| cssjsimg2.procdncache.com/files/logo.png |  172.67.185.159 | 200 OK | 12 kB |
URL GET HTTP/2cssjsimg2.procdncache.com/files/logo.png IP172.67.185.159:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectprocdncache.com FingerprintFF:9F:19:B7:6F:CD:7E:82:1C:87:AA:E0:6E:00:6A:DA:F6:B1:AC:34 ValidityWed, 21 Aug 2024 22:53:25 GMT - Tue, 19 Nov 2024 22:53:24 GMT
File typePNG image data, 253 x 90, 8-bit/color RGBA, non-interlaced Hash734814b627971aba8a394d6db8f49b4d 2800f812ab1842182b6935d210ee07010b983a89 6aeeb6ac349b0cf84867266cd6283257e592ba2b14040b468cfb3844bcfa426f
GET /files/logo.png HTTP/1.1
Host: cssjsimg2.procdncache.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:01 GMT
content-type: image/png
content-length: 11968
last-modified: Sat, 21 Apr 2018 09:58:57 GMT
vary: Accept-Encoding
etag: "5adb0b61-2ec0"
expires: Sun, 27 Oct 2024 17:12:51 GMT
cache-control: max-age=31536000
x-varnish: 57685742 1151714
via: 1.1 varnish (Varnish/6.2)
cf-cache-status: HIT
age: 625026
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1fRxMQbyKRqsISZKoP3dCbwrQB5bKTLBHz4y5rVmhoxnzekSGvHu7KlNnz80oRmM3X7yr9EnPNDNnjFesm3cUImPfTgmjjUYdeWo9f4gmDh3Dn%2BbDodZpUUywmkXaNrvet6bEG6H5kxa4EhQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f65d9e557130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ck.retingexylogen.com/tI5eVknJHWnr/83055 |  172.255.103.170 | 200 OK | 25 B |
URL GET HTTP/1.1ck.retingexylogen.com/tI5eVknJHWnr/83055 IP172.255.103.170:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjectck.retingexylogen.com FingerprintCF:D5:A1:42:00:B0:8A:08:75:A4:23:9D:FF:2F:C9:E3:E1:E2:B1:73 ValidityFri, 27 Sep 2024 12:39:20 GMT - Thu, 26 Dec 2024 12:39:19 GMT
File typeASCII text, with no line terminators Hashf7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /tI5eVknJHWnr/83055 HTTP/1.1
Host: ck.retingexylogen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hd.crichd-player.top
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 19-Oct-2024 05:00:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 19-Oct-2024 05:00:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| cognatesyringe.com/9dd12203842fdbb7ff56cfdbd2c7d020/invoke.js | 192.243.61.225 | 200 OK | 11 kB |
URL GET HTTP/1.1cognatesyringe.com/9dd12203842fdbb7ff56cfdbd2c7d020/invoke.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjectcognatesyringe.com Fingerprint86:FF:D3:93:8A:B9:B1:71:96:C7:7B:8C:C7:D9:29:27:B0:48:48:97 ValidityFri, 06 Sep 2024 21:30:00 GMT - Thu, 05 Dec 2024 21:29:59 GMT
File typeJavaScript source, ASCII text, with very long lines (24928), with no line terminators Hash8c9cf572bbab5cefd7c3539c111dcb2e fdb1bb212bc046c2121bc4d429211ddc1c82dcc2 01f86665ac005c1618e2856f8552ff75e9e9b49a84a7e4ac96ab60264b2dd871
GET /9dd12203842fdbb7ff56cfdbd2c7d020/invoke.js HTTP/1.1
Host: cognatesyringe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: cognatesyringe.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 23d97bacf9bba3c0437cc37fd8638c67
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cognatesyringe.com/81ffc7c92e97ea045fe49eba44f4cbf5/invoke.js | 192.243.61.225 | 200 OK | 11 kB |
URL GET HTTP/1.1cognatesyringe.com/81ffc7c92e97ea045fe49eba44f4cbf5/invoke.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjectcognatesyringe.com Fingerprint86:FF:D3:93:8A:B9:B1:71:96:C7:7B:8C:C7:D9:29:27:B0:48:48:97 ValidityFri, 06 Sep 2024 21:30:00 GMT - Thu, 05 Dec 2024 21:29:59 GMT
