Report - 9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking

Report Overview

Visited public
2024-10-07 20:11:34
Tags
URL
9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Finishing URL
9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
IP / ASN
104.21.235.82
#13335 CLOUDFLARENET
Title
7 октября Сводка Министерства Обороны РФ о ходе проведения СВО

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ab1.9xbud.com	unknown	2014-11-14	2022-06-20 18:18:41	2024-09-24 11:21:00	2.7 kB	12 kB	172.67.194.53
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-10-07 11:57:05	1.6 kB	4.4 kB	23.33.119.27
9xbuddy.com	399695	2014-06-05	2014-10-07 12:27:40	2024-09-26 02:17:10	10 kB	294 kB	104.21.235.82
pic.rutube.ru	487309	2006-10-10	2017-01-29 23:34:32	2024-10-04 12:57:56	464 B	188 kB	89.248.230.8
doyenssudsier.click	unknown	2024-09-30	2024-10-04 20:28:18	2024-10-07 16:40:04	1.4 kB	1.9 kB	188.42.108.76
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-10-07 11:57:09	654 B	1.8 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-10-07	medium	doyenssudsier.click	Sinkholed
2024-10-07	medium	doyenssudsier.click	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	9xbuddy.com/build/70.5df96350879b0c53b5d6.js	ScriptElement	25 kB	2024-09-15	2024-10-25
Pretty URL 9xbuddy.com/build/70.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-15 08:18 Last Seen2024-10-25 14:02 Times Seen21 Hash 739e056a113c1804af6fcbb5ade11358 1e1995f756e2a8ec996d1cabde069f396ddcc7ca 2f258c2c07792cd535c563a386ec3424b8a0ddde32c840c3074ac6e69d9cdfc2 Loading...

	9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.1 kB	2024-10-11	2024-10-11
Pretty URL 9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-11 09:00 Last Seen2024-10-11 09:00 Times Seen1 Hash 322256b64eff1997f768c952a300a173 abfa4e8d79cff8042183d6c2bdf424de747b73af 9bc9885ea1ddcb2ba52503937bb7967c65416b8c7bdbdef157d77bd3a7d3c4e3 Loading...

	doyenssudsier.click/1clkn/9537	ScriptElement	6 B	2023-03-07	2025-04-30
Pretty URL doyenssudsier.click/1clkn/9537 IP 188.42.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-30 00:56 Times Seen12319 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	9xbuddy.com/build/main.5df96350879b0c53b5d6.js	ScriptElement	337 kB	2024-09-15	2024-10-25
Pretty URL 9xbuddy.com/build/main.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-15 08:18 Last Seen2024-10-25 14:02 Times Seen21 Hash a1ec0720a59646d9583ece4c96730438 52d9f04dbfabf81850c8271754a9458423a6593c 657c4f3c1bf6f500338a9d771e9b28808363238ed0189a228f2e861dcb4def33 Loading...

	9xbuddy.com/build/24.5df96350879b0c53b5d6.js	ScriptElement	2.7 kB	2023-03-13	2024-12-09
Pretty URL 9xbuddy.com/build/24.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:16 Last Seen2024-12-09 13:19 Times Seen114 Hash 9e0c8ceced4c67d97bbfb7b5140c84ec 9846a26f19da27631f68c50302fcb834b75f4ab6 531d554235351c8ac0289b937de9d7238ff80d877a904045aa913920ee83e004 Loading...

	9xbuddy.com/build/682.5df96350879b0c53b5d6.js	ScriptElement	41 kB	2024-09-15	2024-11-12
Pretty URL 9xbuddy.com/build/682.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-15 08:18 Last Seen2024-11-12 03:00 Times Seen28 Hash e279aa4c2ff8987ba55222e8bb146182 7f4a7c68de64abf1186cb4d21e93dca6bcee6bd4 06d35199242e2dd6fdefdb73279dc5919a80ad7a09067e80ca45ced9cb83aef1 Loading...

	9xbuddy.com/build/7.5df96350879b0c53b5d6.js	ScriptElement	8.3 kB	2024-09-15	2024-11-12
Pretty URL 9xbuddy.com/build/7.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-15 08:18 Last Seen2024-11-12 03:00 Times Seen28 Hash d4aeb0bd8663488f1e675a73f6a4c025 941f149b38c7acaf12e22fab184dc536057fc81d ca07d8045ad6796d05e666b18d1c9f4be4efdad58909d46c67c6dcba8e8190d9 Loading...

