[10],EU-FRA-paris-GLOBAL1-CACHE9[0,TCP_HIT,7]\r\nx-hcs-proxy-type: 1\r\nx-ccdn-cachettl: 2592000\r\nx-ccdn-req-id-46b1: 527c7ea15240415a7e6bd11c61326bcb\r\nnginx-hit: 1\r\nage: 106987\r\netag: W/\"8898d7931d9c840ef747b6707c8ba138\"\r\naccess-control-expose-headers: *\r\naccess-control-allow-origin: *\r\ncontent-disposition: inline\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UQKzGkN2jYFj9u5uqE9Gm8ZaIJOxJ0nlTZGLLUlZhSceiBrSG%2BQt4%2B5JmrsCcFbpwvSdDPrEa%2FWd3K1XjGCkPAN8hFfYlGfR4o328DCBkB0%3D\"}]}\r\ncf-ray: 99543f5ebf235687-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1269720,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (37925)","md5":"1f7f489abd21ebc22f4dfe364f33ceaa","sha1":"1ab7f4413e1f48775ea949987258fd45c8ab0c90","sha256":"94a78da6f81d7a55d6d78786f431c1bb6c929dee2b530a49edca4a8d301869ca","sha512":"fc7fc8a33e1b274e0ca43255a88b4abc0349ac63f47cf3d28e138f2c2c31d100901e0c55489751114acde08b7215b3f218912008e379955d0e138439ff17569c","ssdeep":"24576:TLgcTD3IaDerXpsBbIZ58O6gJ2dSG6MIIsPGiUcWFYMKduqCq:TscTD3IaDerXpsBbIZ58O6gq6MIIsPGa","tlshash":"28254bd932a6706287d361a4503f5207723a7d16248cc45cf63af9ea2eb8d09647bf7c","first_seen":"2025-10-22T18:26:11.322422Z","last_seen":"2025-11-03T03:56:15.081511Z","times_seen":30,"resource_available":false,"data":null}},"time_used":354,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":294,"receive":60,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bereave.onelinevideo.com/moire/calibre/eclipse","fqdn":"bereave.onelinevideo.com","domain":"onelinevideo.com","tld":"com"},"ip":{"addr":"47.252.7.200","port":443,"asn":45102,"as":"Alibaba US Technology Co., Ltd.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.869Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bereave.onelinevideo.com","organization":""},"issuer":{"commonName":"Encryption Everywhere DV TLS CA - G2","organization":"DigiCert Inc"},"validity":{"start":"Mon, 21 Apr 2025 00:00:00 GMT","end":"Mon, 20 Apr 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E0:8E:3E:B2:04:D3:F1:8E:24:9D:86:3A:9E:82:A4:F5:45:3F:D1:AD","sha256":"92:99:82:77:56:12:E5:7A:6F:E4:9E:E1:33:D0:ED:6E:11:A4:AF:65:E4:1A:60:B9:75:F8:9B:59:74:D7:01:8B"}}},"request":{"raw":"POST /moire/calibre/eclipse HTTP/1.1\r\nHost: bereave.onelinevideo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 906\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/json\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: no-store\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":38,"size_decoded":0,"mime_type":"application/json","magic":"ASCII text, with no line terminators","md5":"bb8668dd5506cc5ca54793bce0484ca1","sha1":"4210f69f15fef09323d149e1b7fe501b67f12128","sha256":"c2ef437e87f3d31e50c441b765c8a4c9eadb83d134492209c044b115aa270ef6","sha512":"12f933f18decb11a286c9b5cbe9c2f7d6a33afcddbb9fa37b5e7fc22b66c1ae6247f6ede21447b0cb9353924f9c5e7400f8381a339741d110982285be2339833","ssdeep":"","tlshash":"ec8004114c14141cdc54c1100c14c747307dc0005051c0501131731053c51774d57550","first_seen":"2025-10-27T18:28:02.157844Z","last_seen":"2025-10-27T18:28:02.157844Z","times_seen":1,"resource_available":false,"data":null}},"time_used":831,"timings":{"blocked":365,"dns":52,"connect":100,"send":0,"wait":101,"receive":0,"ssl":210},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.tapioni.com/vast-im.js","fqdn":"cdn.tapioni.com","domain":"tapioni.com","tld":"com"},"ip":{"addr":"104.20.34.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:28.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn.tapioni.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 10:12:45 GMT","end":"Tue, 16 Dec 2025 11:12:39 GMT"},"fingerprint":{"sha1":"53:EE:30:9F:D0:82:6E:D3:05:D7:06:C0:89:A1:7F:95:D2:E2:01:7E","sha256":"21:58:AE:A3:46:B3:6B:EB:5F:82:88:D2:99:DE:87:F2:60:5D:36:27:10:AC:28:89:4F:06:F7:18:18:B4:95:23"}}},"request":{"raw":"GET /vast-im.js HTTP/1.1\r\nHost: cdn.tapioni.