{"report_id":"40b19a22-1c51-4d90-a96e-75c63ba994a9","version":6,"status":"done","tags":[],"date":"2025-12-20T16:35:04Z","url":{"schema":"http","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"172.67.217.43","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"title":"ovogoal.cfd/hubplay/stream-756.php","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"172.67.217.43","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-24T16:35:04Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":25}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"bvtpk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"adexchangeclear.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"kzt2afc1rp52.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"kzt2afc1rp52.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"adexchangeclear.com","ip":{"addr":"104.21.78.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-04-27","domain_rank":24943,"first_seen":"2025-07-16T08:40:02.47428Z","last_seen":"2025-12-16T00:43:57.602131Z","alert_count":2,"request_count":2,"received_data":3843,"sent_data":1525,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"oyo4d.com","ip":{"addr":"139.45.197.118","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2019-03-26","domain_rank":201644,"first_seen":"2025-06-02T17:08:26.404235Z","last_seen":"2025-12-17T11:47:39.709466Z","alert_count":0,"request_count":1,"received_data":826,"sent_data":586,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"uf.pegboxrebozo.com","ip":{"addr":"172.255.106.134","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-10-24","domain_rank":0,"first_seen":"2025-10-27T23:48:01.119592Z","last_seen":"2025-11-30T18:59:17.040054Z","alert_count":3,"request_count":1,"received_data":1411,"sent_data":424,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"x7i0.com","ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2021-06-30","domain_rank":0,"first_seen":"2025-09-22T01:01:11.695894Z","last_seen":"2025-12-17T19:43:02.194609Z","alert_count":0,"request_count":1,"received_data":113318,"sent_data":403,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"jnbhi.com","ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2022-08-31","domain_rank":0,"first_seen":"2025-11-13T12:34:48.915898Z","last_seen":"2025-12-16T02:45:48.277897Z","alert_count":0,"request_count":1,"received_data":113278,"sent_data":409,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"epicplayplay.cfd","ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-03-11","domain_rank":0,"first_seen":"2025-11-04T19:50:04.315105Z","last_seen":"2025-12-20T01:30:47.024047Z","alert_count":0,"request_count":5,"received_data":1334060,"sent_data":2368,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}]},{"fqdn":"b7510.com","ip":{"addr":"139.45.197.115","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2021-03-21","domain_rank":0,"first_seen":"2025-06-19T09:08:24.947983Z","last_seen":"2025-12-18T01:16:58.05632Z","alert_count":0,"request_count":1,"received_data":826,"sent_data":587,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"preferencenail.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":20606,"first_seen":"2025-07-08T12:55:47.271261Z","last_seen":"2025-12-17T16:26:46.156091Z","alert_count":3,"request_count":1,"received_data":85956,"sent_data":409,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"weirdopt.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":37519,"first_seen":"2025-07-08T12:55:47.272157Z","last_seen":"2025-12-17T17:02:40.749593Z","alert_count":3,"request_count":1,"received_data":377,"sent_data":414,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2025-12-14T22:26:15.497371Z","alert_count":0,"request_count":1,"received_data":18456,"sent_data":455,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ovogoal.cfd","ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-11-21","domain_rank":0,"first_seen":"2025-12-20T16:35:06.176153Z","last_seen":"2025-12-20T16:35:06.176153Z","alert_count":0,"request_count":3,"received_data":652549,"sent_data":1836,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"C3.js","description":"D3 based reusable chart library","website":"https://c3js.org/","common_platform_enumeration":"","icon":"C3.js.png","categories":["JavaScript libraries"]}]},{"fqdn":"upload.wikimedia.org","ip":{"addr":"185.15.59.240","port":443,"asn":14907,"as":"WIKIMEDIA","country":"United States","country_code":"US"},"domain_registered":"2003-03-16","domain_rank":4329,"first_seen":"2012-05-21T09:39:45Z","last_seen":"2025-12-15T02:16:33.877028Z","alert_count":0,"request_count":1,"received_data":1854,"sent_data":470,"comment":"","tags":null,"fingerprints":[{"name":"Apache Traffic Server:9.2.11","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":43911,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-12-15T10:45:04.439976Z","alert_count":0,"request_count":1,"received_data":834,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"chevy.giokko.ru","ip":{"addr":"104.21.29.196","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-01-15","domain_rank":0,"first_seen":"2025-12-20T01:30:46.335351Z","last_seen":"2025-12-20T01:30:46.335351Z","alert_count":0,"request_count":1,"received_data":818,"sent_data":470,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"kzt2afc1rp52.com","ip":{"addr":"172.240.127.243","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2020-04-27","domain_rank":1699334,"first_seen":"2020-04-27T04:28:17Z","last_seen":"2025-12-20T10:48:16.732492Z","alert_count":2,"request_count":1,"received_data":107430,"sent_data":445,"comment":"","tags":null,"fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"protrafficinspector.com","ip":{"addr":"3.66.182.197","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2025-06-18","domain_rank":614186,"first_seen":"2025-07-25T22:45:21.95813Z","last_seen":"2025-12-16T20:59:52.98779Z","alert_count":0,"request_count":1,"received_data":420,"sent_data":438,"comment":"","tags":null,"fingerprints":null},{"fqdn":"usrpubtrk.com","ip":{"addr":"104.21.92.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-16","domain_rank":6824,"first_seen":"2025-06-17T13:34:00.105327Z","last_seen":"2025-12-17T19:44:19.819274Z","alert_count":5,"request_count":1,"received_data":540,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}]},{"fqdn":"s4.histats.com","ip":{"addr":"149.56.240.130","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"domain_registered":"2006-06-12","domain_rank":53951,"first_seen":"2012-05-21T19:14:14Z","last_seen":"2025-12-16T05:55:56.099464Z","alert_count":0,"request_count":1,"received_data":188,"sent_data":618,"comment":"","tags":null,"fingerprints":null},{"fqdn":"bvtpk.com","ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-03-16","domain_rank":37068,"first_seen":"2025-05-21T11:34:02.786268Z","last_seen":"2025-12-17T15:50:18.770078Z","alert_count":1,"request_count":1,"received_data":113619,"sent_data":404,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"waust.at","ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":36042,"first_seen":"2016-01-28T18:24:33Z","last_seen":"2025-12-16T06:01:24.436568Z","alert_count":2,"request_count":1,"received_data":12428,"sent_data":402,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"skinnycrawlinglax.com","ip":{"addr":"172.240.127.244","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2024-09-01","domain_rank":38609,"first_seen":"2025-07-09T22:28:05.771371Z","last_seen":"2025-12-16T07:46:15.46484Z","alert_count":5,"request_count":1,"received_data":520,"sent_data":498,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2025-12-14T22:26:41.611695Z","alert_count":0,"request_count":1,"received_data":90135,"sent_data":424,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"t.dtscout.com","ip":{"addr":"172.67.70.180","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2013-11-01","domain_rank":54823,"first_seen":"2017-01-30T04:52:42Z","last_seen":"2025-12-16T06:01:23.279065Z","alert_count":0,"request_count":1,"received_data":3017,"sent_data":520,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"s10.histats.com","ip":{"addr":"104.20.10.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2006-06-12","domain_rank":54582,"first_seen":"2012-05-21T17:14:14Z","last_seen":"2025-12-17T12:43:00.220967Z","alert_count":0,"request_count":1,"received_data":11816,"sent_data":410,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"78a6702d966a64ed29eca96bfefed3de","sha1":"cc38ab49fb9cf0b5dfe3639378bd12af22ef1c0c","sha256":"00f32959faf141840611a9e3f434a6924cbcd843de990bb5df8ad037b9f8d095","sha512":"2b6c83fa444ad44b55fcced6f581d11b7a8e1e4339769b78b124e257de6526d0e1f7f2a974311d2a5e92633a22ff4846ee52276703d73de4dca305a5eba4be29","ssdeep":"","tlshash":"8d9002e65045d01019e61142772273497932159931451002821a4115301192fcb51594","size":52,"data":"","first_seen":"2024-07-11T01:38:35Z","last_seen":"2026-04-14T01:02:46.28791Z","times_seen":873,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f6ca01bb0ca3ebde821544f18ec83583","sha1":"2e8cbf747f80c79ae8c12b8685556757e813b9db","sha256":"a1d2b03b3b1269adbdcbda20f64807bc730335783a9a90e9fbd743f898fb675c","sha512":"abe6913529a7c6d57112e1fd7e8705144a557783b8b7e957c00e9d2a1cb5b05c00411e04d1c84a5df1032558a0151b396099d0582dbc944944f6040dad241573","ssdeep":"","tlshash":"cbf05c2a98e707384cfa7a441034ca7534fc38a0a9a3d067625cc82ccd39fc54c14bec","size":467,"data":"","first_seen":"2023-03-09T01:35:27Z","last_seen":"2026-04-12T18:50:07.371301Z","times_seen":920,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/disable-devtool@latest/disable-devtool.