	9xbuddy.com/build/19.5df96350879b0c53b5d6.js	ScriptElement	21 kB	2023-03-13	2024-12-09
Pretty URL 9xbuddy.com/build/19.5df96350879b0c53b5d6.js IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:16 Last Seen2024-12-09 13:19 Times Seen118 Hash 0d89fe65f87cddedad6a912166e53208 a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6 f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8 Loading...

	doyenssudsier.click/rHH727qVeN4r6/7972	ScriptElement	0 B	0001-01-01	2025-04-30
Pretty URL doyenssudsier.click/rHH727qVeN4r6/7972 IP 188.42.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-04-30 04:22 Times Seen4579394 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279	ScriptElement	921 B	2024-10-11	2024-10-11
Pretty URL 9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279 IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-11 09:00 Last Seen2024-10-11 09:00 Times Seen1 Hash 160ba178b11279edb98d2146294501fe eeca4aaad9c8f23509918d8ca4ab1540cfaf45ef dd5c0112e776c18be4f438112a5b1a0dcda7337999b20e89791fd6c28acbb47a Loading...

	9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279	ScriptElement	12 kB	2024-10-11	2024-10-11
Pretty URL 9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279 IP 104.21.235.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-11 09:00 Last Seen2024-10-11 09:01 Times Seen2 Hash 76bbf139eb8f07b12d9d75870653bfd3 6c256330dbe5b1296da522a611c132ec199ef98f bdc27dcef9a663aceb7585caa3a6919b246d907b7886c96b22bb4f67e89096b7 Loading...

	unknown	ScriptElement	236 B	2024-10-11	2024-10-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-11 09:00 Last Seen2024-10-11 09:00 Times Seen1 Hash ff578c603f53adcb350507ee11ec861b 97c3bec6cf6e22adb043cbf089d3a9efebfbe230 fbc61c8037593842ce84bbc6982897b61acc43b1f2e33fa4639ba18d10cfa903 Loading...

HTTP Transactions (29)

URL IP Response Size

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
69ac381587cbcd344562e8ce27b2c1c0
17667de0de8b6f16b857c46d3fdeda988995cb6c
0a5438f945682c1186d43ee5af17d4f7ae4e5198d4da12c537f7a94ced0ee6c3

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0A5438F945682C1186D43EE5AF17D4F7AE4E5198D4DA12C537F7A94CED0EE6C3"
Last-Modified: Mon, 07 Oct 2024 04:57:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6273
Expires: Mon, 07 Oct 2024 21:55:40 GMT
Date: Mon, 07 Oct 2024 20:11:07 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a3efcda1a9e998d5544071b0c97e2bce
95295765d8bb2b090d2daac1e33901c3d882486f
692b8ab76640fa1991a613de0d236d9f805d432d1807574d3e434aa197f261fc

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "692B8AB76640FA1991A613DE0D236D9F805D432D1807574D3E434AA197F261FC"
Last-Modified: Sat, 05 Oct 2024 16:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14056
Expires: Tue, 08 Oct 2024 00:05:23 GMT
Date: Mon, 07 Oct 2024 20:11:07 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
1c6ec54110f6660628ae2b384e9db497
60ea2745eec8480cb26cc9f830ce11a59b1fd0a6
947763a82d6d4a247a00032dab950c3911e201ce626fe9c87d8c6254635fdd3d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "947763A82D6D4A247A00032DAB950C3911E201CE626FE9C87D8C6254635FDD3D"
Last-Modified: Mon, 07 Oct 2024 18:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18062
Expires: Tue, 08 Oct 2024 01:12:10 GMT
Date: Mon, 07 Oct 2024 20:11:08 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
5cfa8968322109d1671efc97fd0317cc
90820c0c1011197a063c2e59a03bc298b3345a8c
681e7a9712bd9806436c58ad3ab7757431f674653ddcf638710196630233af3c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "681E7A9712BD9806436C58AD3AB7757431F674653DDCF638710196630233AF3C"
Last-Modified: Mon, 07 Oct 2024 16:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8826
Expires: Mon, 07 Oct 2024 22:38:14 GMT
Date: Mon, 07 Oct 2024 20:11:08 GMT
Connection: keep-alive