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:28 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 89045\r\nserver: cloudflare\r\nlast-modified: Fri, 17 Oct 2025 09:38:19 GMT\r\nvary: Accept-Encoding\r\netag: \"68f20e8b-15bd5\"\r\ncontent-encoding: gzip\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: public, max-age=315360000\r\nage: 398218\r\ncf-cache-status: HIT\r\ncf-ray: 99543f69adeab500-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315937,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65503), with no line terminators","md5":"8185f26ebe3e4675a3248b15e927b2d2","sha1":"d47683a50e5838a4843c58117a42ab17aec96ebe","sha256":"c841b953de5b67e61da9c796353eb552eea622f3b0cac6cb85802f312abe03ba","sha512":"ede02da627af03fc9e5bfea659502b6ac3f96f655ec222290f77e904edec9c9321b9fa13a44feef6bcb2377da1a1044524d5f3883f8f6996c434ccf302a0ecef","ssdeep":"6144:IdFL92ASnqBYfmMklUIWXsVjC+TpcB86ccfC:S97SnqBYfmMklUIWXAjC+9886ccfC","tlshash":"4764a4c9b6c6b0a543e7b0b8403f520ef276a955b44ac9c0e266e9d0ac7c94e5037f7d","first_seen":"2025-10-22T22:12:54.226509Z","last_seen":"2025-11-01T07:20:29.848175Z","times_seen":68,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":29,"dns":10,"connect":3,"send":0,"wait":6,"receive":4,"ssl":15},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-27","alert":"Sinkholed","trigger":"cdn.tapioni.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.lixstreamingcaio.com/v2/s/assets/f?id=3e29ff85-8b98-4dd8-86af-b944d166b9ab\u0026uid=1940313360218329090","fqdn":"api.lixstreamingcaio.com","domain":"lixstreamingcaio.com","tld":"com"},"ip":{"addr":"172.67.200.211","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:29.054Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lixstreamingcaio.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 23 Oct 2025 09:33:43 GMT","end":"Wed, 21 Jan 2026 10:32:28 GMT"},"fingerprint":{"sha1":"4B:56:A4:B4:FD:CC:C3:10:87:7C:9D:AF:AA:DD:15:76:A6:A6:24:82","sha256":"47:9F:6B:6B:87:90:3E:BD:D7:80:43:FF:15:2C:13:C1:55:79:08:46:0A:9F:49:69:9F:4A:06:B8:50:C5:B3:3A"}}},"request":{"raw":"GET /v2/s/assets/f?id=3e29ff85-8b98-4dd8-86af-b944d166b9ab\u0026uid=1940313360218329090 HTTP/1.1\r\nHost: api.lixstreamingcaio.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://www.jumplixytd.com/\r\nContent-Type: application/json\r\nOrigin: https://www.jumplixytd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:29 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=16ThvlTJ1LU6sTckcLMDYwttaVQbI1YO4DQ68RY7vBVIdkSj%2FQ8QnyfiMW9mqRhlqOky7r19W00OTwoz1t3bxknbFLI%2BYY83HyvFDgH0xtmzDksTSGtQZQ%3D%3D\"}]}\r\ncontent-encoding: br\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://www.jumplixytd.com\r\naccess-control-expose-headers: X-Error-Code\r\naccess-control-allow-credentials: true\r\nx-xbox-platform: streaming\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 99543f6a9b0e35a6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":162,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"39b063e9a2ffdb74bc4b786423b3ec5d","sha1":"37c0b60d90c59b4a6eceecea450552c197b8cf97","sha256":"9ceb758e487cf4684d5fc179b8c9e8b3390dffd1e76ba496abf1f9b51a973682","sha512":"d70a9e11a6f84f79b889ac4cf93e5ea677d99595e5bb847c0ce40081175ac1c9dd2c7cebd5a3f92590e92c7aa452434f4e982e65d7376eb0a9d0b560f7466662","ssdeep":"","tlshash":"b3c08c30d3a84d8a2de08f9e6673388408502969628081f69c79fe6e52b003a25022a0","first_seen":"2025-10-27T18:28:02.160891Z","last_seen":"2025-10-27T18:28:02.160891Z","times_seen":1,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":224,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jyzkut.com/p/waWQiOjEyMTA5MDYsInNpZCI6MTU1OTcxMywid2lkIjo3MjMwNTMsInNyYyI6Mn0=eyJ.js","fqdn":"jyzkut.com","domain":"jyzkut.com","tld":"com"},"ip":{"addr":"104.21.47.67","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jyzkut.