Report - embedtv.online

Report Overview

Visited public
2025-01-27 08:03:55
Tags
URL
embedtv.online
Finishing URL
embedtv.online/
IP / ASN
104.21.112.1
#13335 CLOUDFLARENET
Title
EmbedTv - O melhor site de TV Online

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
my.rtmark.net	9054	2014-10-29	2015-02-04	2025-01-22	475 B	840 B	104.18.41.22
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-01-22	439 B	6.2 kB	142.250.74.10
glemechirsoogly.net	unknown	2025-01-21	2025-01-22	2025-01-23	510 B	5.2 kB	139.45.197.244
embedtv.online	unknown	2025-01-13	2025-01-27	2025-01-27	2.7 kB	120 kB	104.21.112.1
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-01-22	437 B	28 kB	104.17.25.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-01-22	436 B	2.0 kB	151.101.65.229
naupsithizeekee.com	unknown	2024-12-03	2025-01-03	2025-01-27	417 B	73 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-01-27	medium	naupsithizeekee.com	Sinkholed
2025-01-27	medium	glemechirsoogly.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/lozad@1.14.0/dist/lozad.min.js	ScriptElement	2.7 kB	2023-03-08	2025-03-07
Pretty URL cdn.jsdelivr.net/npm/lozad@1.14.0/dist/lozad.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:42 Last Seen2025-03-07 17:45 Times Seen40 Hash 2971fcf0203fa47a2d8f4649527dbe42 e6fc25cfc7dab628d49caadd106ba23beb1239a4 86cb70843986570663230b7a4a54c6eac4014445ab5930635538a4fc92e56f56 Loading...

	embedtv.online/	ScriptElement	2.1 kB	2025-01-27	2025-01-27
Pretty URL embedtv.online/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-27 08:03 Last Seen2025-01-27 08:03 Times Seen1 Hash 2954eefdfaf563b06494e1ac8e106a82 bf4a327dcbcc60412ae12d846af4d09dad122b81 44b6d685ebad0030665836f3a627a52dc36d5a563d7c6867f27fa1fab6f848aa Loading...

	embedtv.online/assets/snackbar.js	ScriptElement	7.9 kB	2025-01-27	2025-01-27
Pretty URL embedtv.online/assets/snackbar.js IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-27 08:03 Last Seen2025-01-27 08:03 Times Seen1 Hash fb37d530873130b66711760ffb329a94 caa237aca1ed841626d4e87f27ff4325c82de604 e0d311925774009fd413b495207825bab32165b0545170cc7cc4ddf88cb3a495 Loading...

	embedtv.online/	ScriptElement	180 B	2025-01-27	2025-01-27
Pretty URL embedtv.online/ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-27 08:03 Last Seen2025-01-27 08:03 Times Seen1 Hash 6750200f6af2b55b6b1bf979108da064 8fd57e49723d34d3744d64c5ac17697dba7c3d24 d5cb1d9d9dfe31dc01d27a0206a23d34732abc4582220f6db0654090cfa24406 Loading...

	naupsithizeekee.com/tag.min.js	ScriptElement	72 kB	2025-01-25	2025-01-27
Pretty URL naupsithizeekee.com/tag.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 07:15 Last Seen2025-01-27 08:03 Times Seen6 Hash bde7ee3405bc8c0457f739fe7b24ae29 eb79e9f98a7efb668c07bac72703c5ff942ed4a1 be4028b744dadfa822bd5b043b81485367a9d5434e345e866475513646858e18 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js	ScriptElement	88 kB	2023-08-31	2025-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03 Last Seen2025-04-25 21:03 Times Seen34054 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

HTTP Transactions (12)

URL IP Response Size

embedtv.online/assets/logo.png

104.21.112.1

200 OK

4.7 kB

URL GET HTTP/2
embedtv.online/assets/logo.png
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type
PNG image data, 160 x 45, 8-bit/color RGBA, non-interlaced
Size
4.7 kB (4743 bytes)
Hash
a5eb8fd3d7e38292de2e31cdea091c96
11b78c70440a9d0d025db0e7b92c597ae5ea5b8b
162363171d123c1ac3ae189d20e1b795cc61c1b253caeccacebcd995ef7c69d0