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"be2d0eed5eded93d8440b1dae0f30960","sha1":"36e7177a4932c42e56d3e3f7b0580e4c88df96d5","sha256":"8368de6b02128e66831895a77f280482d7ed841a61c42d2304966f12a4efd46d","sha512":"185f6d9ce439ce4ddf557c13303790f74031c221e1578c98aee9a8b10e5ee6cca66c207b04686510faa128ccf19ea5f3c71d3494157709f5a7e984079c6c1ad7","ssdeep":"","tlshash":"8b110209b920b49661ab53fe811f000fb33098b7d89d58e057244cf59ef10ad05d7f0d","size":1000,"data":"","first_seen":"2025-08-02T17:09:38.072547Z","last_seen":"2026-04-10T16:55:30.109045Z","times_seen":521,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"d9228ec98315fc0f3a24dd429c70a4ba","sha1":"add03ad9933ab97bd3e85210b26435fe568d5f20","sha256":"965fcd8ff64719200e7741b0d197bbe366c563359e788d96b419e89314b61570","sha512":"1b7b7159d0a1a94e049effc7d666a84be174714da7a8441f399685097827dedd03b2f5e1440aab1bfb9c39b1997f7d3343e9859b3eda2380cdbe791a9f6dc930","ssdeep":"12288:cdqeHntKnhYZiahM40lN0R5Jr9OnaYuqFFObnpe9AUTpKWZVfmuenM5xkx:cHtbhM40/0RRIZDFObnpe9AUTpKWZVax","tlshash":"acd4501837844587371b4ebb773ba5d1e40b38da7609488ff6087c65a1965a3fbe8332","size":612090,"data":"","first_seen":"2025-12-20T16:35:11.620509Z","last_seen":"2025-12-20T16:35:11.620509Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5e830ad5a1680fb9167de2f0d3ffa6ce","sha1":"09028eccdcdfb0493edadc2979c72a786e064b39","sha256":"4f4736906d309ae70db6ec4ad0080fd9063ff5c61d13c1be5069fdb56c562b54","sha512":"8b0bdeb01d54bf60d80c50ab431239f135e920a3fbdde2faa85f1799ed73f3bba95fd6033e851a520174df380acfa14688f1f5cfe1641f33ec0a519b56248562","ssdeep":"","tlshash":"050175b4baf71d0f730a41799c05fb889602060731a231c3680ab5084b783c3e6c394b","size":800,"data":"","first_seen":"2025-11-26T19:57:11.76918Z","last_seen":"2026-04-14T01:02:46.293591Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s4.histats.com/stats/0.php?2162676\u0026@f16\u0026@g1\u0026@h1\u0026@i1\u0026@j1766248480789\u0026@k0\u0026@l1\u0026@m\u0026@n0\u0026@o1000\u0026@q0\u0026@r0\u0026@s0\u0026@ten-US\u0026@u1280\u0026@b1:-46758024\u0026@b3:1766248481\u0026@b4:js15_as.js\u0026@b5:0\u0026@a-_0.2.1\u0026@vhttps%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026@w","fqdn":"s4.histats.com","domain":"histats.com","tld":"com"},"ip":{"addr":"149.56.240.130","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"c6e5135761fe8f7d15865936decd189b","sha1":"66c6a5926981cc37162acc4da189c6bf803f6c5e","sha256":"211c1978c5e1554275cba52abfb7f0d5cc16a4c45e223a06a540db1b0caabb49","sha512":"a4c60cf8d3b3df3749f6e396cbc967bac340b5681cf98d9bd59b70b2512dd9238890a654382554ed4c5d814020ffd8964d6db674b9812bf31fb2f86d1fdecc42","ssdeep":"","tlshash":"0e900257751591b61560066ed482201515b904981c850690c90044959d429a94d61912","size":54,"data":"","first_seen":"2025-12-20T16:35:11.617337Z","last_seen":"2025-12-20T16:35:11.617337Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"waust.at/c.js","fqdn":"waust.at","domain":"waust.at","tld":"at"},"ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d3d3792a266082fcf1ae070d62293645","sha1":"8d3b5df94dfacbe7ef3f662e0ebf63a87d575917","sha256":"d33b6b1a90ffea836a70e99ca438a76244b3aca86f828f62666f73ed3e5774bb","sha512":"a8d7525e2ca7726d0b6a294b8be2baca780a61c7ccd0480c37f844cf173e5b33df05cf59c5e3f7549cd099e3c57b302169d11b82d0a1a43d983a4e2d853480ba","ssdeep":"","tlshash":"e511c27635167539a6f69060512fbb453432b0b66e46a0c1953ce4bc5874d1f015fecb","size":1000,"data":"","first_seen":"2025-10-01T03:25:41.926179Z","last_seen":"2026-04-13T18:50:49.557706Z","times_seen":121,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"aa049e2749b8531cb8f233c2f64fc2b2","sha1":"b611a5a62c1813ae5b4763378b3a4a565556530a","sha256":"e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2","sha512":"fa951f3911de780608d6235a597758320388dff58cf18dd584a6941ac88cc36cac7d52caa72b678ee6f4dff47ee23955ab282714d03e713ae2bed4cb73a3c14e","ssdeep":"","tlshash":"71a0128471d6e4004b7320e40437448490396c60348c848051048c721c651108236c1c","size":79,"data":"","first_seen":"2023-04-11T21:38:58Z","last_seen":"2026-04-14T21:45:24.151884Z","times_seen":211210,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kzt2afc1rp52.com/9f/f3/5b/9ff35b0cd63b95f2925204c4dd0a79c3.js","fqdn":"kzt2afc1rp52.com","domain":"kzt2afc1rp52.com","tld":"com"},"ip":{"addr":"172.240.127.243","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6d9f79c1b634d16922640308b382bcf3","sha1":"f50b63e8e6cd970d2ead79781420125c3b688c0b","sha256":"4727cfea484cb3a0f92bdf4141797f4f4bb739e426597309308dc85619c057bd","sha512":"d10f36ed143af4b618e1fa2ad9940a264e07c46ae2b9356866a80a4a53400ff96d2eed18cd5308df3c1f1c05956c6c3fdedc79c0febe65df080ee23eeaca9aee","ssdeep":"1536:EpOvTY8Afd1ow5ZEUjHzQSF63R2LbqKYmEqMTd01yLVH2WQgPrNQCld5h4s9imfh:qXLD33COgu+bAKaSv","tlshash":"8da3c9d97f40f06d4271607a213fa00af25b0e46688cd59ce117f6a42fa865fe57ef28","size":106588,"data":"","first_seen":"2025-12-20T16:35:11.613236Z","last_seen":"2025-12-23T01:13:04.535693Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"uf.pegboxrebozo.com/rRO6j2xLzB2XgW/69521","fqdn":"uf.pegboxrebozo.com","domain":"pegboxrebozo.com","tld":"com"},"ip":{"addr":"172.255.106.134","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-14T21:50:31.994152Z","times_seen":15515,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"b3a5ba94d627e64a77c0e11eaffc96ed","sha1":"f7358693b31e44211dd98b5aa0dc2a3f423286aa","sha256":"600f01dd96f043e58e0e70a82afbba6ffe0923d836f6293c1e6fc1cb5b074d34","sha512":"64800bcce3e1a65638dfedfe22f205b51725865db3332be95a142e39e4cb40f57358d0c4c01ebb366b8da56aa978b6c7ee992e2c27563bac76c3998014c3d64b","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRC:nPncLBSUBULGVTfGpucE5foM","tlshash":"488395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85379,"data":"","first_seen":"2025-11-18T17:36:30.149277Z","last_seen":"2026-04-14T22:04:58.430252Z","times_seen":14015,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"60f1798bac26472658ff588720760829","sha1":"9929b26eeb812be15261ac5aee076e468bf4764f","sha256":"acf1662d0ddc764da1a0a9ca8c14ce6d6a937aecef80b4b0e0426698a24b765d","sha512":"9d0a619d6ac5f0516ddca9675f3eb2f0f58b6f2277e3e5925fa3ef9609f51fd08ab1826a609edf62cc1eb9d5c6543e459c205ffab10ef6cd4973caf62803f07e","ssdeep":"","tlshash":"aac08ca60128d1aae0a94c05270242006cf5bc6fdb8fea060840c20fae27216c798698","size":157,"data":"","first_seen":"2023-03-11T19:15:55Z","last_seen":"2026-04-12T18:50:07.378625Z","times_seen":726,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x7i0.com/tag.min.js","fqdn":"x7i0.com","domain":"x7i0.com","tld":"com"},"ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"b105ae11aaf0b47395b2000405b0c592","sha1":"3c1e064f7f5914d976f4a81aea09018b88252773","sha256":"59f1a5a724edcb7907d7734c94ea7893e3c0153854847a1dde214f8c71339e9a","sha512":"3e3a9f1b04582013f15fe140f1aeee984bf74299ec944c6d5752bcd8a14db371f03a7f7f3002eee365d2b98a80791f2a0dc2b380001c80928295458d02be6190","ssdeep":"3072:tXki1TG8YlAVCzIqwL76WJHpYx85/MVzUL:6WTGvlwqw5JJdQza","tlshash":"3ab3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","size":112425,"data":"","first_seen":"2025-12-18T15:53:40.958967Z","last_seen":"2026-01-08T02:23:09.116351Z","times_seen":241,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-04-14T22:55:28.690971Z","times_seen":613040,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"29d0d2a526315b4e7e07b271e854d4f8","sha1":"eeb7e97f6e92e28c24301c005acacef709c7542c","sha256":"af2bd964aa5b004c72d28e26e1bd64813703bafbf733338c2851080de87a3389","sha512":"cc04df1b30b557128bd46101efc35c1444e064401264de687ee1d766cd8271a9347a2e12d24142ee0a35b24e93646592e7a20aa45e165530fb14699000c71bdb","ssdeep":"","tlshash":"8a5000c00000000000330c00030c300c000303000000000003003c00000000c0000303","size":11,"data":"","first_seen":"2025-10-27T23:48:11.648342Z","last_seen":"2026-01-25T13:01:16.959903Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ff656e6bdffbea98da4df97ff7ae3d21","sha1":"f742e8d729409184fdaf152c2d2b670d6db7e9ec","sha256":"9e6e95d6fa2ce522e900a6eb22ef91ae4fa930a9e39e2ca913742d48d0484b68","sha512":"6d33c580d8b244ba6a4268947d576a1633f299fa43cc01e6f492e69b3245b277b9ead9597d20e953f5af78c8b9caa3c2fd80fc92a259de307b4461ccd71b63a0","ssdeep":"192:M4CrN2ip9brETbWI/Yum+RyXePI06HGwBJk4W1x:MjH9brETbP/Yum+RyXePI06mrX1x","tlshash":"2802c9bb7b49359061f10c7e625b7225753604baaa0f9512a262c8513c1cd0fc3afbee","size":8477,"data":"","first_seen":"2023-07-23T19:35:27Z","last_seen":"2026-04-12T18:50:07.379144Z","times_seen":661,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"87c725e214683adf9b74663ff14946ab","sha1":"ccbe1b6c564d65ad51f1488627d8ea8d1e97e131","sha256":"93e773869f7f7e03ab47466b60c2b9113b1da6b969d5963c03678e5a4c0e0807","sha512":"1e58750aa931cbda42301559e3502f01877a49aa3dd6384fc9146e4ea9e24bc11fa94db7a17ddb522aa2b4ccdf51c65f21329abb1c5cd8edc69bc22fb90f980c","ssdeep":"","tlshash":"fe1121ad306572be1ba315e4a137974bf271117c605c04324b5dc8f5ac75caf8623ac8","size":1000,"data":"","first_seen":"2023-05-26T08:35:46Z","last_seen":"2026-04-14T16:26:35.882112Z","times_seen":5360,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s10.histats.com/js15_as.js","fqdn":"s10.histats.com","domain":"histats.com","tld":"com"},"ip":{"addr":"104.20.10.