File typeJavaScript source, ASCII text, with very long lines (24957), with no line terminators Hash9f832d5d1ad6c24035d2f328b6b050fa 8b54466683aa2e49d4ae1102999b8ada8bb79dc3 62add3c5cca48d8821812cb2fb53021827a6b2820edcd5ad38e02f4d6d265b04
GET /81ffc7c92e97ea045fe49eba44f4cbf5/invoke.js HTTP/1.1
Host: cognatesyringe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: cognatesyringe.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: df9f69eda4f6474560c09b4fd7af22d3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| proftrafficcounter.com/stats |  52.29.137.37 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.137.37:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashf17e3924827d08bf49cf9a43034b9d82 48ab975b9fc8d4197ad4a109e79ccc98c71dc8a7 595b2293529eee361221400d52b287362fea0c7c2dbbe2ada71bed123da94e24
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hd.crichd-player.top
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e45a9f6a-935f-4130-9492-f00383af59ca:3:1; expires=Mon, 16 Oct 2034 05:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.29.137.37 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.137.37:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash43f7b5e7219877cc026ad357ac31451a 50b12ca9f445c5f297f9d00aa57bd53ba703c8de a0f88a24ebfdb1fc5f7aed9b50fafb4ffd8d467482435f076c4e45daac89cbbb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://hd.crichd-player.top
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=77196471-0d18-48ed-b82f-cfa3f11c4740:2:1; expires=Mon, 16 Oct 2034 05:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| hd.crichd-player.top/fonts/fof1.woff2 |  104.21.54.55 | 200 OK | 2.8 kB |
URL GET HTTP/3hd.crichd-player.top/fonts/fof1.woff2 IP104.21.54.55:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectcrichd-player.top Fingerprint43:EC:B6:67:77:96:DE:C5:AD:96:A0:DB:31:D4:76:FF:B2:97:58:FB ValiditySat, 05 Oct 2024 18:15:28 GMT - Fri, 03 Jan 2025 18:15:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 2756, version 1.0 Hash2c2645334857332ce48fde0f7b3fe67d 70ec588199af82dd77dedd68727a77d23a51cac1 966183eb5484cb315af36f4cd276e5825881cbcf51d9072c8751b454ecc2ca55
GET /fonts/fof1.woff2 HTTP/1.1
Host: hd.crichd-player.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/fonts/awsomefonts.css
Cookie: isFTime_81ffc7c92e97ea045fe49eba44f4cbf5=true; isFTime_81ffc7c92e97ea045fe49eba44f4cbf5_expiry=Fri, 18 Oct 2024 05:00:02 GMT; isFTime_9dd12203842fdbb7ff56cfdbd2c7d020=true; isFTime_9dd12203842fdbb7ff56cfdbd2c7d020_expiry=Fri, 18 Oct 2024 05:00:02 GMT
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: font/woff2
last-modified: Thu, 03 Oct 2024 20:56:17 GMT
vary: Accept-Encoding
etag: W/"66ff04f1-ac4"
x-varnish: 16497586 18664946
age: 1577
via: 1.1 varnish (Varnish/6.6)
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qcxC3oSHxtaZY2eD1CDMzvoszAkD06mYkwFkeN794aRB2NgLhRLBtA4YHW2Z7bSYVV%2FQP743CTrgJ8JGs0sp1UgjzHfJiOS6G7Ut9818sDOrDEdhJ4dJ0u7vbj%2FPSgE%2Fj5DysLKHLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f661accf0b31-OSL
alt-svc: h3=":443"; ma=86400
|
|
| st.chatango.com/js/gz/emb.js | 208.93.230.28 | 200 OK | 24 kB |
URL GET HTTP/1.1st.chatango.com/js/gz/emb.js IP208.93.230.28:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1651) Hash30011ee29f292fa39895acf9961b9d07 195c79ebef7dd51a934872b5a3f2e508b4ceea2d 56029ca55d0ab59f30047b3cd5e6edb175d72ad77ef9693affbd883bab9449f9