9xbuddy.com/build/291f13891176f90733ca.png

104.21.235.82

200 OK

2.5 kB

URL GET HTTP/2
9xbuddy.com/build/291f13891176f90733ca.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
PNG image data, 217 x 55, 8-bit colormap, non-interlaced
Size
2.5 kB (2501 bytes)
Hash
f19a76e1de03a1ecb9c45dcfb96bce41
2156ba7ed189b2f22b87e87eb9ffcaa7ebb4db0c
55340830b75351b2ad4154871c488f34c0b66c8cef18719f3f7a8f9dc190cd58

HTTP Headers

GET /build/291f13891176f90733ca.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:08 GMT
content-type: image/png
content-length: 2501
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-9c5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5559
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ygOJIMz62GloYXb57JiRxZZLW9b12Fp6COEmPhNTR9uGQwC2tO6OYhZCLfQMMTh%2FSSWT3zvaVHrsY%2Bh0OlillIREguMTHAdggY0%2FWUskJa4MiCxjrneALmJOmVoXWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e4ffa7bebe-LHR
X-Firefox-Spdy: h2

9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.235.82

302 Found

0 B

URL GET HTTP/2
9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Mon, 07 Oct 2024 20:11:09 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/ec4b873d446c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dA3CTNFE2e3WNHOGyWyKNyt7n8db7pMHb46GYru8oefsf2HlrRv1J3syNTtTAXWToFhTNIyylkzmCxJOKWx5lE8ZFbecnGe%2FpAw3YDonzLsfJkZb54zM7qWNSCRAuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e689e7bebe-LHR
X-Firefox-Spdy: h2

9xbuddy.com/icons/favicon-16x16.png

104.21.235.82

200 OK

680 B

URL GET HTTP/2
9xbuddy.com/icons/favicon-16x16.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
680 B (680 bytes)
Hash
f310dc4b30e94e078aa3d8ce14a93a7d
f6b2f0419a8bb65aafd4c185079584494439cf4a
5261947833061f72396f2e0f6b27598ae37585d8de6da4bed8df9f683181aaab

HTTP Headers

GET /icons/favicon-16x16.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: image/png
content-length: 680
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-2a8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4538
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=whJrSN3IdiRUqViTsbGjpKKru1LPNa4jGbpkA7Ro2UUKoky1awB%2FQDW7xFzDifTzFzF3XTxXK9m8NELeG%2F5l5hmgN0iCGV72LX6AdTOsveQrocvj6II4QZ84vfG45A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e6ba31bebe-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

9xbuddy.com/build/main.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

111 kB

URL GET HTTP/2
9xbuddy.com/build/main.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
111 kB (111389 bytes)
Hash
a1ec0720a59646d9583ece4c96730438
52d9f04dbfabf81850c8271754a9458423a6593c
657c4f3c1bf6f500338a9d771e9b28808363238ed0189a228f2e861dcb4def33

HTTP Headers

GET /build/main.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:08 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-525b8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3549
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dVoetqRJckJrvkkvUowvCVSIHBZ3QmXnHHgglxiaaHkCx7iw4q9dhetgxEpSfw%2Bqx9i23D%2FBDyQx39MghCxZTEJdOxlmqHvtdqf7Qpdc3i1BjNYnqdl37ts%2BBGb8Nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e4ffafbebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/build/2f216d687fe39ac06f55.png

104.21.235.82

200 OK

2.9 kB

URL GET HTTP/3
9xbuddy.com/build/2f216d687fe39ac06f55.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
PNG image data, 144 x 144, 8-bit colormap, non-interlaced
Size
2.9 kB (2855 bytes)
Hash
0f599aec14b72ec73b07582979490783
9dbc7784cdef3908157c11d776f301201cabf46e
ff3cff66a67edc326a0f4fc5839da9dd21f55374417acfa657a01b9952b30529