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e959fbdd13def4b9a9d0a5fc9a7de4d4","sha1":"1e39712307e3673b40c0bdb8c7d3e86a3e8b60a0","sha256":"2defe59e357a7d0683c8283ac42841db404a0884cae2eaecebf4b676e559dede","sha512":"590b22282634411002c9467c6c0d20d27979f841bffcf893e715a2b61301a873457a9cbe0a765a11592e7f5cb81fc50d5bd436bd5d47dc93bfb776515b02e2c9","ssdeep":"192:TixaOdP2DahLeKkda6nGvCvsojELj2n04UwXNAfLwUW1WuYx6jomrYZJp2XmIR2z:mxaOdWyLwaAWj2nvUwXNAfLwUWAuYx6e","tlshash":"7532969c708170066953e1a5123f413fa27b0df92dfe5558dae0b0b5bd7884ec0abbe9","size":11440,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-12T22:21:08.814415Z","times_seen":1182,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/clappr/hlsjs-playback.min.js?s","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b52463c3aa304e62a3ab0c7c614d680c","sha1":"6aa264eb195ede145039c6d3055c50095869ece4","sha256":"1604a8a0e163875f0e8db22dd86553817f7b175a49924bb7faf158dc81f38147","sha512":"54df86e9c86021fc5262e69f44777c6f8a95c54a6e1740f53b97df7d0c32c7a79dce42094c21c8b79fca28a151be76f631983602e6f5ff4bfc996f11e956685f","ssdeep":"","tlshash":"9211efc43170f9a292e7e6f1442b460bf224e877685e58804264d8f4fdf84fe46abd1a","size":1000,"data":"","first_seen":"2025-10-31T13:27:14.483116Z","last_seen":"2026-04-13T18:50:49.555214Z","times_seen":108,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e2387ff728af797e5aea21a76b97dcfe","sha1":"b55148ddb18a2f0c7c19c9f3a080c94734817d00","sha256":"b32113e5aee1b5f0ea9b93d7b390438373d6af478db2a527405d440818068330","sha512":"23ebd4edf1a3f573a7a79cd6148961e3b24a1363b5f660936c829f7891374e63c0755ad08d4da7c405750f5f3b94654a6e646a72ac4cb5971b7f058fc51f64b7","ssdeep":"","tlshash":"4ec080b575f59530546400da3076d7e57c7431597562b0c0c4ddbc1ca564fd30991c65","size":179,"data":"","first_seen":"2025-08-12T20:30:39.872627Z","last_seen":"2026-04-12T18:50:07.38217Z","times_seen":63,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"6105483638bf5e8a75281fe5e1724593","sha1":"eda0189eb558b183b96f986dc5d19383f38d0cef","sha256":"14de16fbe0c19c617049209624382077fc976dec843e4c62b49ba9ad492231f0","sha512":"13b76442e6e3e2af5315da9b98e1ae6902c966521edf1b12373e7fc488902639d73b5fb515c085c6ee0c6e666ffbf4adda3acfb8ed8f5353fbea2cdec7771133","ssdeep":"3072:tXki1TG8YlAVRzIqwL76WJHpYx85/MVzUL:6WTGvlVqw5JJdQza","tlshash":"7db3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","size":112428,"data":"","first_seen":"2025-12-18T11:35:07.715482Z","last_seen":"2026-01-08T09:54:56.313421Z","times_seen":771,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"javascriptURL","is_inline":false,"md5":"68934a3e9455fa72420237eb05902327","sha1":"7cb6efb98ba5972a9b5090dc2e517fe14d12cb04","sha256":"fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa","sha512":"719fa67eef49c4b2a2b83f0c62bddd88c106aaadb7e21ae057c8802b700e36f81fe3f144812d8b05d66dc663d908b25645e153262cf6d457aa34e684af9e328d","ssdeep":"","tlshash":"aa3000000000000c000000000000000000000000000000000000000030000000000000","size":5,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-14T21:53:02.292798Z","times_seen":68025,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c6ff27e0fcc138fdb8128e2553c96114","sha1":"85cf4a2f6ec3a49eac4314468333e673942b1d0a","sha256":"6313904bb40e22818aa7eada26cb643c394a1ec31aa831cac5248276cb30b60a","sha512":"a2e64780dfe1c700156c487e7ff8ccbf9717b74f41eee020e0ccc4f47da3cadb22c411a35963ad8f587eb2c54d7bb817341fbb99084c09767ff24be052dc3765","ssdeep":"384:+v0a/K7iYFRdYtnz0Qen9tO69aI8tAUeNDaUGRQ2t4PpBahqoo+KXnS7YhfGMOIf:+K72noQ80GaIoQPzahq/AMOY","tlshash":"c5c2d4a7321eb91a8719626150ef2ec5a2cc48c4718f1b78e724e53634d763485ebef8","size":28000,"data":"","first_seen":"2025-11-14T02:13:36.159412Z","last_seen":"2026-01-03T21:24:09.72566Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eventHandler","is_inline":false,"md5":"490f73baec202b48fd9a35252819dc02","sha1":"4aada026fea72262d673ff961b762aa76c18d328","sha256":"2f266622acc555e7fae41ee841bd4407dcb144c633097914ac22a3716944564c","sha512":"a5382d51192284fdc13472d72436e61e40ac34444f13d801fed8718fc39519b2df3d841afbe72c5d7a930761cfc0fc2c6e18d22c99f45c151bf3bf3fa6a59ea8","ssdeep":"","tlshash":"7a50000000303c0c000000000330000000000300c0000c00c00000030000c00000c000","size":9,"data":"","first_seen":"2025-10-27T23:48:11.649745Z","last_seen":"2026-01-25T13:01:16.962154Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"ovogoal.cfd/favicon.ico","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:42.123Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ovogoal.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 13:23:28 GMT","end":"Thu, 19 Feb 2026 14:22:14 GMT"},"fingerprint":{"sha1":"BF:1F:14:1E:EB:52:29:76:36:2C:16:F0:EE:49:11:8F:8B:BC:44:56","sha256":"19:93:0D:B5:BE:74:35:4E:3C:63:AC:58:FB:74:9D:24:66:94:E7:6B:79:F0:77:D2:6B:D1:A8:03:51:C8:AB:E4"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: ovogoal.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/hubplay/stream-756.php\r\nCookie: HstCfa2162676=1766248480789; HstCla2162676=1766248480789; HstCmu2162676=1766248480789; HstPn2162676=1; HstPt2162676=1; HstCnv2162676=1; HstCns2162676=1; pp_main_9ff35b0cd63b95f2925204c4dd0a79c3=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=61193c4a-e164-4347-acd1-763e8cbdfce5%3A3%3A1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: text/html\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=55NTHTegM4Fho%2B%2BkNUIC6AcJmmVjrC0V6mHKZiU1aPP%2B0EswFumTBVei%2BnVC0FzVk6ndxd5e01wkQ%2BjZ1IYLWlpH8NJxjmUeSw%3D%3D\"}]}\r\npriority: u=6,i=?0\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9b108c75488d0b69-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":146,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-04-14T22:47:15.540377Z","times_seen":487772,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":89,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"x7i0.com/tag.min.js","fqdn":"x7i0.com","domain":"x7i0.com","tld":"com"},"ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:40.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"x7i0.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 04 Dec 2025 05:11:27 GMT","end":"Wed, 04 Mar 2026 05:11:26 GMT"},"fingerprint":{"sha1":"14:77:2C:D5:C8:69:E2:EA:97:D1:53:2B:C9:3D:84:C5:41:25:53:E0","sha256":"FD:43:E2:10:79:04:11:D2:A4:2E:C6:D9:FC:A2:35:7E:62:29:C6:EF:AE:E8:17:F6:03:BB:46:5F:31:D8:6E:6C"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: x7i0.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 20 Dec 2025 16:34:40 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: e0aa8e8db42bbf549e95077625782443\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":112425,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b105ae11aaf0b47395b2000405b0c592","sha1":"3c1e064f7f5914d976f4a81aea09018b88252773","sha256":"59f1a5a724edcb7907d7734c94ea7893e3c0153854847a1dde214f8c71339e9a","sha512":"3e3a9f1b04582013f15fe140f1aeee984bf74299ec944c6d5752bcd8a14db371f03a7f7f3002eee365d2b98a80791f2a0dc2b380001c80928295458d02be6190","ssdeep":"3072:tXki1TG8YlAVCzIqwL76WJHpYx85/MVzUL:6WTGvlwqw5JJdQza","tlshash":"3ab3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","first_seen":"2025-12-18T15:53:40.958967Z","last_seen":"2026-01-08T02:23:09.116351Z","times_seen":241,"resource_available":true,"data":null}},"time_used":205,"timings":{"blocked":76,"dns":13,"connect":28,"send":0,"wait":52,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jnbhi.com/tag.min.js","fqdn":"jnbhi.com","domain":"jnbhi.com","tld":"com"},"ip":{"addr":"45.133.44.2","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jnbhi.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 03 Dec 2025 10:33:25 GMT","end":"Tue, 03 Mar 2026 10:33:24 GMT"},"fingerprint":{"sha1":"64:B0:B5:35:A4:3E:80:F2:9B:4A:AD:1D:6F:38:9E:4B:FA:1E:4E:21","sha256":"F3:74:C2:D2:3A:0E:5A:90:DB:C6:2A:E1:C8:90:71:5E:A1:5A:DE:D8:52:EC:08:67:49:B5:09:42:76:8A:BB:8D"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: jnbhi.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:43 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 112425\r\nserver: nginx\r\nx-trace-id: 7e206b99afe2548ae7a7e0a8bb8bfb4d\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: max-age=1800\r\nexpires: Sat, 20 Dec 2025 17:04:43 GMT\r\ntiming-allow-origin: *\r\nvary: Accept-Encoding\r\nx-cdn-host-id: AH0543\r\nx-proxy-cache: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":112425,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b105ae11aaf0b47395b2000405b0c592","sha1":"3c1e064f7f5914d976f4a81aea09018b88252773","sha256":"59f1a5a724edcb7907d7734c94ea7893e3c0153854847a1dde214f8c71339e9a","sha512":"3e3a9f1b04582013f15fe140f1aeee984bf74299ec944c6d5752bcd8a14db371f03a7f7f3002eee365d2b98a80791f2a0dc2b380001c80928295458d02be6190","ssdeep":"3072:tXki1TG8YlAVCzIqwL76WJHpYx85/MVzUL:6WTGvlwqw5JJdQza","tlshash":"3ab3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","first_seen":"2025-12-18T15:53:40.958967Z","last_seen":"2026-01-08T02:23:09.116351Z","times_seen":241,"resource_available":true,"data":null}},"time_used":2359,"timings":{"blocked":70,"dns":13,"connect":21,"send":0,"wait":2144,"receive":51,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"waust.at/c.js","fqdn":"waust.at","domain":"waust.at","tld":"at"},"ip":{"addr":"104.26.4.7","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.782Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"waust.at","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 15 Dec 2025 19:37:15 GMT","end":"Sun, 15 Mar 2026 20:37:11 GMT"},"fingerprint":{"sha1":"65:98:57:1D:D0:E1:C6:FD:D4:EA:FE:DC:DD:B7:64:B6:6F:BC:2D:3E","sha256":"73:94:A9:0B:3C:AC:A5:A2:4B:D1:6F:F3:A7:32:53:C1:6F:62:A5:D7:51:1D:50:84:CB:3B:AB:DB:1B:B3:78:23"}}},"request":{"raw":"GET /c.js HTTP/1.1\r\nHost: waust.at\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: application/x-javascript\r\nlast-modified: Wed, 17 Dec 2025 22:03:09 GMT\r\netag: W/\"6943289d-2db8\"\r\nexpires: Sun, 21 Dec 2025 16:08:10 GMT\r\ncache-control: max-age=86400\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nage: 1591\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BGjU1wSdE2AOzDmMoYsQUaKXyUn8rykv1wpyFA42R8c5VAzRB4p103j269zkdhuKvSVky8uy5EPsLdP6btE49x2CpZbE\"}]}\r\nserver: cloudflare\r\ncf-ray: 9b108c739a2fb4ee-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11704,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (11704), with no line terminators","md5":"530782c5a9f2e54753e0bc231ae9d46c","sha1":"75cd71ba9148c556f6e216ee9f8a1cedc03c154b","sha256":"95b4c9194652bc6107784e7198a02d381e630eb404accc3ef2ee0ac2c81c38cc","sha512":"09d2b567dff41a0f2b6555e3c48ab2bcc835ac514364b4263f80e3c30abd92ec78041284b7b9804e98c42c885a3e20836ac9063f1b588970472443ff049011b1","ssdeep":"192:l7pBK4BQM5iClA7y1w65jqc4izncX9HVvW2kdjxWybsmm29NBm2/MVpd:l7pBK4BQB9W1wC4bN1wdjxWybsmm2420","tlshash":"f3323d55221b18b6a7ff50d9252f73067030953aaf4a91519066c0bc367de0f50fbeb6","first_seen":"2025-11-29T06:12:12.624589Z","last_seen":"2026-04-14T01:02:46.218249Z","times_seen":432,"resource_available":true,"data":null}},"time_used":178,"timings":{"blocked":76,"dns":65,"connect":3,"send":0,"wait":8,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"waust.at","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/clappr/hlsjs-playback.min.js?s","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.850Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicplayplay.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 02 Nov 2025 14:31:24 GMT","end":"Sat, 31 Jan 2026 15:29:48 GMT"},"fingerprint":{"sha1":"A5:FB:B7:D5:F7:97:99:5F:29:24:1E:AF:5C:4F:8D:FD:02:B7:B1:59","sha256":"4A:23:D3:85:6E:5D:20:18:A9:78:2F:05:39:CB:87:D6:9B:BF:85:CC:06:40:BF:E8:C7:4D:CC:CD:30:34:96:4E"}}},"request":{"raw":"GET /clappr/hlsjs-playback.min.js?s HTTP/1.1\r\nHost: epicplayplay.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nlast-modified: Sat, 29 Nov 2025 17:16:41 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nexpires: Thu, 17 Dec 2026 18:32:24 GMT\r\nage: 252136\r\ncf-cache-status: HIT\r\netag: W/\"692b2a79-9ec9b\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K7AbzkRpHfLhYWi8tbYOfkFGlO626WpZIXsAa6z51TnRUhetyJ%2FIik816XElOgcDaNmtFvoP1Ks8v1Qbt2rGdVUUppW4yzoJwAYc8JFC\"}]}\r\ncf-ray: 9b108c732f92569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":650395,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"df4f7c3429df55166fb49a1671742521","sha1":"370ef8807736dcc58cf5d79d4cbac1ee02df4cd8","sha256":"488713d3fc944220c9e8bd61bf84e5e41324045a6b86ef356e46bf0729021fdd","sha512":"4dee10ccd94be4f2ef4834186f6283459950407eb348c9c60ce8cb4ef9e028caaa5d74918eafdf7d386e3c285c589b1629be1d4adc923ab55a4748b3363fa14f","ssdeep":"12288:1cYa6S5MfGwtvhtnmuQNkLf0gKD0sPJCLAqKs9:1cj6S5WGwtvhtnmuukLf0gKDNQLA3s9","tlshash":"c3d44ce932d6a02687d1a5da543a4212b3397d0b3408c09cf93efddb2d69949b07bf74","first_seen":"2025-10-24T18:53:04.551122Z","last_seen":"2026-04-14T01:02:46.194415Z","times_seen":289,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":47,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"upload.wikimedia.org/wikipedia/commons/2/21/Speaker_Icon.svg","fqdn":"upload.wikimedia.org","domain":"wikimedia.org","tld":"org"},"ip":{"addr":"185.15.59.240","port":443,"asn":14907,"as":"WIKIMEDIA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.883Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.wikimedia.org","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Wed, 15 Oct 2025 07:25:45 GMT","end":"Tue, 13 Jan 2026 07:25:44 GMT"},"fingerprint":{"sha1":"4F:30:D3:13:28:19:1F:F1:40:FE:1E:F5:B4:A8:89:FD:9E:AC:EC:AD","sha256":"2E:EF:3D:23:1B:2B:63:B9:1F:1A:F1:5A:43:84:9A:6A:40:7F:00:3E:4B:E6:48:EB:EB:7B:3D:2A:90:B7:F4:7E"}}},"request":{"raw":"GET /wikipedia/commons/2/21/Speaker_Icon.svg HTTP/1.1\r\nHost: upload.wikimedia.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 19 Dec 2025 23:26:47 GMT\r\nserver: ATS/9.2.11\r\netag: W/1e965f9ca6bac55c4bfece8dabe6fa47\r\ncontent-type: image/svg+xml\r\nx-object-meta-sha1base36: rcosig5pk1fefnugtbiewl19zhtt86j\r\nlast-modified: Wed, 28 Aug 2019 18:11:18 GMT\r\ncontent-encoding: gzip\r\nage: 61674\r\naccept-ranges: bytes\r\nx-cache: cp3076 hit, cp3076 hit/23855\r\nx-cache-status: hit-front\r\nserver-timing: cache;desc=\"hit-front\", host;desc=\"cp3076\"\r\nstrict-transport-security: max-age=106384710; includeSubDomains; preload\r\nreport-to: { \"group\": \"wm_nel\", \"max_age\": 604800, \"endpoints\": [{ \"url\": \"https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error\u0026schema_uri=/w3c/reportingapi/network_error/1.0.0\" }] }\r\nnel: { \"report_to\": \"wm_nel\", \"max_age\": 604800, \"failure_fraction\": 0.05, \"success_fraction\": 0.0}\r\nx-client-ip: 91.90.42.154\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache\r\ntiming-allow-origin: *\r\nset-cookie: WMF-Uniq=0AGEa3ibZ5HITfXZpHvzIALPAAAAAFvd7tV1qZQAT2dkyoU8eQA7VHotPIR3lTaf;Domain=upload.wikimedia.org;Path=/;HttpOnly;secure;SameSite=None;Expires=Sun, 20 Dec 2026 00:00:00 GMT\r\ncontent-length: 328\r\nx-request-id: 85bbb6d2-5bf4-47ca-8029-f559fa18b57e\r\nx-analytics: \r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache Traffic Server:9.2.11","description":"Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.","website":"https://trafficserver.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*","icon":"Apache Traffic Server.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":514,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"1e965f9ca6bac55c4bfece8dabe6fa47","sha1":"ea28e0f6d1a42bd7f2ab416bcf2a9fd0dde55fab","sha256":"70e589ae4b79586ddd4eadd1ac8b501d64ab0433c2038c92e945fbb6195ad7a9","sha512":"ac5cba3ff4bd990c24695203c88c8b444051059398c8d7b53c8dd87bbe4d2693000a2b2e502bcfc0dee7b745b01a580c9dba3cf362337003626f9e18394fed75","ssdeep":"","tlshash":"53f0591d83865c3ea0628b148750f90963bb5552a672f394cebd1b7325171d450bbaec","first_seen":"2024-06-21T01:55:05Z","last_seen":"2026-04-14T01:02:46.187714Z","times_seen":1034,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":96,"dns":68,"connect":25,"send":0,"wait":25,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"b7510.com/5/9689441/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802a5c13c6e45c0e214fe50a9d15b56\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0","fqdn":"b7510.com","domain":"b7510.com","tld":"com"},"ip":{"addr":"139.45.197.115","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:42.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"b7510.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Tue, 21 Oct 2025 05:16:54 GMT","end":"Mon, 19 Jan 2026 05:16:53 GMT"},"fingerprint":{"sha1":"D4:41:24:3C:CF:C7:8C:56:F0:95:50:DF:63:59:AA:07:08:41:B7:48","sha256":"DF:09:31:9E:FB:30:04:94:33:7D:77:61:1E:14:8B:26:7D:32:A7:F7:3C:CC:ED:BD:06:FE:FC:B9:E7:52:70:5E"}}},"request":{"raw":"POST /5/9689441/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802a5c13c6e45c0e214fe50a9d15b56\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: b7510.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 3422\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":3422,"data":"{\"sync\":\"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\",\"async\":\"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\",\"quality_options\":{\"hil\":1,\"jsp\":1,\"ng\":false,\"ix\":false,\"pt\":false,\"np\":false,\"nw\":true,\"nb\":true,\"sw\":1280,\"sh\":1024,\"pl\":\"https://ovogoal.cfd/hubplay/stream-756.php\",\"wy\":0,\"wx\":0,\"ww\":1280,\"wh\":1024,\"cw\":1280,\"wiw\":1280,\"wih\":1024,\"wfc\":4,\"sah\":1024,\"navlng\":\"en-US\",\"drf\":\"\",\"wgl\":\"llvmpipe\",\"tb\":false,\"btz\":\"UTC\",\"bto\":0,\"pnt\":0,\"pnrc\":0,\"bml\":0,\"bmi\":false,\"vsbl\":true},\"client_hints\":{}}"}},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://ovogoal.cfd\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":56,"dns":27,"connect":26,"send":0,"wait":30,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"skinnycrawlinglax.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=1395\u0026rd=1395\u0026fd=556\u0026bv=25.12.2106\u0026tmpl=70","fqdn":"skinnycrawlinglax.com","domain":"skinnycrawlinglax.com","tld":"com"},"ip":{"addr":"172.240.127.244","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.173Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"skinnycrawlinglax.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sun, 26 Oct 2025 22:33:26 GMT","end":"Sat, 24 Jan 2026 22:33:25 GMT"},"fingerprint":{"sha1":"74:B9:DE:52:5E:A4:22:C1:3F:4E:90:E5:53:C1:13:27:E5:47:BB:D2","sha256":"0D:C6:A2:6A:15:63:9B:67:CF:55:A8:E1:E3:EC:AF:D3:57:2E:38:F3:44:79:B9:FC:61:8A:CD:64:82:05:64:6F"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=1395\u0026rd=1395\u0026fd=556\u0026bv=25.12.2106\u0026tmpl=70 HTTP/1.1\r\nHost: skinnycrawlinglax.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 20 Dec 2025 16:34:41 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: skinnycrawlinglax.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests,C-High-Entropy-Values\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":684,"timings":{"blocked":291,"dns":0,"connect":100,"send":0,"wait":99,"receive":0,"ssl":190},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:42.046Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicplayplay.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 02 Nov 2025 14:31:24 GMT","end":"Sat, 31 Jan 2026 15:29:48 GMT"},"fingerprint":{"sha1":"A5:FB:B7:D5:F7:97:99:5F:29:24:1E:AF:5C:4F:8D:FD:02:B7:B1:59","sha256":"4A:23:D3:85:6E:5D:20:18:A9:78:2F:05:39:CB:87:D6:9B:BF:85:CC:06:40:BF:E8:C7:4D:CC:CD:30:34:96:4E"}}},"request":{"raw":"HEAD /premiumtv/ovogoal.php?id=756 HTTP/1.1\r\nHost: epicplayplay.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Gsr7f5Mslz3OhG11eDKmd5rNlIoYPEDCC7q3g1Am9lXUtv%2FBLbBipWaUq28a1jTG1FHgBkzXTICKJmpHUsPKp3sqSXeX1UojabAtzVfW\"}]}\r\nvary: Accept-Encoding\r\nx-cacheable: YES, YES\r\nx-cache-status: HIT\r\nvideocdnx: NO\r\nnode: PHP\r\nservedby: PHPVX\r\ncache-control: public, max-age=30, immutable, no-transform\r\npriority: u=3,i=?0\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b108c749fae569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.176Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Oct 2025 23:40:35 GMT","end":"Tue, 27 Jan 2026 23:40:34 GMT"},"fingerprint":{"sha1":"AA:22:33:AC:0A:FC:0D:31:C5:9F:92:99:20:7A:02:E4:46:E3:08:8C","sha256":"72:5A:79:00:74:D1:90:EF:9A:D3:3F:01:E6:E5:14:1D:41:4F:F2:28:D3:FD:4C:AA:70:DE:D8:BE:C2:15:3F:EE"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 20 Dec 2025 16:34:41 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 32181\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 8134a8431315d0d87beb8c4dddc6b430\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85379,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"b3a5ba94d627e64a77c0e11eaffc96ed","sha1":"f7358693b31e44211dd98b5aa0dc2a3f423286aa","sha256":"600f01dd96f043e58e0e70a82afbba6ffe0923d836f6293c1e6fc1cb5b074d34","sha512":"64800bcce3e1a65638dfedfe22f205b51725865db3332be95a142e39e4cb40f57358d0c4c01ebb366b8da56aa978b6c7ee992e2c27563bac76c3998014c3d64b","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRC:nPncLBSUBULGVTfGpucE5foM","tlshash":"488395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-11-18T17:36:30.149277Z","last_seen":"2026-04-14T22:04:58.430252Z","times_seen":14015,"resource_available":true,"data":null}},"time_used":185,"timings":{"blocked":59,"dns":3,"connect":17,"send":0,"wait":46,"receive":18,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"preferencenail.