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:02 GMT
Content-Type: application/x-javascript
Content-Length: 23804
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Expires: Fri, 18 Oct 2024 05:00:02 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js | 104.17.25.14 | 200 OK | 27 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP104.17.25.14:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com FingerprintE6:47:BB:06:9C:32:48:7E:A6:0A:4B:62:53:7B:F0:35:5D:A9:A3:8A ValiditySat, 28 Sep 2024 05:35:05 GMT - Fri, 27 Dec 2024 05:35:04 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.crichdplays.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 124727
expires: Wed, 08 Oct 2025 05:00:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gj1VQMX4HJW6%2BfuH1kkOPr3yXD50BF3scmtQJ816D%2FrDpWyDzYhZxwMnfUEeDQIYw7gKxYq02G4jnrkc7IhfQT4bDZG0f6ML83F0xbUKnj6NsGLrKi9aJGks0%2F%2FXLwSp%2Fx09Z1mb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8d45f6638ffab52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.imgur.com/0P0Udsa.png | 199.232.196.193 | 200 OK | 864 B |
IP199.232.196.193:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typePNG image data, 25 x 25, 8-bit gray+alpha, non-interlaced Hash8544d742fceef41b6f6aa525f4f20c2b 45ce1f06db61c90826704462ef56c7fbe0f397d7 a89acacebcd3d71464b8d621660f9125047823d227e70ff22651bf7a30f880f2
GET /0P0Udsa.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.crichdplays.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sat, 14 Oct 2023 13:18:37 GMT
etag: "8544d742fceef41b6f6aa525f4f20c2b"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: ORD56-P6
x-amz-cf-id: QQLntPgE_djMrZO3nUyJ_zXGCvE2YWBBzSh1YxRfaXhb6X9Xwtqo0A==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 2030245
date: Fri, 18 Oct 2024 05:00:02 GMT
x-served-by: cache-iad-kcgs7200069-IAD, cache-hel1410032-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 2683, 0
x-timer: S1729227603.607973,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 864
X-Firefox-Spdy: h2
|
|
| hikinghourcataract.com/watch.510658349754.js?key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 | 172.240.127.234 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1hikinghourcataract.com/watch.510658349754.js?key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 IP172.240.127.234:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjecthikinghourcataract.com Fingerprint90:FD:AA:FF:4C:DA:74:7A:94:0D:A3:5E:D9:26:EC:81:C4:65:8C:43 ValiditySat, 12 Oct 2024 07:38:33 GMT - Fri, 10 Jan 2025 07:38:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.510658349754.js?key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 HTTP/1.1
Host: hikinghourcataract.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hd.crichd-player.top
Access-Control-Allow-Origin: https://hd.crichd-player.top
Access-Control-Allow-Credentials: true
Location: https://hikinghourcataract.com/watch.510658349754.js?dev=e&key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=21fb354bc69874c6f6c89896575a4f6f34e10af2a94badd5cb1ca36263bc6c93220f3303502ee93f5ea0f296219774787dcf1e614c8562ffa70815d7fc8e61c914b1f2417bf19f0f05f3cce27960dab5769644b93488dd5269a1a1&tz=0&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1
Set-Cookie: u_pl24369637=1; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.OTjnz3NjONJ0MqT-7NA01NJurIjqNcPBvFne0RfGLDE; expires=Fri, 18 Oct 2024 05:01:02 GMT; path=/; secure; SameSite=None