HTTP Headers

GET /build/2f216d687fe39ac06f55.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: image/png
content-length: 2855
last-modified: Sun, 15 Sep 2024 05:41:04 GMT
etag: "66e67370-b27"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0FQu16%2Ba4gg6FIuMkYGDHTVwmAePGgaggKz2f5qhDqHu1dv%2Fjg%2FmmmWPZcuoqKsM%2FuIu0Q4nvjF0kINMM%2FnVYfX24fCvzpsQxBrlo%2FJvNVXfkw4o6e62tMt41wXUJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e74b1194b7-LHR

9xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/8cf089e23bfabebe

104.21.235.82

200 OK

0 B

URL POST HTTP/3
9xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/8cf089e23bfabebe
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/8cf089e23bfabebe HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12488
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.9xbuddy.com; HttpOnly; Secure; SameSite=None
cf_clearance=0dvJXOeajO4Az0PycOCHOqByMCF.rkQ_wZBkHo__MBw-1728331869-1.2.1.1-jxwIiJBO_osfJ67F.M3pktTmREyjVrBAfFfWmKAe3dRN_vmHOCNNCVChjWx07Jp4HRVu6CcUbAJiaBBPtifRohBSxEddD_KEzj.ZezqA6PUiQu.AX9murwHRV.9OCP9Tjaqd5xhP3CbqYQr4oUNOqJPy.3XcxiUWZDnTgoUJwe9_NFpGkgx3BU8dy7TFTrDDZxUhe7pojQMweuzPiLMxlrMrRv4aVHydimxXF9EBMdIQ21PI7YsB.AIgYSOINGvn67nQ1.RssZpy9Xudw.wQEQ6nWrkGdv0dP62LMvd7PJvoA1O6pXfMSjssZcyq64S7C0jBbyFBx22K.hl4lfEHLw; Path=/; Expires=Tue, 07-Oct-25 20:11:09 GMT; Domain=.9xbuddy.com; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gFiUyxPI1blDKI3jJwa5%2F0HuOmBeJqRQckuzPcmEfRj8J1WdJvc04syPBXSHgD35drRz%2BhZlzVVmVvSL5Cid7ELVwE2DvKvwc%2BGcjxf9Azxw%2FNadDLCRh0DKELcC%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e90dba94b7-LHR

r10.o.lencr.org/

23.33.119.27

504 B

URL
r10.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
66ac7465b7ee41daf918c78dd9a97490
d9cb144b7400c2a2209e6d58bdf5e2b31db33928
61fe805d6364f6eb6462764d185bd963c5e842205fadaa6a98ca987cb68a6792

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "61FE805D6364F6EB6462764D185BD963C5E842205FADAA6A98CA987CB68A6792"
Last-Modified: Mon, 07 Oct 2024 04:10:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20690
Expires: Tue, 08 Oct 2024 01:56:00 GMT
Date: Mon, 07 Oct 2024 20:11:10 GMT
Connection: keep-alive

pic.rutube.ru/video/2024-10-07/ca/9b/ca9bb8170feddddee006f6db03697abb.jpg

89.248.230.8

188 kB

URL GET
pic.rutube.ru/video/2024-10-07/ca/9b/ca9bb8170feddddee006f6db03697abb.jpg
IP
89.248.230.8:0
ASN
#207353 Ruform LLC

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1366x768, components 3
Size
188 kB (187478 bytes)
Hash
0cc191c9bc14bf35151321018c0860c9
edc6af2522bfc88cf72b8c544e5bf6c95493e004
b43a3e57201b84c52920c5a688cfadd584a7ab16bd57d98d3e36d95f4a17837d

HTTP Headers

GET /video/2024-10-07/ca/9b/ca9bb8170feddddee006f6db03697abb.jpg HTTP/1.1
Host: pic.rutube.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: Angie
date: Mon, 07 Oct 2024 20:11:10 GMT
content-type: image/jpeg
content-length: 187478
last-modified: Mon, 07 Oct 2024 15:01:44 GMT
etag: "6703f7d8-2dc56"
access-control-allow-origin: *
expires: Mon, 14 Oct 2024 20:11:10 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2