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"weirdopt.com/ad/advertisers.js","fqdn":"weirdopt.com","domain":"weirdopt.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.673Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"weirdopt.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Thu, 30 Oct 2025 01:14:37 GMT","end":"Wed, 28 Jan 2026 01:14:36 GMT"},"fingerprint":{"sha1":"5A:67:AA:88:D5:BE:C4:00:42:86:CC:4E:FC:E7:73:FE:CB:85:71:60","sha256":"F5:6C:A4:39:AC:04:F6:11:7E:DB:94:93:4C:93:FC:EC:A2:B4:4E:A4:FE:19:8E:22:C0:D8:D4:84:67:37:70:C0"}}},"request":{"raw":"GET /ad/advertisers.js HTTP/1.1\r\nHost: weirdopt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 20 Dec 2025 16:34:41 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: d31b258407d9472f6b1d8eec31b9bf9d\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":142,"timings":{"blocked":60,"dns":0,"connect":17,"send":0,"wait":19,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"weirdopt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"uf.pegboxrebozo.com/rRO6j2xLzB2XgW/69521","fqdn":"uf.pegboxrebozo.com","domain":"pegboxrebozo.com","tld":"com"},"ip":{"addr":"172.255.106.134","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:40.635Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uf.pegboxrebozo.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 24 Oct 2025 06:18:01 GMT","end":"Thu, 22 Jan 2026 06:18:00 GMT"},"fingerprint":{"sha1":"80:BC:03:0E:38:C0:E8:95:90:39:81:D3:44:C0:CC:70:D7:3D:9F:EE","sha256":"4D:04:D4:BF:26:3C:E9:23:2B:13:3C:91:79:9E:4D:61:2E:75:5F:82:94:C4:48:2D:81:1E:25:7E:00:49:63:66"}}},"request":{"raw":"GET /rRO6j2xLzB2XgW/69521 HTTP/1.1\r\nHost: uf.pegboxrebozo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 20 Dec 2025 16:34:40 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://ovogoal.cfd\r\naccess-control-allow-headers: content-type, gyfr29qt4j80vdr0zhsj, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Sun, 21-Dec-2025 16:34:40 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJxjYGBgEuEXZMosEOSxNNSzNNAzMdIzNDURZEwXZPLzF2RKzhNk88svKk%2BsFGQsEmQyMBZkKsoT5PYvzslXcM4vzSsBiicLsoD4goyZgnxOOZkVCsH5OaUlmfl5xYJMQMzpnJiUk6rvEuwjyFjAxijIVJIPIotTRBgEGcvYJASZchJ5HHw%2Fv9qcvuAnkJPP46BavzE63G61IFNBsSCLgaGpIQCHOyne; expires=Sun, 21-Dec-2025 16:34:40 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-14T21:50:31.994152Z","times_seen":15515,"resource_available":true,"data":null}},"time_used":540,"timings":{"blocked":259,"dns":215,"connect":17,"send":0,"wait":21,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"uf.pegboxrebozo.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/premiumtv/ovogoal.php?id=756","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.468Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicplayplay.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 02 Nov 2025 14:31:24 GMT","end":"Sat, 31 Jan 2026 15:29:48 GMT"},"fingerprint":{"sha1":"A5:FB:B7:D5:F7:97:99:5F:29:24:1E:AF:5C:4F:8D:FD:02:B7:B1:59","sha256":"4A:23:D3:85:6E:5D:20:18:A9:78:2F:05:39:CB:87:D6:9B:BF:85:CC:06:40:BF:E8:C7:4D:CC:CD:30:34:96:4E"}}},"request":{"raw":"GET /premiumtv/ovogoal.php?id=756 HTTP/1.1\r\nHost: epicplayplay.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nx-cacheable: YES, YES\r\nx-cache-status: MISS\r\nvideocdnx: NO\r\nnode: PHP\r\nservedby: PHPVX\r\ncache-control: public, max-age=30, immutable, no-transform\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xg3DyUr9URlMtAmfPSC2BI%2F68eRMVp%2Flu2uJchvExU35nCz2FWqG8R%2BR819Ho8vm0WHuafS1MTcJKKv4R6xnBD3uM9%2FK8K5z7d3okSRS\"}]}\r\ncf-ray: 9b108c718b1e56bd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}],"data":{"size":76932,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (28049), with CRLF line terminators","md5":"93500e8d5f4eb9bb047ebfcb249eecf6","sha1":"99d5b9eb6441c56fc3c5dc0305b9ea0ad54de9a3","sha256":"884e756e3a7ee8335476c150e99f2a6bb996e6621d6d1c35abacb8c15a025893","sha512":"b1bb59fecdbe06dd11250066e6260164977b99d8c74434c09f210d7ef96eb5c814e2b56bba282f82c2d5ed8ba6cbea635f9a68e0360390b1ee4b8a3fabcb2cf1","ssdeep":"1536:m2ygcGrlbfmSXDhKUKif45f/ppN34ggP6p1W+XCVVlPPx/n:m7/GroSN1Kif4tgPgjc","tlshash":"a3732902389574294236816156af6518f0a90d97328fc2b5fa5cea667ff2934c0b3ffc","first_seen":"2025-12-20T16:35:11.606538Z","last_seen":"2025-12-20T16:35:11.606538Z","times_seen":1,"resource_available":false,"data":null}},"time_used":150,"timings":{"blocked":55,"dns":20,"connect":1,"send":0,"wait":39,"receive":0,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"172.67.154.171","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bvtpk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 07 Nov 2025 20:07:09 GMT","end":"Thu, 05 Feb 2026 21:05:30 GMT"},"fingerprint":{"sha1":"D2:20:C9:EE:4B:2D:3A:82:43:E2:14:9E:C3:25:30:01:9F:8F:BB:C3","sha256":"D2:57:0B:6C:75:32:2D:6D:C0:F7:1B:32:FC:56:BA:06:7F:64:4B:FC:95:E2:29:A1:4F:59:5C:DD:D3:8D:37:7B"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: bvtpk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-trace-id: a4d2f52d93e18230caf3f76501db6fc6\r\ncache-control: public, max-age=600, s-maxage=1800\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 38\r\ncf-cache-status: HIT\r\nlast-modified: Sat, 20 Dec 2025 16:34:02 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GamhNzEkZhTES0ORUMBneC5y0kLRuylVGCBeVg6FBt6Oa8QohMxY%2BkV%2BGHU0XxxT1x%2FNGBRj%2Fxz4YlzUMfS%2BXtLBEIPrcPQ%3D\"}]}\r\ncf-ray: 9b108c716b9456c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":112428,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6105483638bf5e8a75281fe5e1724593","sha1":"eda0189eb558b183b96f986dc5d19383f38d0cef","sha256":"14de16fbe0c19c617049209624382077fc976dec843e4c62b49ba9ad492231f0","sha512":"13b76442e6e3e2af5315da9b98e1ae6902c966521edf1b12373e7fc488902639d73b5fb515c085c6ee0c6e666ffbf4adda3acfb8ed8f5353fbea2cdec7771133","ssdeep":"3072:tXki1TG8YlAVRzIqwL76WJHpYx85/MVzUL:6WTGvlVqw5JJdQza","tlshash":"7db3295673a277d21a6e60d42d57d60573fd8c80488f8867e3c8787972d081cd3abbea","first_seen":"2025-12-18T11:35:07.715482Z","last_seen":"2026-01-08T09:54:56.313421Z","times_seen":771,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":50,"dns":22,"connect":1,"send":0,"wait":6,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"bvtpk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"adexchangeclear.com/script/suurl5.php?r=6707202\u0026cbur=0.3440845973586546\u0026cbiframe=0\u0026cbWidth=1280\u0026cbHeight=1024\u0026cbtitle=\u0026cbpage=https%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026cbref=\u0026cbdescription=\u0026cbkeywords=\u0026cbcdn=bklihaatruags.website\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026ts=1766248481306\u0026srs=305c05ee9e830e44684999bef041512d\u0026atv=74.0\u0026btp=0.01\u0026abtg=1\u0026adbv=3-cdn-js","fqdn":"adexchangeclear.com","domain":"adexchangeclear.com","tld":"com"},"ip":{"addr":"104.21.78.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:42.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adexchangeclear.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Dec 2025 23:08:46 GMT","end":"Sat, 07 Mar 2026 00:07:30 GMT"},"fingerprint":{"sha1":"D5:B9:71:11:A1:C5:BD:EA:60:68:49:87:01:4B:0B:CB:81:8B:FA:6C","sha256":"66:19:A7:E1:FD:B7:41:C7:AE:CB:33:20:81:70:04:52:48:C8:D0:0E:66:96:B3:F7:FE:B5:FC:10:FE:48:0A:44"}}},"request":{"raw":"GET /script/suurl5.php?r=6707202\u0026cbur=0.3440845973586546\u0026cbiframe=0\u0026cbWidth=1280\u0026cbHeight=1024\u0026cbtitle=\u0026cbpage=https%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026cbref=\u0026cbdescription=\u0026cbkeywords=\u0026cbcdn=bklihaatruags.website\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026ts=1766248481306\u0026srs=305c05ee9e830e44684999bef041512d\u0026atv=74.0\u0026btp=0.01\u0026abtg=1\u0026adbv=3-cdn-js HTTP/1.1\r\nHost: adexchangeclear.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ovogoal.cfd/\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncontent-encoding: gzip\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SVyJKr5Z2SNxaVluK203eJJ1oJkrL9dj4FL808P4xIhFJqsxh6m2%2BndcMdk8AazO89eS0megDfbZBUGbQPLE%2BBpV%2FAIPqwhXCa2muvSSrt9X\"}]}\r\ncf-ray: 9b108c74df1eb4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":1026,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"36b6337a6beae3c30b16068aa86f4825","sha1":"0be61eed4c89e81b69f4e88eca229d8a262d0080","sha256":"21fa037b3f9d99e3643e5f4566250234523c249a8045c3e40441e7a222e6675a","sha512":"a2123635ee1853656c363e3472baff4538444b47f6f15b15f0bdc8af05486277de5242ff1b17226e0d5fd27838939580a53ee105c08ac5ad1d30e2ddcd07ef96","ssdeep":"","tlshash":"0111a8636879790fab0f1ec402abb81cb8d234678954746a64807969816adc5254e513","first_seen":"2025-12-20T16:35:11.608201Z","last_seen":"2025-12-20T16:35:11.608201Z","times_seen":1,"resource_available":false,"data":null}},"time_used":246,"timings":{"blocked":13,"dns":22,"connect":1,"send":0,"wait":185,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"adexchangeclear.