Host: hikinghourcataract.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6e7336b2ecb2ca4fa1bf76e768d6c63e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| householdlieutenant.com/watch.350776088985.js?key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 | 192.243.61.227 | 307 Temporary Redirect | 0 B |
URL householdlieutenant.com/watch.350776088985.js?key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.350776088985.js?key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&tz=0&dev=e&res=14.2071&rb=&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 HTTP/1.1
Host: householdlieutenant.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:02 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hd.crichd-player.top
Access-Control-Allow-Origin: https://hd.crichd-player.top
Access-Control-Allow-Credentials: true
Location: https://householdlieutenant.com/watch.350776088985.js?dev=e&key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=a327b01d38eaeeb433deaa23c8d4ab4dd0bdd6211f3fb4d916ab3891f9e6fd15ec1add5e7aafe3675b5fd453530c2955b786e583f854df6d5457aaca5ea8976ee686fea4ec2d8b4b53a45ea8dc135a75e9e9732d4b5b4bacf02c6a&tz=0&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1
Set-Cookie: u_pl23586998=1; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMzU4Njk5OCwiayI6IjgxZmZjN2M5MmU5N2VhMDQ1ZmU0OWViYTQ0ZjRjYmY1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozOTY2NDQ4LCJwaWQiOjYzMCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjo1LCJwdCI6NCwicGsiOiJhdnltampwNnMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9oZC5jcmljaGQtcGxheWVyLnRvcC9za3ktc3BvcnRzLWNyaWNrZXQtbGl2ZS1zdHJlYW1pbmctaGQtNTIiLCJhciI6W119fQ.5uzpmPoH_vEXtqna5NRASHciu6ToWeNpXptWpSIaPg4; expires=Fri, 18 Oct 2024 05:01:02 GMT; path=/; secure; SameSite=None
Host: householdlieutenant.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 370ae3721ae7d43a080cf441076aa06c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.jsdelivr.net/clappr.level-selector/latest/level-selector.min.js | 104.18.187.31 | 200 OK | 3.1 kB |
URL GET HTTP/2cdn.jsdelivr.net/clappr.level-selector/latest/level-selector.min.js IP104.18.187.31:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerSectigo Limited Subject*.jsdelivr.net Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6153) Hash166bbe11bb8dd332f6fbcf8fe9ec30cf f42c73e6e89201ccf5ad513915bb4182ec3a410c 23a715a6d8a35921f8c02eab19a93b6c9c42271ecfccbde0005476959e2edff9
GET /clappr.level-selector/latest/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 3061
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"2524-9Cxz5uiSAcz1rVE5FbtBguw6QQw"
content-encoding: gzip
x-served-by: cache-fra-eddf8230115-FRA, cache-lga21936-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 10947195
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ug7se9o2FMcmBVltPiuUgn41iFilSg1Gt52bTxKgiBfaU1AA1QUs%2BARsrIClCuBWbhWlzpPj81ILXtiSopfEJ24Kx8m92SMPTpJePWG3Sezs27xN86MKT5GELYYG5x0BwuA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f6667ff27127-OSL
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js | 104.18.187.31 | 200 OK | 163 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js IP104.18.187.31:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerSectigo Limited Subject*.jsdelivr.net Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size163 kB (162561 bytes) Hash9f7ee162594292d8a7cd8c88a8e2318d 55413890dd74e180a2b2a04994c40876bd8b1769 f0243f6e2395c077f4ae46ae4b1d969090d64106387b45cb39a28bbdb07e6752