doyenssudsier.click/rHH727qVeN4r6/7972

188.42.108.76

200 OK

20 B

URL GET HTTP/1.1
doyenssudsier.click/rHH727qVeN4r6/7972
IP
188.42.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerLet's Encrypt
Subjectdoyenssudsier.click
Fingerprint69:38:0D:C7:AF:4F:32:50:3C:B2:72:46:AB:37:F4:8E:C1:0C:53:74
ValidityMon, 30 Sep 2024 16:05:31 GMT - Sun, 29 Dec 2024 16:05:30 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rHH727qVeN4r6/7972 HTTP/1.1
Host: doyenssudsier.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 07 Oct 2024 20:11:10 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://9xbuddy.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Tue, 08-Oct-2024 20:11:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwNwz0OgjAYBuB%2B39BoJCZv5ACcAIHgwOjP4GBw4ASARBualrSAejN3L6ZP8gghOAzAakBQpHGRxHkWp7scdAeXV3BrIEvrnvUb5MBJBnYGi33fOf%2BYPKjF6vz9zKqP5s71IIX1QatXVFk9jcoaD%2F5fHutGd9tTdQENksCjlQz2t1CAZrn5ASyhICQ%3D; expires=Tue, 08-Oct-2024 20:11:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ad058234ca3eee365c5dc4f20427d742
5df45ed837ade1be00d2325fabd33ff786dd66a1
b5d886a9bb731872d38a96b9d475097cc3bd53633efe2c48669eb16ff5e4ec56

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B5D886A9BB731872D38A96B9D475097CC3BD53633EFE2C48669EB16FF5E4EC56"
Last-Modified: Mon, 07 Oct 2024 13:13:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Mon, 07 Oct 2024 22:23:23 GMT
Date: Mon, 07 Oct 2024 20:11:10 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
ad058234ca3eee365c5dc4f20427d742
5df45ed837ade1be00d2325fabd33ff786dd66a1
b5d886a9bb731872d38a96b9d475097cc3bd53633efe2c48669eb16ff5e4ec56

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B5D886A9BB731872D38A96B9D475097CC3BD53633EFE2C48669EB16FF5E4EC56"
Last-Modified: Mon, 07 Oct 2024 13:13:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Mon, 07 Oct 2024 22:23:23 GMT
Date: Mon, 07 Oct 2024 20:11:10 GMT
Connection: keep-alive

9xbuddy.com/build/24.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

1.9 kB

URL GET HTTP/2
9xbuddy.com/build/24.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (2728), with no line terminators
Size
1.9 kB (1888 bytes)
Hash
9e0c8ceced4c67d97bbfb7b5140c84ec
9846a26f19da27631f68c50302fcb834b75f4ab6
531d554235351c8ac0289b937de9d7238ff80d877a904045aa913920ee83e004

HTTP Headers

GET /build/24.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-aa8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5560
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=543QrpvyyE9agpg04mjd%2FmfTesJvfeP6FUAoNT4YAhwT6U5V9bf24KtXZI1i9hOeJ4VkQYrULAyptjNKxe%2FHyrHHjQTLCCLfXeBHSXXUnJN5ohwSYqP8%2BWqS7PHnKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e71a9cbebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

doyenssudsier.click/1clkn/9537

188.42.108.76

200 OK

26 B

URL GET HTTP/1.1
doyenssudsier.click/1clkn/9537
IP
188.42.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerLet's Encrypt
Subjectdoyenssudsier.click
Fingerprint69:38:0D:C7:AF:4F:32:50:3C:B2:72:46:AB:37:F4:8E:C1:0C:53:74
ValidityMon, 30 Sep 2024 16:05:31 GMT - Sun, 29 Dec 2024 16:05:30 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/9537 HTTP/1.1
Host: doyenssudsier.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwNwz0OgjAYBuB%2B39BoJCZv5ACcAIHgwOjP4GBw4ASARBualrSAejN3L6ZP8gghOAzAakBQpHGRxHkWp7scdAeXV3BrIEvrnvUb5MBJBnYGi33fOf%2BYPKjF6vz9zKqP5s71IIX1QatXVFk9jcoaD%2F5fHutGd9tTdQENksCjlQz2t1CAZrn5ASyhICQ%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 07 Oct 2024 20:11:11 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

9xbuddy.com/build/19.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

21 kB

URL GET HTTP/2
9xbuddy.com/build/19.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (20973), with no line terminators
Size
21 kB (20973 bytes)
Hash
0d89fe65f87cddedad6a912166e53208
a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6
f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8