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/blast.js","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:42.073Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicplayplay.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 02 Nov 2025 14:31:24 GMT","end":"Sat, 31 Jan 2026 15:29:48 GMT"},"fingerprint":{"sha1":"A5:FB:B7:D5:F7:97:99:5F:29:24:1E:AF:5C:4F:8D:FD:02:B7:B1:59","sha256":"4A:23:D3:85:6E:5D:20:18:A9:78:2F:05:39:CB:87:D6:9B:BF:85:CC:06:40:BF:E8:C7:4D:CC:CD:30:34:96:4E"}}},"request":{"raw":"GET /blast.js HTTP/1.1\r\nHost: epicplayplay.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nlast-modified: Thu, 17 Oct 2024 06:47:40 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nexpires: Thu, 17 Dec 2026 18:33:20 GMT\r\nage: 252081\r\ncf-cache-status: HIT\r\netag: W/\"6710b30c-13040\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=w%2FNuqHLtFnxHBwT1nHz4aGdC20cXKjZjKCKmMto7EVBIZt38pzZw0Z3iq4YILjMzd8aYUzArArsQHAFiOfxAqWZHcGwKY6Agwn3ro4vI\"}]}\r\ncf-ray: 9b108c74efb1569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":77888,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"091faec928970e76d37a3601c19fcf8a","sha1":"6441e8eebe90eb8d4a40e7c25440ff99caba3520","sha256":"eb06375118b1eb73f43b8f1851472008f84999a1b27359c075bf5da6feef9a12","sha512":"0065b4e5167b85abb85d4af6be22853d1ea16e9c0d5420173f356dd7a980374487405d8561a4a5df32dd68d2956af6c7a3f099776994e2cf6a3b0eb8df1c3277","ssdeep":"1536:HnyiwA6dLK4I7T8IVCJ0Xiyu/lpvd7TN8+Prp2s:HnyiwFLzI7AeSymrpTNZrpN","tlshash":"16732ec177d5bc8212872b77731bb1e6e82a9dd87188488ef104bc90f4bda12fae4575","first_seen":"2023-03-08T14:53:38Z","last_seen":"2026-04-14T15:04:26.146215Z","times_seen":1586,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.680Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 26 Oct 2025 15:37:01 GMT","end":"Sat, 24 Jan 2026 16:36:49 GMT"},"fingerprint":{"sha1":"84:49:FF:DC:BD:D8:BA:3D:2F:25:0B:EF:CA:E4:6D:73:79:8C:F9:7D","sha256":"AF:21:94:4D:14:07:CF:FC:E5:3C:3C:F4:AC:47:9E:83:98:6A:62:87:FB:8C:27:43:25:FB:97:CC:47:15:99:4A"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://ovogoal.cfd\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=0802a5c13c6e45c0e214fe50a9d15b56; expires=Sun, 20 Dec 2026 16:34:41 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 9b108c72aaa12678-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"ca9acce05baa27ee374f278725175465","sha1":"cc1d99e927c2cc036a5f5868752cedb12939bfd2","sha256":"37ff8592b6fd0c15b7cd6909426b507345d1c741ee28b9183822b67a31a092e9","sha512":"f9aa7ff236e5563a73f84785dc5ab1fa0d6d118e1e2b02cdfabb4e411838e495a3564394aa8df4ca0694b8fb67c4096b8256b0ef8822aece8771065f0fc8bfda","ssdeep":"","tlshash":"19a0028846dc55a642803d1aae668741a181154664049758dbf5e10256c668ca546351","first_seen":"2025-12-20T16:35:11.609654Z","last_seen":"2025-12-20T16:35:11.609654Z","times_seen":1,"resource_available":false,"data":null}},"time_used":95,"timings":{"blocked":29,"dns":1,"connect":1,"send":0,"wait":37,"receive":0,"ssl":22},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.194.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\nage: 977535\r\nx-served-by: cache-lga21931-LGA, cache-hel1410030-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 71, 97593\r\nx-timer: S1766248482.874071,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-14T22:55:52.159922Z","times_seen":449866,"resource_available":true,"data":null}},"time_used":218,"timings":{"blocked":78,"dns":0,"connect":27,"send":0,"wait":28,"receive":8,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/disable-devtool@latest/disable-devtool.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/disable-devtool@latest/disable-devtool.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 0.3.9\r\nx-jsd-version-type: version\r\netag: W/\"4514-YJEJ2C3rDH3T2dISgI3LoFSM49E\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\nage: 12715\r\nx-served-by: cache-fra-eddf8230057-FRA, cache-hel1410030-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 6646\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":17684,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (17663)","md5":"7fa174926682313cc5a067077b0bb22d","sha1":"609109d82deb0c7dd3d9d212808dcba0548ce3d1","sha256":"5a7b9b2c807f85575c9ebc1f508e849b53430870b2d0fb6c02b2de3df661cb63","sha512":"83a593d4b8648b78031259becd96b4c33226e9462c2e26013ee0746ff58a7b710159d0d380d001d7740e9485ee346491c16e3fdb0d334f5b6cfabe6f90cda9b6","ssdeep":"192:m+5ekRvDLCpBK+BpP78nPk6O9ShgzsqcSYV0GtI+uwicvsbIUiJE2KmnyKU:mLiPCvRvT8nPk6cSCzsqGVJeZcsb8S9","tlshash":"0582c4ccb48270715b77a9e9507f454ab23aae96888c8040f13ed8e42c7c56ec267f7d","first_seen":"2025-08-02T03:49:54.562881Z","last_seen":"2026-04-14T16:08:11.54244Z","times_seen":3700,"resource_available":true,"data":null}},"time_used":133,"timings":{"blocked":20,"dns":1,"connect":42,"send":0,"wait":28,"receive":1,"ssl":36},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chevy.giokko.ru/server_lookup?channel_id=premium756","fqdn":"chevy.giokko.ru","domain":"giokko.ru","tld":"ru"},"ip":{"addr":"104.21.29.196","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:42.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"giokko.ru","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 26 Nov 2025 06:24:12 GMT","end":"Tue, 24 Feb 2026 07:24:09 GMT"},"fingerprint":{"sha1":"40:B1:8F:04:2E:18:63:CA:98:EC:4F:15:A1:16:1E:F4:DF:45:06:10","sha256":"83:3A:67:C1:1C:10:D3:BC:07:1C:FB:86:E8:FA:74:FF:C2:CE:B1:E9:49:88:AF:B2:7F:F9:20:EB:36:D3:BB:EF"}}},"request":{"raw":"GET /server_lookup?channel_id=premium756 HTTP/1.1\r\nHost: chevy.giokko.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://epicplayplay.cfd/\r\nOrigin: https://epicplayplay.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: application/json\r\ncache-control: no-cache, no-store, must-revalidate\r\nx-cache: HIT\r\nvary: origin, access-control-request-method, access-control-request-headers, accept-encoding\r\naccess-control-allow-origin: *\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 19 Dec 2025 20:44:59 GMT\r\nno-cache: no-cache\r\nage: 71382\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LFhmT176r3fKMlwiUp47B8I5G5hwYLMxacE1xob31sO%2FZ2kWOPkndTvQfVHUjJ%2FaJZy47w%2B7zVr0dHVAk%2BmXp06ReOBtFwC5C3sm14Y%3D\"}]}\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: 9b108c757b7f56cb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"df645d1bb0e03c01cac6c943b91aacd3","sha1":"36ce4c5e7c013a7557fd9bc87f54d04429bfea78","sha256":"3c01b82c82b48ee859dd9dac98a7c3ebafaec1e977f4a46171563dca3b76c2b4","sha512":"40cb0980d51a4e60f78f59383fdedd32406cf80673b51caf3502dbf8ca5d8d4b5155adf53a925ed3983351e5b0bf24303f44fcd552ecedcb6b14f1cf584c300a","ssdeep":"","tlshash":"7f70008c88aa802a0888c8a80cc0200a03080020800828000280880282030000020000","first_seen":"2025-04-17T21:34:07.990473Z","last_seen":"2026-03-04T19:53:50.8165Z","times_seen":18,"resource_available":false,"data":null}},"time_used":81,"timings":{"blocked":37,"dns":21,"connect":1,"send":0,"wait":6,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"t.dtscout.com/i/?l=https%3A%2F%2Fepicplayplay.cfd%2Fpremiumtv%2Fovogoal.php%3Fid%3D756\u0026j=https%3A%2F%2Fovogoal.cfd%2F\u0026wk=z40275d9u2","fqdn":"t.dtscout.com","domain":"dtscout.com","tld":"com"},"ip":{"addr":"172.67.70.180","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:42.148Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dtscout.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 29 Oct 2025 14:52:24 GMT","end":"Tue, 27 Jan 2026 15:52:11 GMT"},"fingerprint":{"sha1":"55:7B:E0:68:13:20:30:7F:FF:16:1D:2C:C4:02:9B:46:5B:24:24:5F","sha256":"F6:CA:72:AB:FD:E5:73:70:51:1F:1D:2B:5F:83:61:EA:B1:1A:A1:96:38:39:3E:41:88:5B:F9:EE:BC:F6:D1:03"}}},"request":{"raw":"GET /i/?l=https%3A%2F%2Fepicplayplay.cfd%2Fpremiumtv%2Fovogoal.php%3Fid%3D756\u0026j=https%3A%2F%2Fovogoal.cfd%2F\u0026wk=z40275d9u2 HTTP/1.1\r\nHost: t.dtscout.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-s: mtl2\r\nset-cookie: df=1766248482; Domain=dtscout.com; Expires=Mon, 30-Mar-2026 16:34:42 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure\r\nx-t: 0.482\r\nexpires: Sat, 20 Dec 2025 16:34:41 GMT\r\ncache-control: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fXtbm72KTadA91UVUlSVKFPFLT%2B8j9sblqFI%2BHnK6T4tAvJTnKzft4qiLhPLk414PjDpJLafUYZW7TFmlixD%2Fxlblp172mWn%2Bj8%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9b108c75be69568f-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2292,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2077)","md5":"8450c234da2df92a0c33a47c5aabf6e6","sha1":"0ea50308805f927f1e9ce37a96d44f27e01cdf8e","sha256":"c67ad82f6fe5a742115d0d041e403c18df8da6486fa0dd5fc785d4bb58458ac9","sha512":"1ea70b0b047651af5f5496bdbfac4574dad62bef73132ad667c194c375382c36ea62c24f37a4c2882d6e644846f5b866720a8b33cad3e4e650fa6b9fa0331de8","ssdeep":"","tlshash":"1f41880bb5e5347803e2006965ff635fb5330928bc5784c08596dc04fd749fad1b6eaa","first_seen":"2025-11-28T22:59:20.195769Z","last_seen":"2026-04-14T21:32:53.982365Z","times_seen":2649,"resource_available":true,"data":null}},"time_used":383,"timings":{"blocked":53,"dns":33,"connect":1,"send":0,"wait":276,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kzt2afc1rp52.com/9f/f3/5b/9ff35b0cd63b95f2925204c4dd0a79c3.js","fqdn":"kzt2afc1rp52.com","domain":"kzt2afc1rp52.com","tld":"com"},"ip":{"addr":"172.240.127.243","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:40.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kzt2afc1rp52.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 02 Dec 2025 22:13:37 GMT","end":"Mon, 02 Mar 2026 22:13:36 GMT"},"fingerprint":{"sha1":"50:C7:67:7D:BA:F1:12:EB:1F:AA:1B:F8:B9:E8:03:5A:12:3C:84:D2","sha256":"CD:CB:DE:73:B2:E7:C9:1D:5C:9E:A3:37:51:9B:9D:45:00:A0:0B:BE:29:AD:B7:58:98:90:1B:63:E7:39:40:EC"}}},"request":{"raw":"GET /9f/f3/5b/9ff35b0cd63b95f2925204c4dd0a79c3.js HTTP/1.1\r\nHost: kzt2afc1rp52.