GET /npm/@clappr/player@0.8/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 162561
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.8.0
x-jsd-version-type: version
etag: W/"9a048-VUE4kN104YCisqBJlMQIdr2LF2k"
content-encoding: br
x-served-by: cache-fra-eddf8230058-FRA, cache-lga21951-LGA
x-cache: MISS, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 5935
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gakOGq%2FXx39QYv5hPpV5mpnDZpaniBYgkiTH%2FcqPejMaH7PdAgxcJtKgJVTN9gGRcVFuEnRjesYsQ69E1g70AZ0pTVJEXR47HtAm8oyls%2Ff1q4sjxIyhWunDLvpf%2BnvOoUg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f6666fd57127-OSL
X-Firefox-Spdy: h2
|
|
| hikinghourcataract.com/watch.510658349754.js?dev=e&key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=21fb354bc69874c6f6c89896575a4f6f34e10af2a94badd5cb1ca36263bc6c93220f3303502ee93f5ea0f296219774787dcf1e614c8562ffa70815d7fc8e61c914b1f2417bf19f0f05f3cce27960dab5769644b93488dd5269a1a1&tz=0&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 | 172.240.127.234 | 200 OK | 2.1 kB |
URL GET HTTP/1.1hikinghourcataract.com/watch.510658349754.js?dev=e&key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=21fb354bc69874c6f6c89896575a4f6f34e10af2a94badd5cb1ca36263bc6c93220f3303502ee93f5ea0f296219774787dcf1e614c8562ffa70815d7fc8e61c914b1f2417bf19f0f05f3cce27960dab5769644b93488dd5269a1a1&tz=0&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 IP172.240.127.234:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjecthikinghourcataract.com Fingerprint90:FD:AA:FF:4C:DA:74:7A:94:0D:A3:5E:D9:26:EC:81:C4:65:8C:43 ValiditySat, 12 Oct 2024 07:38:33 GMT - Fri, 10 Jan 2025 07:38:32 GMT
File typeJavaScript source, ASCII text, with very long lines (2538) Hash511b204c7f14eb887e4e887baedcd8ed 7b94d6347fd90f266865968906d288a1281dc58a e9a21a21024cece1402d4dc6f9169fc6b96792b9941191d3e99ecc523d544201
GET /watch.510658349754.js?dev=e&key=9dd12203842fdbb7ff56cfdbd2c7d020&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=21fb354bc69874c6f6c89896575a4f6f34e10af2a94badd5cb1ca36263bc6c93220f3303502ee93f5ea0f296219774787dcf1e614c8562ffa70815d7fc8e61c914b1f2417bf19f0f05f3cce27960dab5769644b93488dd5269a1a1&tz=0&uuid=e45a9f6a-935f-4130-9492-f00383af59ca%3A3%3A1 HTTP/1.1
Host: hikinghourcataract.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
Referer: https://hd.crichd-player.top/
DNT: 1
Connection: keep-alive
Cookie: u_pl24369637=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDM2OTYzNywiayI6IjlkZDEyMjAzODQyZmRiYjdmZjU2Y2ZkYmQyYzdkMDIwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozOTY2NDQ4LCJwaWQiOjYzMCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjozMiwicHQiOjQsInBrIjoidDRwdnVxMHM2OCIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2hkLmNyaWNoZC1wbGF5ZXIudG9wL3NreS1zcG9ydHMtY3JpY2tldC1saXZlLXN0cmVhbWluZy1oZC01MiIsImFyIjpbXX19.OTjnz3NjONJ0MqT-7NA01NJurIjqNcPBvFne0RfGLDE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hd.crichd-player.top
Access-Control-Allow-Origin: https://hd.crichd-player.top
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e45a9f6a-935f-4130-9492-f00383af59ca:3:1; expires=Fri, 25 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Sat, 19 Oct 2024 05:00:02 GMT; path=/; secure; SameSite=None