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 31 Aug 2025 15:08:20 GMT","end":"Sat, 29 Nov 2025 16:05:40 GMT"},"fingerprint":{"sha1":"DC:02:01:13:E1:82:9D:30:E4:09:89:E4:4B:17:08:09:3C:8F:EA:74","sha256":"AF:37:00:65:87:BE:57:99:A0:F7:2B:F5:F3:CF:D2:FE:AD:E5:DB:E1:BE:DB:00:49:CC:C2:38:3F:7B:B0:5A:79"}}},"request":{"raw":"GET /p/waWQiOjEyMTA5MDYsInNpZCI6MTU1OTcxMywid2lkIjo3MjMwNTMsInNyYyI6Mn0=eyJ.js HTTP/1.1\r\nHost: jyzkut.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: https://www.streamlinkttw.com\r\ne-tag: bb2c30ef5e3422ba0fb100586e1351aa\r\ncontent-encoding: gzip\r\nage: 5146\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 27 Oct 2025 17:01:43 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eMPVdKdvMYa30AerfrtwemTKIvzkgE9eHLdG3uFleFUuIU%2F3aBJRkJfOMtAg6KDTtFm6mun2JJka0l8juGDQDt1OT8jhyIPa\"}]}\r\ncf-ray: 99543f70cbf556c1-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11141,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11141), with no line terminators","md5":"060e16d894f4082a0479139bb0732d6a","sha1":"b48929ba29159eb02772964e5a5b6bfa671d6d96","sha256":"0bb7c794ee98e35f4ddee8d3d1501eee230d1fe0f82749e51330737653671bfe","sha512":"2d19b0663e0b31c6e1c082643ff9594bd81d6d2862ded39b1269aa94191c3db6ae56c3d6be4a8af37ac455f9d899fa63f2b524b62635b3dc0f9522abf1abf902","ssdeep":"192:XPwyOzqHZJ4K9+BtnpTOLSyHyt1sfsKG3aSSR5W5J2QSjT8wCbXf45A88Q:XYyG+ZJ4K9+BtnpoSySt1sfFOabnGJ2V","tlshash":"8d3284507ec036a627474fbb7627b4e0e51b0d5b299848dfd114bc5878a273eebd2a30","first_seen":"2025-10-27T17:16:46.200798Z","last_seen":"2025-10-27T18:28:02.162728Z","times_seen":2,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":18,"dns":2,"connect":1,"send":0,"wait":8,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"36946.phidonatome.com/4/js/260941","fqdn":"36946.phidonatome.com","domain":"phidonatome.com","tld":"com"},"ip":{"addr":"88.208.22.1","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://www.jumplixytd.com/e/h0yjzcve?lv1=videy.tv","date":"2025-10-27T18:27:30.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.phidonatome.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 Aug 2025 14:26:35 GMT","end":"Sat, 22 Nov 2025 14:26:34 GMT"},"fingerprint":{"sha1":"26:CF:61:32:62:A2:2E:AA:5B:BB:94:49:87:8F:5F:D3:FC:56:D3:A3","sha256":"11:B6:A8:6E:27:CF:3A:FB:9E:54:98:68:00:99:A8:AE:D3:70:FD:EB:48:73:1C:CE:3E:A1:96:8E:A9:37:C1:09"}}},"request":{"raw":"GET /4/js/260941 HTTP/1.1\r\nHost: 36946.phidonatome.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.jumplixytd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 27 Oct 2025 18:27:30 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\ncontent-length: 11322\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 86400\r\nreferrer-policy: unsafe-url\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Device-Memory\r\naccept-ch-lifetime: 31536000\r\nset-cookie: _ccid=15122700087479779019; expires=Fri, 27 Oct 2028 18:27:30 GMT; domain=phidonatome.com; path=/; HttpOnly; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":31409,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (31409), with no line terminators","md5":"56437fb9e2f2a975f21c5545c89ad824","sha1":"fc63cac9f4db8e46514fd10b2578aa8bed4cb4db","sha256":"3fab3373fbf291a4569c44ce964f6da3b1b09392beb314fd7723f34a4b41661f","sha512":"aba1652f0b7075e351be70b128e88d07ce188f72cf47864901c8c5b749f1ef9540c111bbf42ca867c1a6914618fc3aabbcdb57968a0a289d7868ac733db3c0a6","ssdeep":"768:Hgmbr/4nqZVnyTPxVC2/R3hMwsZwJmvnDY87bBZzBPZvzXRb7iGqj:VyxnufF3qj","tlshash":"d7e22995f992703043f7186a403f521af3361a94789e8460da2b95c22c66fcb837bf7d","first_seen":"2025-10-27T18:28:02.164263Z","last_seen":"2025-10-27T18:28:02.164263Z","times_seen":1,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":58,"dns":6,"connect":17,"send":0,"wait":22,"receive":1,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}