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 20 Dec 2025 16:34:40 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 38165\r\nConnection: keep-alive\r\ncontent-encoding: gzip\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccess-control-allow-origin: *\r\naccept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nx-envoy-upstream-service-time: 3\r\nHost: kzt2afc1rp52.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: bccc18ebb1c1e6271880f33a225bb27a\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Envoy","description":"Envoy is an open-source edge and service proxy, designed for cloud-native applications.","website":"https://www.envoyproxy.io/","common_platform_enumeration":"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*","icon":"Envoy.png","categories":["Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":106588,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"6d9f79c1b634d16922640308b382bcf3","sha1":"f50b63e8e6cd970d2ead79781420125c3b688c0b","sha256":"4727cfea484cb3a0f92bdf4141797f4f4bb739e426597309308dc85619c057bd","sha512":"d10f36ed143af4b618e1fa2ad9940a264e07c46ae2b9356866a80a4a53400ff96d2eed18cd5308df3c1f1c05956c6c3fdedc79c0febe65df080ee23eeaca9aee","ssdeep":"1536:EpOvTY8Afd1ow5ZEUjHzQSF63R2LbqKYmEqMTd01yLVH2WQgPrNQCld5h4s9imfh:qXLD33COgu+bAKaSv","tlshash":"8da3c9d97f40f06d4271607a213fa00af25b0e46688cd59ce117f6a42fa865fe57ef28","first_seen":"2025-12-20T16:35:11.613236Z","last_seen":"2025-12-23T01:13:04.535693Z","times_seen":3,"resource_available":true,"data":null}},"time_used":818,"timings":{"blocked":312,"dns":28,"connect":92,"send":0,"wait":99,"receive":92,"ssl":184},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"kzt2afc1rp52.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"kzt2afc1rp52.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s10.histats.com/js15_as.js","fqdn":"s10.histats.com","domain":"histats.com","tld":"com"},"ip":{"addr":"104.20.10.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:40.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s10.histats.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 08 Dec 2025 07:52:46 GMT","end":"Sun, 08 Mar 2026 08:52:42 GMT"},"fingerprint":{"sha1":"28:9D:A0:7E:4B:8B:01:63:2E:4C:09:AB:46:D7:CA:32:A2:52:55:AE","sha256":"BE:12:71:06:3B:77:18:A2:E1:AC:B6:A7:CB:1F:75:77:AB:4A:40:3B:9A:78:46:59:41:9C:26:E2:B9:6A:04:68"}}},"request":{"raw":"GET /js15_as.js HTTP/1.1\r\nHost: s10.histats.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:40 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 4547\r\ncontent-encoding: gzip\r\netag: \"-375139978\"\r\nlast-modified: Thu, 16 Apr 2020 10:44:16 GMT\r\nvary: Accept-Encoding\r\nage: 34998\r\naccept-ranges: bytes\r\ncache-control: max-age=28800\r\ncf-cache-status: HIT\r\nserver: cloudflare\r\ncf-ray: 9b108c6c5d0db4ed-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11440,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (11440), with no line terminators","md5":"e959fbdd13def4b9a9d0a5fc9a7de4d4","sha1":"1e39712307e3673b40c0bdb8c7d3e86a3e8b60a0","sha256":"2defe59e357a7d0683c8283ac42841db404a0884cae2eaecebf4b676e559dede","sha512":"590b22282634411002c9467c6c0d20d27979f841bffcf893e715a2b61301a873457a9cbe0a765a11592e7f5cb81fc50d5bd436bd5d47dc93bfb776515b02e2c9","ssdeep":"192:TixaOdP2DahLeKkda6nGvCvsojELj2n04UwXNAfLwUW1WuYx6jomrYZJp2XmIR2z:mxaOdWyLwaAWj2nvUwXNAfLwUWAuYx6e","tlshash":"7532969c708170066953e1a5123f413fa27b0df92dfe5558dae0b0b5bd7884ec0abbe9","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-04-12T22:21:08.814415Z","times_seen":1182,"resource_available":true,"data":null}},"time_used":168,"timings":{"blocked":77,"dns":53,"connect":1,"send":0,"wait":5,"receive":1,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"protrafficinspector.com/stats","fqdn":"protrafficinspector.com","domain":"protrafficinspector.com","tld":"com"},"ip":{"addr":"3.66.182.197","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.177Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"traffinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 19 Nov 2025 00:00:00 GMT","end":"Fri, 18 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"11:9F:BE:35:27:7B:7B:85:C9:B3:FF:0E:CA:F6:0D:13:B0:A9:A0:BB","sha256":"81:A4:38:32:0D:BC:66:C8:7B:6D:08:BC:93:91:76:73:A2:BD:D0:53:3C:BF:2F:FD:B8:87:00:C6:EC:3B:6C:77"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: protrafficinspector.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://ovogoal.cfd\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=61193c4a-e164-4347-acd1-763e8cbdfce5:3:1; expires=Tue, 18 Dec 2035 16:34:41 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"85771e83553ae2e438c65dc88548c30f","sha1":"d9217f25d9861b133bd651a20fab8c9422a275fc","sha256":"7f88f216cab2ecd35b659a8c7c96fd7ce3bb81e827ed12ce1ba0ebe9ea18a628","sha512":"1bbed122027ab4e5344811c829a629fb8c5e8f548b9dbb983293a95f68b8ea2c9ecae6c9fcf0eaba3518123bf962a732c1f2850bd27b5e1ebe9e83391e302bd7","ssdeep":"","tlshash":"a490040031d34dc55101c05d7f050c045d10547cc351d05f0411cf45c04177dc034c45","first_seen":"2025-12-20T16:35:11.614694Z","last_seen":"2025-12-20T16:35:11.614694Z","times_seen":1,"resource_available":false,"data":null}},"time_used":303,"timings":{"blocked":136,"dns":32,"connect":21,"send":0,"wait":28,"receive":1,"ssl":81},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usrpubtrk.com/ut/hb.php?cb=0.9194780608251486\u0026v=1","fqdn":"usrpubtrk.com","domain":"usrpubtrk.com","tld":"com"},"ip":{"addr":"104.21.92.33","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:42.048Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usrpubtrk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 10 Dec 2025 12:57:52 GMT","end":"Tue, 10 Mar 2026 13:56:16 GMT"},"fingerprint":{"sha1":"77:2A:71:0C:1C:F9:2B:14:04:DB:13:5F:A6:57:67:6D:B3:A9:A0:95","sha256":"E0:53:FF:DF:EC:31:75:79:08:DF:B9:B1:56:18:5A:48:15:62:EF:8B:BB:4C:1B:05:1C:E8:DD:3F:0C:A4:80:41"}}},"request":{"raw":"POST /ut/hb.php?cb=0.9194780608251486\u0026v=1 HTTP/1.1\r\nHost: usrpubtrk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain; charset=utf-8\r\nContent-Length: 1411\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1411,"data":"{\"clientHints\":{},\"isScrollable\":0,\"totalClicks\":0,\"sessionLength\":1,\"ippMissclicks\":0,\"visible\":1,\"caught\":0,\"lastevent\":0,\"isFullscreen\":0,\"isTabFocused\":1,\"eventImps\":0,\"retryCounts\":0,\"isScrolled\":1,\"isMouseMoved\":0,\"pagePercentageSeen\":99,\"belowTheFoldSeen\":0,\"touchEnd\":0,\"touchMove\":0,\"clicksByType\":{\"idle\":0,\"input\":0,\"video\":0,\"button\":0,\"link\":0,\"img\":0},\"browsingTopics\":[],\"ufp\":\"Win32/Mozilla/Netscape/true/false/1280x10240en-USunknown4824 bits\",\"sessionStartTime\":1766248481,\"sessionId\":\"305c05ee9e830e44684999bef041512d\",\"timeZoneOffset\":0,\"zones\":[],\"pUrl\":\"https%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\",\"pReferrer\":\"\",\"pTitle\":\"\",\"pDescription\":\"\",\"pKeywords\":\"\",\"pHasIframes\":4,\"pWidth\":1280,\"pHeight\":1035,\"vWidth\":1280,\"vHeight\":1024,\"inIframe\":0,\"bsd\":\"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\",\"sentTimestamp\":1766248481821}"}},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sgCYNHsq%2F85qxhKcL99dOBClXid6%2F%2F%2BMe5QSX5uZrb4dV4k5Cs6uqd91dW0lfB8VXvjSOl%2FZkgjv13FNjDgdRQxJdsis%2B4q9Lhk%2ByCs%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b108c74ef6b4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":220,"timings":{"blocked":22,"dns":33,"connect":1,"send":0,"wait":144,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"usrpubtrk.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"oyo4d.com/5/6712285/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802a5c13c6e45c0e214fe50a9d15b56\u0026dmn=x7i0.com\u0026tt=2\u0026ix=0","fqdn":"oyo4d.com","domain":"oyo4d.com","tld":"com"},"ip":{"addr":"139.45.197.118","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:43.180Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"oyo4d.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Oct 2025 05:07:35 GMT","end":"Sun, 18 Jan 2026 05:07:34 GMT"},"fingerprint":{"sha1":"7E:66:A3:16:7D:47:BC:6E:0F:31:AE:FA:65:A3:03:19:9B:0B:42:93","sha256":"49:F7:10:A4:75:B7:7C:34:65:80:9D:77:29:42:C6:F5:F9:80:CA:7B:2B:A7:5B:D6:12:3A:D7:1C:39:16:7F:65"}}},"request":{"raw":"POST /5/6712285/?oo=1\u0026js_build=iclick-v1.1670.0\u0026userId=0802a5c13c6e45c0e214fe50a9d15b56\u0026dmn=x7i0.com\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: oyo4d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 3418\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":3418,"data":"{\"sync\":\"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\",\"async\":\"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\",\"quality_options\":{\"hil\":1,\"jsp\":1,\"ng\":false,\"ix\":false,\"pt\":false,\"np\":false,\"nw\":true,\"nb\":true,\"sw\":1280,\"sh\":1024,\"pl\":\"https://ovogoal.cfd/hubplay/stream-756.php\",\"wy\":0,\"wx\":0,\"ww\":1280,\"wh\":1024,\"cw\":1280,\"wiw\":1280,\"wih\":1024,\"wfc\":4,\"sah\":1024,\"navlng\":\"en-US\",\"drf\":\"\",\"wgl\":\"llvmpipe\",\"tb\":false,\"btz\":\"UTC\",\"bto\":0,\"pnt\":0,\"pnrc\":0,\"bml\":0,\"bmi\":false,\"vsbl\":true},\"client_hints\":{}}"}},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Sat, 20 Dec 2025 16:34:43 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://ovogoal.cfd\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":193,"timings":{"blocked":80,"dns":15,"connect":28,"send":0,"wait":33,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adexchangeclear.com/script/interstitial.php?r=9830542\u0026srs=305c05ee9e830e44684999bef041512d\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026cbpage=https%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026atv=74.0\u0026cbref=\u0026btp=0.01\u0026pblcz=6707202\u0026abtg=1\u0026adbv=3-cdn-js","fqdn":"adexchangeclear.com","domain":"adexchangeclear.com","tld":"com"},"ip":{"addr":"104.21.78.