HTTP Headers

GET /assets/logo.png HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: image/png
content-length: 4743
cache-control: public, max-age=2592000
expires: Mon, 24 Feb 2025 18:05:13 GMT
last-modified: Mon, 13 Jan 2025 23:08:34 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: HIT
age: 136698
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ws%2Bg9XrU0%2BF5YsVRExisFsHP3A15AlKKZlYSPGHp0AUu0tiMCVUZDRnhZl5Ja4wXFb4nOTRARCc7r%2F9e9V%2BQBg6hNH%2FrKxk9lKXrpJIgD%2F6oH5B843nqxzXFqoZ3nCosgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 90873a096ffc569f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2760&min_rtt=447&rtt_var=4552&sent=17&recv=20&lost=0&retrans=0&sent_bytes=9816&recv_bytes=1462&delivery_rate=15268892&cwnd=257&unsent_bytes=0&cid=695ffefed0d547d2&ts=535&x=0"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
27 kB (27446 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://embedtv.online
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27446
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ed75bb-6b36"
last-modified: Tue, 29 Aug 2023 04:36:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 398873
expires: Sat, 17 Jan 2026 08:03:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y7cFSDxY5VK9ie7pEi8HM296VZP6lqubdYkVU2uCOjtaDdv3SKRKTFtupHpgi%2FJkJG1Th6LMXaY1DE2PFxiXvrAdxoB13meBtLwT4XWTTxVWMnK2KhQGNlqVtSnYri1HEaVlm7fo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 90873a0988b856a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/lozad@1.14.0/dist/lozad.min.js

151.101.65.229

200 OK

1.2 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/lozad@1.14.0/dist/lozad.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://embedtv.online/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (1336)
Size
1.2 kB (1186 bytes)
Hash
2971fcf0203fa47a2d8f4649527dbe42
e6fc25cfc7dab628d49caadd106ba23beb1239a4
86cb70843986570663230b7a4a54c6eac4014445ab5930635538a4fc92e56f56

HTTP Headers

GET /npm/lozad@1.14.0/dist/lozad.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.14.0
x-jsd-version-type: version
etag: W/"aa1-5vwlz8fatijUnKrdEGuiO+sSOaQ"
content-encoding: br
accept-ranges: bytes
date: Mon, 27 Jan 2025 08:03:31 GMT
age: 2356044
x-served-by: cache-fra-eddf8230070-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1186
X-Firefox-Spdy: h2

embedtv.online/assets/images/bbb1.png

104.21.112.1

200 OK

46 kB

URL GET HTTP/3
embedtv.online/assets/images/bbb1.png
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
46 kB (45509 bytes)
Hash
234be8effe725d2abfd7d2b5e56d2703
fc8f4ece5650734efc7adba1765ba5c88d0fb872
330cd8937a5cbc8f1d5b34b632dea1a96844a4af11ed4b9b6827ce413d1197da

HTTP Headers

GET /assets/images/bbb1.png HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: image/png
content-length: 45509
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2BWb1mJNCT%2FjqAr0JHdOqzCYx5U2tDRLNqvHuhlj9UtagdSI%2FLhSdjTPUqrQybc7rXFgxRFuRBjswH8sFZ%2FEFTFNVdcVCz1EIM0P3Y9WJDHPrhjijlwuENKIFGvfZnq3dg%3D%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=2592000
expires: Tue, 25 Feb 2025 10:42:40 GMT
last-modified: Mon, 13 Jan 2025 21:08:39 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: HIT
age: 76851
accept-ranges: bytes
cf-ray: 90873a0b9b7e1c0a-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

embedtv.online/assets/icon.png

104.21.112.1

200 OK

2.9 kB

URL GET HTTP/3
embedtv.online/assets/icon.png
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2871 bytes)
Hash
6fccca83544c854012b2401724a1918d
9ae4027b9e0bf0a126dbf67f323431b578f3514f
ad3a069b5fdcfecb5c2849889ee1c5ec8b9bc59fa85fe73cce55b5f779484620

HTTP Headers

GET /assets/icon.png HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 27 Jan 2025 08:03:32 GMT
content-type: image/png
content-length: 2871
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B2b6C%2FvkhtjPkdZEomGgmQF8o4YvDqK0Aqfvzw3RVXqg6h8EJehiYmZoZVnZHJ0vD%2BoRSVKw0lfjWxnXtWCTTKe%2F8DQowFtWP8AMfqzDXbaVp35qSXv9i9WgX3438iGmpg%3D%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=2592000
expires: Wed, 26 Feb 2025 08:03:32 GMT
last-modified: Mon, 13 Jan 2025 23:18:31 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
cf-ray: 90873a0d7b831c0a-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

embedtv.online/assets/snackbar.js

104.21.112.1

200 OK

3.8 kB

URL GET HTTP/2
embedtv.online/assets/snackbar.js
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type
JavaScript source, ASCII text, with very long lines (7938), with no line terminators
Size
3.8 kB (3761 bytes)
Hash
fb37d530873130b66711760ffb329a94
caa237aca1ed841626d4e87f27ff4325c82de604
e0d311925774009fd413b495207825bab32165b0545170cc7cc4ddf88cb3a495