Host: hikinghourcataract.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 290e13a0a4655e6500ca0d339d55c403
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| youradexchange.com/script/suurl5.php?r=8775730&cbur=0.5503006041528745&cbiframe=1&cbWidth=678&cbHeight=510&cbtitle=&cbpage=https%3A%2F%2Fhd.crichd-player.top%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602619&srs=333b8df88c2eee4a6bc814567a981f20&atv=55.0&abtg=1&adbv=3-cdn-js | 104.21.91.188 | 200 OK | 55 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=8775730&cbur=0.5503006041528745&cbiframe=1&cbWidth=678&cbHeight=510&cbtitle=&cbpage=https%3A%2F%2Fhd.crichd-player.top%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602619&srs=333b8df88c2eee4a6bc814567a981f20&atv=55.0&abtg=1&adbv=3-cdn-js IP104.21.91.188:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerGoogle Trust Services Subjectyouradexchange.com Fingerprint03:7E:C0:10:42:5B:39:CE:2A:03:91:B7:74:65:C7:B0:C7:27:21:4B ValidityTue, 08 Oct 2024 07:34:56 GMT - Mon, 06 Jan 2025 07:34:55 GMT
File typegzip compressed data, max compression, from Unix Hash9235b330966e3f017ffa0babb7e0d630 0ee598ba7f1f5d115d09c0ce648f6be5640d34fb a504225acdab06cffd478e22c1131bbc0311884dcb9e5fa2e49f728bcefae860
GET /script/suurl5.php?r=8775730&cbur=0.5503006041528745&cbiframe=1&cbWidth=678&cbHeight=510&cbtitle=&cbpage=https%3A%2F%2Fhd.crichd-player.top%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602619&srs=333b8df88c2eee4a6bc814567a981f20&atv=55.0&abtg=1&adbv=3-cdn-js HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.crichdplays.ru/
Origin: https://cdn.crichdplays.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FKtCE9do%2BK8kh09jIGrQ%2BHFlfgyTUFyWGbtO%2FDH8UWqiM%2B4KRj9CC7cj8S4jrkWV9Tw0X1DnbLS5H7rSdGCAr1KAOhEUUxV3Jv9MCLoU8Ul9zh%2BhvPJZiFRjXG34i4uyw4bE6rc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f664cbc37131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.crichdplays.ru/aclib.js | 104.21.66.188 | 200 OK | 272 kB |
URL GET HTTP/3cdn.crichdplays.ru/aclib.js IP104.21.66.188:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerGoogle Trust Services Subjectcrichdplays.ru Fingerprint33:B6:CD:AA:EB:15:CB:02:62:E8:72:5F:CF:0A:C2:46:8C:2E:C0:A7 ValidityTue, 08 Oct 2024 14:26:00 GMT - Mon, 06 Jan 2025 14:25:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (41605), with NEL line terminators Size272 kB (272317 bytes) Hashd38cc14980834f4f97cb4f89a3cbd46b 271d874e56cf3053097b2e7046d667ee72bbc01d ce46049960dd570bb7e1d69401d0ffd5c5f654b874fd8e89d117dbd7718802fd
GET /aclib.js HTTP/1.1
Host: cdn.crichdplays.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.crichdplays.ru/embed2.php?id=skysp2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript
age: 4852
cf-bgj: minify
cf-polished: origSize=172263
etag: W/"6711cf31-2a0e7"
last-modified: Fri, 18 Oct 2024 03:00:01 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.6)
x-varnish: 54686189
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ohH2uaYb4X2ReRvkLt2prX4w8sX0GcuvdYWSPmn0FPwwo8boBhHR8JVeAqbtWNiZpAize6gbPUP%2BVue6A07JiL1Nwva5jZnl0Og%2F3LtySTDiXoEMYiYjF5E%2Fd%2BLLs%2FztSVm7New%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f6636f1456c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| st.chatango.com/cfg/nc/r.json?5f25490020000354382971890 | 208.93.230.28 | 200 OK | 20 B |