HTTP Headers

GET /build/19.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-51ed"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5560
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s7T51RJbbpFA9yLwfnuBAWUks0Lr7XtDnOJzqKrohS8ZFOEEyRk1Z7u3LHHf%2BZH4y2P2IR%2BWMpUNTZy9yzuzFLhDTeuKPB7m5rvKzfLqX8v0qerAMyglb1BC%2FyTvBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e70a94bebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

ab1.9xbud.com/token

172.67.194.53

200 OK

0 B

URL OPTIONS HTTP/2
ab1.9xbud.com/token
IP
172.67.194.53:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbud.com
Fingerprint18:90:4C:F2:5D:8E:20:49:40:84:CF:F5:1E:67:E8:7B:C4:58:02:F8
ValidityThu, 22 Aug 2024 20:54:34 GMT - Wed, 20 Nov 2024 20:54:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /token HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eCL1MzSbI6Ck2RD7k8a3Bm5tFlG3XpEL3fh6yJuD1GfH0N%2BIkqsm1vM1eMpW3qsVMkOa5mMjQkVeRmana2xo8kqqolZoLOKMvocKaiZEf06CGUgSSd%2BOVzFsmv6gdhbd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf089e7ea94b529-OSL
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/icons/apple-touch-icon.png

104.21.235.82

200 OK

5.3 kB

URL GET HTTP/2
9xbuddy.com/icons/apple-touch-icon.png
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
5.3 kB (5323 bytes)
Hash
2a1f354702de7eb8d63c8f10d2d0beaf
5f42ee8dc3c78184fba322c0288776c86841f25d
447d4a8b2ef5e876f4bf0145893d9f300dd62a3a49ebbc04a49282a6e4c5475a

HTTP Headers

GET /icons/apple-touch-icon.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: image/png
content-length: 5323
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-14cb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2250
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=05j8OKjqPF2o4e4YZI%2F5GIHtuhQVqp5IWL0d68b9nk49kGKc1NdUjxh9KzVp2Vcmpa4m7wrdGBne5tEl2QjXPBMvc5ur%2B0Kf2oZB2nPqNuCv0dVYFEPTfRrWsvWlHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e6ba2fbebe-LHR
X-Firefox-Spdy: h2

ab1.9xbud.com/token

172.67.194.53

200 OK

120 B

URL POST HTTP/2
ab1.9xbud.com/token
IP
172.67.194.53:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbud.com
Fingerprint18:90:4C:F2:5D:8E:20:49:40:84:CF:F5:1E:67:E8:7B:C4:58:02:F8
ValidityThu, 22 Aug 2024 20:54:34 GMT - Wed, 20 Nov 2024 20:54:33 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
120 B (120 bytes)
Hash
ab0de1ae931378f0083034df7f733c88
9b27ffb8cb89ccdfdbd60e83280ebb288a9a4c12
c998d0daf53e432629328ddb2bdfda2287a0b5ab1abb74a34b467183a4a76e3a

HTTP Headers

POST /token HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: bq7GqsaXrpGT0aZtnGWXZmuclsZubZxll2ZrnJbGbmN5moFlobOymG6Js4e0jJSwcbZ+loF9lIGFjcWrhISydsGHeq98wZKGjaitlaudyt1maJdik2Njm16SamdmaGNj
x-requested-domain: 9xbuddy.com
x-access-token: false
Content-Length: 2
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bjgdfMKkVvemihlPmmKK66j83ScG0qvSTzGCToBsYQ6otuvJmmNUrl6x5ETDn%2FSYrAQkRXI2fq2H%2FsXk0PwKcEb1UlFcijVsNBeSdUzaZY3EjDwGFlp38axnAG5UV%2FFs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf089e83b5bb529-OSL
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/ec4b873d446c/main.js?