HTTP Headers

GET /assets/snackbar.js HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: application/javascript
cache-control: public, max-age=31536000
expires: Tue, 27 Jan 2026 08:03:31 GMT
last-modified: Mon, 13 Jan 2025 22:45:39 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VdZpVWcGWTT3T6NYqkcIFEBJOCTH1u0CG3TpguW%2Bkgsn%2Fqu2%2FF6gov7w7INxuocR9aMiwgObtM6%2BplnnQVwR13262gSmLxdvWKsigpS1Y%2FUMYOtq9iboeUNCzBMtZXGBaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 90873a096803569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1287&min_rtt=447&rtt_var=1556&sent=25&recv=28&lost=0&retrans=0&sent_bytes=16940&recv_bytes=1462&delivery_rate=15268892&cwnd=257&unsent_bytes=0&cid=695ffefed0d547d2&ts=797&x=0"
X-Firefox-Spdy: h2

embedtv.online/assets/style.css?1737965011

104.21.112.1

200 OK

4.0 kB

URL GET HTTP/2
embedtv.online/assets/style.css?1737965011
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type
Unicode text, UTF-8 text, with very long lines (4372), with no line terminators
Size
4.0 kB (3961 bytes)
Hash
4f92dcca3cd90f91c4dc4c4ee4d5499e
3e02b7e838c3d072e1f9b3edd3b6a69533ed51f4
3aa6fb77e0f5df5195a76fdb8b4ae11102fc68977000dec82168a0cab4b5e713

HTTP Headers

GET /assets/style.css?1737965011 HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: text/css
cache-control: public, max-age=31536000
expires: Tue, 27 Jan 2026 08:03:31 GMT
last-modified: Thu, 16 Jan 2025 04:42:00 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=44w%2F4jzDsBABaQruQ1DrQfjylky6aEl9Z5ml9TppvZFZrD67yrmnI%2B7bI4JgBqbUzBiAJHwRdGa1m4JDLWBVg8prp5sfhTp73G7grvwh5p6xo05CMO6tf0HO8Fp8u%2BRfaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 90873a096fd8569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1669&min_rtt=447&rtt_var=2318&sent=22&recv=25&lost=0&retrans=0&sent_bytes=15233&recv_bytes=1462&delivery_rate=15268892&cwnd=257&unsent_bytes=0&cid=695ffefed0d547d2&ts=791&x=0"
X-Firefox-Spdy: h2

naupsithizeekee.com/tag.min.js

188.114.96.1

200 OK

72 kB

URL GET HTTP/2
naupsithizeekee.com/tag.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectnaupsithizeekee.com
FingerprintCC:36:AF:19:73:7A:22:EB:5D:4A:58:2E:08:39:B0:1B:C6:5B:D9:16
ValidityTue, 03 Dec 2024 14:01:07 GMT - Mon, 03 Mar 2025 14:01:06 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71783 bytes)
Hash
bde7ee3405bc8c0457f739fe7b24ae29
eb79e9f98a7efb668c07bac72703c5ff942ed4a1
be4028b744dadfa822bd5b043b81485367a9d5434e345e866475513646858e18

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: naupsithizeekee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: application/javascript
x-trace-id: 247b6320e9c351ed66d3185fc541a1f6
cache-control: max-age=86400
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Mon, 27 Jan 2025 15:15:00 GMT
timing-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 60511
last-modified: Sun, 26 Jan 2025 15:15:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TMEjlmATmmsNJ2AMM46J%2FRoOQSd9X1Ji0ScS%2FsavXSxRu2aOOAX2jNTFs3eS2Wrq9O4hIb13rCiuFUUOc3S7sFtqHulQB%2F%2FPzsF8vZmSBagg206dZOg9rPcO8o8MkIKOB1qYy%2BAQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 90873a0bfdf41c16-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=513&min_rtt=457&rtt_var=137&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3223&recv_bytes=1068&delivery_rate=7362711&cwnd=254&unsent_bytes=0&cid=79831c341819dd77&ts=30&x=0"
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=00815ec694cd458ce8470eb4dde0482d