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:43.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adexchangeclear.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 06 Dec 2025 23:08:46 GMT","end":"Sat, 07 Mar 2026 00:07:30 GMT"},"fingerprint":{"sha1":"D5:B9:71:11:A1:C5:BD:EA:60:68:49:87:01:4B:0B:CB:81:8B:FA:6C","sha256":"66:19:A7:E1:FD:B7:41:C7:AE:CB:33:20:81:70:04:52:48:C8:D0:0E:66:96:B3:F7:FE:B5:FC:10:FE:48:0A:44"}}},"request":{"raw":"GET /script/interstitial.php?r=9830542\u0026srs=305c05ee9e830e44684999bef041512d\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026cbpage=https%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026atv=74.0\u0026cbref=\u0026btp=0.01\u0026pblcz=6707202\u0026abtg=1\u0026adbv=3-cdn-js HTTP/1.1\r\nHost: adexchangeclear.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://ovogoal.cfd/\r\nOrigin: https://ovogoal.cfd\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:43 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Content-Type\r\ncontent-encoding: gzip\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9IPo86J9asP068B%2BLJrHdrVuozKUBvaGRpnucjgjDHvnDe4s5%2FXjdpOwAB8Gz2v33yurUFRsdC6sSsZwI9f6eomjnQeGR4ixAHi%2BUXk4ccZV\"}]}\r\ncf-ray: 9b108c7c0decb4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":1389,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"e3c453e766526e2fa268b8e0a9c78bba","sha1":"a12fa49988ee37af823f844ae617be7b31474b5e","sha256":"231926113af9613f193f54ecbd714d83e306a511fa2d8e822dcbc7f811725323","sha512":"e1eb6885cb79e0e8e9b378c744b9fd3585b87331ae166a499c523c148b789532982e2035ea6b9e595b11a4c5fa834d17e2da25bfa9c8616371b9fee8a96144ce","ssdeep":"","tlshash":"7a21b96e58fc4a982e0aa0d5c44fb7ad5f0b36127e147c1540e6ad5d09b84981909993","first_seen":"2025-12-20T16:35:11.615538Z","last_seen":"2025-12-20T16:35:11.615538Z","times_seen":1,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":196,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-12-20","alert":"Sinkholed","trigger":"adexchangeclear.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-20T16:34:39.742Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ovogoal.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 13:23:28 GMT","end":"Thu, 19 Feb 2026 14:22:14 GMT"},"fingerprint":{"sha1":"BF:1F:14:1E:EB:52:29:76:36:2C:16:F0:EE:49:11:8F:8B:BC:44:56","sha256":"19:93:0D:B5:BE:74:35:4E:3C:63:AC:58:FB:74:9D:24:66:94:E7:6B:79:F0:77:D2:6B:D1:A8:03:51:C8:AB:E4"}}},"request":{"raw":"GET /hubplay/stream-756.php HTTP/1.1\r\nHost: ovogoal.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 20 Dec 2025 16:34:40 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bFZJxGyzQkmNnlOqsI2oktWMAgRWJIsk5zH84vgd0RYQAd9i5hUFksyPoDq01pyO8Lgp1q%2F52%2B7Bh25fuosd7zX0KOlL9GnJVw%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9b108c670f0f56b5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"C3.js","description":"D3 based reusable chart library","website":"https://c3js.org/","common_platform_enumeration":"","icon":"C3.js.png","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":650660,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (64503)","md5":"5c60d55d5d0aab4248c1696762b0ad7f","sha1":"ef2831f9dcac8c16f5c4aec9053f0c85b9c5d552","sha256":"be38090abd1be8141ac36921c41e590ad0662d107c0db1a2f789e016360fdf68","sha512":"a2700ab7622177ddd676235aace2723f9b83015dec5142b9fcc09c1aef5757e4bbe872d515dd19d0d08aac6d97fc2b543303b2c77e957b6ec0fb127464b598ab","ssdeep":"12288:NdqeHntKnhYZiahM40lN0R5Jr9OnaYuqFFObnpe9AUTpKWZVfmuenM5xkI:NHtbhM40/0RRIZDFObnpe9AUTpKWZVaI","tlshash":"fad4611837845986371b4ebb733fa5d1e40b38da7609488ff6087c65a1965a3fbe8331","first_seen":"2025-12-20T16:35:11.616385Z","last_seen":"2025-12-20T16:35:11.616385Z","times_seen":1,"resource_available":false,"data":null}},"time_used":658,"timings":{"blocked":103,"dns":76,"connect":1,"send":0,"wait":450,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s4.histats.com/stats/0.php?2162676\u0026@f16\u0026@g1\u0026@h1\u0026@i1\u0026@j1766248480789\u0026@k0\u0026@l1\u0026@m\u0026@n0\u0026@o1000\u0026@q0\u0026@r0\u0026@s0\u0026@ten-US\u0026@u1280\u0026@b1:-46758024\u0026@b3:1766248481\u0026@b4:js15_as.js\u0026@b5:0\u0026@a-_0.2.1\u0026@vhttps%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026@w","fqdn":"s4.histats.com","domain":"histats.com","tld":"com"},"ip":{"addr":"149.56.240.130","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:40.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"histats.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Fri, 10 Oct 2025 10:23:46 GMT","end":"Thu, 08 Jan 2026 10:23:45 GMT"},"fingerprint":{"sha1":"F7:A7:1F:74:37:3C:94:14:D2:5E:22:2C:FE:7C:72:6D:F7:2E:8A:6D","sha256":"B8:55:9C:14:BF:8A:EC:38:73:80:1C:7D:5A:FF:0A:E3:B6:96:ED:DC:47:A4:68:67:C8:5A:52:34:6F:C0:B0:CE"}}},"request":{"raw":"GET /stats/0.php?2162676\u0026@f16\u0026@g1\u0026@h1\u0026@i1\u0026@j1766248480789\u0026@k0\u0026@l1\u0026@m\u0026@n0\u0026@o1000\u0026@q0\u0026@r0\u0026@s0\u0026@ten-US\u0026@u1280\u0026@b1:-46758024\u0026@b3:1766248481\u0026@b4:js15_as.js\u0026@b5:0\u0026@a-_0.2.1\u0026@vhttps%3A%2F%2Fovogoal.cfd%2Fhubplay%2Fstream-756.php\u0026@w HTTP/1.1\r\nHost: s4.histats.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Dec 2025 16:34:21 GMT\r\nContent-Type: text/html;charset=UTF-8\r\nContent-Length: 54\r\nConnection: close\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"c6e5135761fe8f7d15865936decd189b","sha1":"66c6a5926981cc37162acc4da189c6bf803f6c5e","sha256":"211c1978c5e1554275cba52abfb7f0d5cc16a4c45e223a06a540db1b0caabb49","sha512":"a4c60cf8d3b3df3749f6e396cbc967bac340b5681cf98d9bd59b70b2512dd9238890a654382554ed4c5d814020ffd8964d6db674b9812bf31fb2f86d1fdecc42","ssdeep":"","tlshash":"0e900257751591b61560066ed482201515b904981c850690c90044959d429a94d61912","first_seen":"2025-12-20T16:35:11.617337Z","last_seen":"2025-12-20T16:35:11.617337Z","times_seen":1,"resource_available":true,"data":null}},"time_used":707,"timings":{"blocked":305,"dns":15,"connect":96,"send":0,"wait":95,"receive":0,"ssl":193},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ovogoal.cfd/hubplay/stream-756.php","fqdn":"ovogoal.cfd","domain":"ovogoal.cfd","tld":"cfd"},"ip":{"addr":"104.21.93.249","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://ovogoal.cfd/hubplay/stream-756.php","date":"2025-12-20T16:34:41.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ovogoal.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 21 Nov 2025 13:23:28 GMT","end":"Thu, 19 Feb 2026 14:22:14 GMT"},"fingerprint":{"sha1":"BF:1F:14:1E:EB:52:29:76:36:2C:16:F0:EE:49:11:8F:8B:BC:44:56","sha256":"19:93:0D:B5:BE:74:35:4E:3C:63:AC:58:FB:74:9D:24:66:94:E7:6B:79:F0:77:D2:6B:D1:A8:03:51:C8:AB:E4"}}},"request":{"raw":"HEAD /hubplay/stream-756.php HTTP/1.1\r\nHost: ovogoal.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ovogoal.cfd/hubplay/stream-756.php\r\nCookie: HstCfa2162676=1766248480789; HstCla2162676=1766248480789; HstCmu2162676=1766248480789; HstPn2162676=1; HstPt2162676=1; HstCnv2162676=1; HstCns2162676=1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:42 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\npriority: u=3,i=?0\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Nsi7hievdwQmVKk8khIkeLPo4rMzpWTGvPjnzyHSoABHC%2Bs5WN1Ih7WIsayqIxIabFo0HmGmpAnLCgzJp4FUhNytj4q9%2Fj2PkA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9b108c71c8780b69-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-14T22:55:35.021665Z","times_seen":13759648,"resource_available":true,"data":null}},"time_used":740,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":740,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicplayplay.cfd/clappr/clappr.min.js?ss","fqdn":"epicplayplay.cfd","domain":"epicplayplay.cfd","tld":"cfd"},"ip":{"addr":"104.21.0.173","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756","date":"2025-12-20T16:34:41.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicplayplay.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 02 Nov 2025 14:31:24 GMT","end":"Sat, 31 Jan 2026 15:29:48 GMT"},"fingerprint":{"sha1":"A5:FB:B7:D5:F7:97:99:5F:29:24:1E:AF:5C:4F:8D:FD:02:B7:B1:59","sha256":"4A:23:D3:85:6E:5D:20:18:A9:78:2F:05:39:CB:87:D6:9B:BF:85:CC:06:40:BF:E8:C7:4D:CC:CD:30:34:96:4E"}}},"request":{"raw":"GET /clappr/clappr.min.js?ss HTTP/1.1\r\nHost: epicplayplay.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicplayplay.cfd/premiumtv/ovogoal.php?id=756\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 20 Dec 2025 16:34:41 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nlast-modified: Sat, 29 Nov 2025 17:16:36 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000, immutable\r\nexpires: Thu, 17 Dec 2026 18:32:24 GMT\r\nage: 252137\r\ncf-cache-status: HIT\r\netag: W/\"692b2a74-80319\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xXle%2FJSwgOLFOvn%2BV0zL7kv3yVpAvGRLOGKmep1zD6AS7tGTxLkWbrEEnSudkwkjj6WQbniRwh2J0El5CFWalRpous3ppVM%2Bsz6JbUw8\"}]}\r\ncf-ray: 9b108c737f9e569c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":525081,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"f55c6c796275a41ce7d97bd160e648ff","sha1":"936285f9c8c85a749a1ef8cfc4d5e84b7ea2bc89","sha256":"db7ce4b1edd2c3701c3f2585f7cbd70857173195489a99703ab39de16fa45b6c","sha512":"3b01da86fa5b757041d7c03a186faad290c34f12fea78cc5ec53e4396491b16393c03e794bbead5a726f21c49f80894824eb65a87122c68a22cb2043ec6eda0e","ssdeep":"6144:q2ffwZI3wKqMSxeUKn5+q4Qc7vije4RDgv7VTG:qSoKqM9Upbz6R","tlshash":"c5b41b9876e5b0654393a0b8503f020b723bad6e7005a1ecf76de9e95db884d6037f78","first_seen":"2023-03-07T01:14:45Z","last_seen":"2026-04-14T19:19:30.060408Z","times_seen":2339,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}