104.21.235.82

200 OK

8.1 kB

URL GET HTTP/3
9xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/ec4b873d446c/main.js?
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (8070), with no line terminators
Size
8.1 kB (8070 bytes)
Hash
322256b64eff1997f768c952a300a173
abfa4e8d79cff8042183d6c2bdf424de747b73af
9bc9885ea1ddcb2ba52503937bb7967c65416b8c7bdbdef157d77bd3a7d3c4e3

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/ec4b873d446c/main.js? HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GKhLMx4rODqzXAqn6%2FhqXpAFUhyoTCVOGP%2FZl9RPKnbJ1n37yd3I5EkCfMWPQeabZfNSbZ9CgE3cb2hmMgMEov0YmcQ9w2ynZUzDUIRxypsdqvEPP%2FkHKSCo074nlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8cf089e75b1d94b7-LHR
content-encoding: br

ab1.9xbud.com/extract

172.67.194.53

200 OK

0 B

URL OPTIONS HTTP/2
ab1.9xbud.com/extract
IP
172.67.194.53:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbud.com
Fingerprint18:90:4C:F2:5D:8E:20:49:40:84:CF:F5:1E:67:E8:7B:C4:58:02:F8
ValidityThu, 22 Aug 2024 20:54:34 GMT - Wed, 20 Nov 2024 20:54:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /extract HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lX6vzNEH443Njoo8%2FsZ2%2BlHPAIB4Bo19YMWBWXx57lw3W4Vrc22SEZ5cu8ZSxd%2Fk4%2B3KTD93opLCbdAaVbudOTdZB6gyZGCtE0JR424e9mv0HrMlI5JteG3IUCZm2R00"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf089e92da7b529-OSL
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279

104.21.235.82

200 OK

19 kB

URL User Request GET HTTP/2
9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
HTML document, ASCII text, with very long lines (12201)
Size
19 kB (18876 bytes)
Hash
0ce680d2b1a11845ac57c04125f323ee
4d997f0349873aa8b40b109e0ed110825707ef11
2cb2a54d5880a59b900801ee6dc67b082015b87b24e2892eaa368dba6b965d35

HTTP Headers

GET /process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279 HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lIxviTuRxRTa6iPlUKNhKlTwIRNs5ZYb1jhj5kmWNOQ2TD4ksqMQBma9Wg17ybddiF2px1mgk5HD8T2sEbWfFQI68WIYHR8g85crT31vdXX%2B1ijyNgJkweh0PMETCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 8cf089e23bfabebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/build/70.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

25 kB

URL GET HTTP/2
9xbuddy.com/build/70.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (24628), with no line terminators
Size
25 kB (24628 bytes)
Hash
739e056a113c1804af6fcbb5ade11358
1e1995f756e2a8ec996d1cabde069f396ddcc7ca
2f258c2c07792cd535c563a386ec3424b8a0ddde32c840c3074ac6e69d9cdfc2

HTTP Headers

GET /build/70.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-6034"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5560
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jmv1Qzgz4f9tC4NmqB6643gPoJHvPSMIqDBXzvsSPHXl74sUhM4iC1JlBX9ZG4U35unvmW%2BH41yTaJvNS1CNqIh6ypU4zOx8DBTVXnMXs6ggWd2kci7SK6n4m8hNRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e72aabbebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

ab1.9xbud.com/extract

172.67.194.53

200 OK

8.1 kB

URL POST HTTP/2
ab1.9xbud.com/extract
IP
172.67.194.53:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbud.com
Fingerprint18:90:4C:F2:5D:8E:20:49:40:84:CF:F5:1E:67:E8:7B:C4:58:02:F8
ValidityThu, 22 Aug 2024 20:54:34 GMT - Wed, 20 Nov 2024 20:54:33 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (8323), with no line terminators
Size
8.1 kB (8124 bytes)
Hash
39cd4af47d3ed3fe2f87577aa2c6ad2a
3310ff00fa46ce06703363dc7d6ddf5a78e2b85c
da0f2f7dd8c68512242a8f63a233b748b2dda6b9cd872cf953ae4bc3259b6690

HTTP Headers

POST /extract HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: bq7GqsaXrpGT0aZtnGWXZmuclsZubZxll2ZrnJbGbmN5moFlobOymG6Js4e0jJSwcbZ+loF9lIGFjcWrhISydsGHeq98wZKGjaitlaudyt1maJdik2Njm16SamdmaGNj
x-requested-domain: 9xbuddy.com
x-access-token: aWaSn2lkZ2deaWxtyqTXpaacZJNvqZKjnJKpY8fVpmZcVXedmqTRX5VlZJJllWZiUHShoJWb095ob2ljYGhoaZo=
Content-Length: 801
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bk4U1yqx0lIBe3gOjpodiGfjW1yC7KPlaJbjPqKNXMWzZg0FX530lPQU%2Fno4jrjUBl9iQn57HXhQhaXTGPETys2kKtcuY4q6n8T0rmVJTb5SxXGAII9yJb5ttJZ%2FRwrL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8cf089e97e2eb529-OSL
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/build/7.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