104.18.41.22

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=00815ec694cd458ce8470eb4dde0482d
IP
104.18.41.22:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint56:7F:53:10:57:2F:C3:F4:06:8B:DB:2F:C1:F7:6A:1D:68:59:14:3F
ValiditySat, 04 Jan 2025 10:02:11 GMT - Fri, 04 Apr 2025 11:00:33 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
e1b35332a390d304c3a711a4e2bf8c16
7fde46574eecb9d929b262377f2dfd91ebde58f6
becbf535a10ed07ec613939303bb42e74ed09531ea6ca750f9e8ad3624ed0680

HTTP Headers

GET /gid.js?userId=00815ec694cd458ce8470eb4dde0482d HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://embedtv.online
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:32 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://embedtv.online
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
timing-allow-origin: *, *
set-cookie: ID=00815ec694cd458ce8470eb4dde0482d; expires=Tue, 27 Jan 2026 08:03:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 90873a0e8c071c0e-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embedtv.online/

104.21.112.1

200 OK

54 kB

URL User Request GET HTTP/2
embedtv.online/
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectembedtv.online
Fingerprint56:8E:1D:2A:AC:B7:03:0A:E2:C1:1B:68:8B:C7:90:FE:81:2D:99:7B
ValidityFri, 24 Jan 2025 22:22:04 GMT - Thu, 24 Apr 2025 23:21:57 GMT

File type

Size
54 kB (53778 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: embedtv.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 27 Jan 2025 08:03:31 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.3.9
cache-control: public, max-age=0
expires: Mon, 27 Jan 2025 08:03:31 GMT
vary: Accept-Encoding,User-Agent
x-ua-compatible: IE=Edge,chrome=1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BLKtYPl%2Beuwkqju5b7FQ5k7yMZutePGhKN2mvIFypT4mYce7hBMCLlYkoxlCk29Ol1Cwfi8o9Rzr%2BuiRh0FWbPNuBf46j%2FI5FmkKN4MThJI1CWUHlhBrI4t3j%2FioovSRMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 90873a064bb8569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5544&min_rtt=455&rtt_var=10199&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3208&recv_bytes=1124&delivery_rate=7898181&cwnd=254&unsent_bytes=0&cid=695ffefed0d547d2&ts=302&x=0"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto

142.250.74.10

200 OK

5.5 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://embedtv.online/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint60:72:A8:75:0D:97:04:67:31:64:42:C6:E8:8B:7B:1D:2B:F5:04:E9
ValidityMon, 06 Jan 2025 08:37:11 GMT - Mon, 31 Mar 2025 08:37:10 GMT

File type
ASCII text, with very long lines (5629), with no line terminators
Size
5.5 kB (5548 bytes)
Hash
3af53c9b2184e923474841b09b5d6325
042438d06490f04d9356dae560068da292f9b630
987b0178c6861f5c944bd5ce1df677a778e5873d15462e5480e02b0c0bd03d7a

HTTP Headers

GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 27 Jan 2025 08:03:31 GMT
date: Mon, 27 Jan 2025 08:03:31 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

glemechirsoogly.net/5/7243693/?oo=1&js_build=iclick-v1.1059.2&dmn=naupsithizeekee.com&tt=2&ix=0

139.45.197.244

200 OK

4.0 kB

URL GET HTTP/2
glemechirsoogly.net/5/7243693/?oo=1&js_build=iclick-v1.1059.2&dmn=naupsithizeekee.com&tt=2&ix=0
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://embedtv.online/
Certificate
IssuerLet's Encrypt
Subjectglemechirsoogly.net
Fingerprint9C:5D:C5:81:EC:1D:16:54:52:AF:52:34:1D:47:D7:65:9F:C4:ED:2C
ValidityTue, 21 Jan 2025 13:46:14 GMT - Mon, 21 Apr 2025 13:46:13 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4026), with no line terminators
Size
4.0 kB (4022 bytes)
Hash
98d9e1d238b5d8bfc1844a598d7ae4f2
2520edb8d59f7de3a05f86307c620eca99fa42e3
7e4581b423fa3f2d553a7e07c3cd8d7bdf254dabdecc648d53f5556613a6fa1a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/7243693/?oo=1&js_build=iclick-v1.1059.2&dmn=naupsithizeekee.com&tt=2&ix=0 HTTP/1.1
Host: glemechirsoogly.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://embedtv.online
DNT: 1
Connection: keep-alive
Referer: https://embedtv.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 27 Jan 2025 08:03:32 GMT
content-type: application/json
x-trace-id: ddf0e3354739b6e51588eb0a51b0faf1
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://embedtv.online
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00815ec694cd458ce8470eb4dde0482d; expires=Tue, 27 Jan 2026 08:03:32 GMT; path=/; secure; SameSite=None
oaidts=1737965012; expires=Tue, 27 Jan 2026 08:03:32 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (12)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size