8.3 kB

URL GET HTTP/2
9xbuddy.com/build/7.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (9564), with no line terminators
Size
8.3 kB (8342 bytes)
Hash
15cf3df66ca4d38557085e147b36659c
be023323ce3f00c69119bcc34575a60789b79fc1
d520b23f2f3209fe0425d473e71a583fe1b4dd6f6e0644197a6fd159163ffb13

HTTP Headers

GET /build/7.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-2096"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2215
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zw5scwP4krfqapq%2BoznURrAhIw%2FxW19EeSjIGSNyAwbbzuDtYHPSuWnjrRsorFZVitCFReZQBj%2B2L%2BdqvQS98catwkKiTgMC0GKCuA4759p2aAWOh0Uk9VZFefVWjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e679d4bebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/build/main.5df96350879b0c53b5d6.css

104.21.235.82

200 OK

35 kB

URL GET HTTP/2
9xbuddy.com/build/main.5df96350879b0c53b5d6.css
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
ASCII text, with very long lines (34548)
Size
35 kB (34612 bytes)
Hash
bd2b9a8963427825a778554061d2541b
a11d7f0e613040481e30d6865ecf1314a5fab13d
f3251bee3896a0b09231c4d615fe48d585f760986ff4307b81589fef82aeeec5

HTTP Headers

GET /build/main.5df96350879b0c53b5d6.css HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:08 GMT
content-type: text/css
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-8734"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3300
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ckVJpW7dBCrbl4DQ0NNrjNAICs0mFwSWf%2FJCBUHbWWjAaMNlwo%2BjmRuOv8I5pOsjEQPW3QhzCpor%2BID2xZjmLCWDf7bxr5Gt6TI9dI%2B4gl%2FVD7FPh7rhRcFeSpU0YA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e4ffa1bebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

9xbuddy.com/build/682.5df96350879b0c53b5d6.js

104.21.235.82

200 OK

41 kB

URL GET HTTP/2
9xbuddy.com/build/682.5df96350879b0c53b5d6.js
IP
104.21.235.82:443
ASN
#13335 CLOUDFLARENET

Requested by
https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Certificate
IssuerGoogle Trust Services
Subject9xbuddy.com
FingerprintB2:43:57:CE:C4:FE:B3:5B:AC:04:CE:F0:B7:A0:76:83:D3:DA:B4:0F
ValidityMon, 26 Aug 2024 02:58:37 GMT - Sun, 24 Nov 2024 02:58:36 GMT

File type
JavaScript source, ASCII text, with very long lines (41046), with no line terminators
Size
41 kB (41046 bytes)
Hash
e279aa4c2ff8987ba55222e8bb146182
7f4a7c68de64abf1186cb4d21e93dca6bcee6bd4
06d35199242e2dd6fdefdb73279dc5919a80ad7a09067e80ca45ced9cb83aef1

HTTP Headers

GET /build/682.5df96350879b0c53b5d6.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://rutube.ru/video/9fc634b7903de24dde4eac1a7cd4e653/?&utm_source=embed&utm_medium=referral&utm_campaign=logo&utm_content=9fc634b7903de24dde4eac1a7cd4e653&utm_term=yandex-video.naydex.net/&referrer=appmetrica_tracking_id=1037600761300671389&ym_tracking_id=4693819380271832279
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 07 Oct 2024 20:11:09 GMT
content-type: application/javascript
last-modified: Sun, 15 Sep 2024 05:46:42 GMT
vary: Accept-Encoding
etag: W/"66e674c2-a056"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5559
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z9AT2N9j0kCcTObom%2B%2B1xoPxbvt5LFJEgHfCmMfG4FczkEnPpQXrHrs80yfQEiWHqRt9AhQm2tS%2FNo%2FN%2FoKBlET43NXK%2BN7vL7Bres%2FlUwzdZp%2FhRy%2BE7SgCMGgeSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8cf089e72aacbebe-LHR
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by