URL GET HTTP/1.1st.chatango.com/cfg/nc/r.json?5f25490020000354382971890 IP208.93.230.28:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
Hash3a2714bad1a617d896161763ced54a20 d51b7308559a19284f8afecd03a0a19685377921 7b4d0c88365490a5148541b1563a5ba837bc3e9b2fbf5695ca34d68416905fcd
GET /cfg/nc/r.json?5f25490020000354382971890 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:03 GMT
Content-Type: application/octet-stream
Content-Length: 20
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| poomeecebe.net/tag.min.js |  139.45.197.242 | 200 OK | 27 kB |
URL GET HTTP/2poomeecebe.net/tag.min.js IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectpoomeecebe.net Fingerprint76:AA:C3:94:8C:CF:12:65:D1:3C:93:10:60:A4:0C:A6:91:83:00:FA ValidityThu, 29 Aug 2024 20:59:44 GMT - Wed, 27 Nov 2024 20:59:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashed79dc80e2e7cb5d7380b9a14a193405 4d1ee6ef2610f650b7ba04a62a5b39cd3886c5f7 b01e3196ec4ee280b87d05f195f7af865ed291c25cc0c52fa287f641d89d364b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: poomeecebe.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: text/javascript; charset=utf-8
content-length: 27243
content-encoding: br
x-trace-id: 1cb99362c14da2f8ca72645f60aabb13
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 17 Oct 2024 21:43:30 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| householdlieutenant.com/watch.350776088985.js?dev=e&key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=a327b01d38eaeeb433deaa23c8d4ab4dd0bdd6211f3fb4d916ab3891f9e6fd15ec1add5e7aafe3675b5fd453530c2955b786e583f854df6d5457aaca5ea8976ee686fea4ec2d8b4b53a45ea8dc135a75e9e9732d4b5b4bacf02c6a&tz=0&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 | 192.243.61.227 | 200 OK | 2.1 kB |
URL GET HTTP/1.1householdlieutenant.com/watch.350776088985.js?dev=e&key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=a327b01d38eaeeb433deaa23c8d4ab4dd0bdd6211f3fb4d916ab3891f9e6fd15ec1add5e7aafe3675b5fd453530c2955b786e583f854df6d5457aaca5ea8976ee686fea4ec2d8b4b53a45ea8dc135a75e9e9732d4b5b4bacf02c6a&tz=0&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjecthouseholdlieutenant.com Fingerprint1D:91:EC:09:BC:6C:FA:0D:63:88:09:83:63:95:B4:B8:43:72:92:82 ValiditySat, 12 Oct 2024 07:40:51 GMT - Fri, 10 Jan 2025 07:40:50 GMT
File typeJavaScript source, ASCII text, with very long lines (2536) Hasha21819c1fbcd6fa21c167fb9dbb5c065 327782deb7209751252d4d345da7d1071ea1d419 083f57c9167c9bc900a173043da625ba347f8cbd36c6ff000fc4db072e231c24
GET /watch.350776088985.js?dev=e&key=81ffc7c92e97ea045fe49eba44f4cbf5&kw=%5B%22sky%22%2C%22sports%22%2C%22cricket%22%2C%22live%22%2C%22streaming%22%2C%22-%22%2C%22crichd%22%2C%22player%22%2C%22crichd%22%5D&pst=1729227662&rb=&refer=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&res=14.2071&rmtc=t&shu=a327b01d38eaeeb433deaa23c8d4ab4dd0bdd6211f3fb4d916ab3891f9e6fd15ec1add5e7aafe3675b5fd453530c2955b786e583f854df6d5457aaca5ea8976ee686fea4ec2d8b4b53a45ea8dc135a75e9e9732d4b5b4bacf02c6a&tz=0&uuid=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1 HTTP/1.1
Host: householdlieutenant.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hd.crichd-player.top
Referer: https://hd.crichd-player.top/
DNT: 1
Connection: keep-alive
Cookie: u_pl23586998=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMzU4Njk5OCwiayI6IjgxZmZjN2M5MmU5N2VhMDQ1ZmU0OWViYTQ0ZjRjYmY1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozOTY2NDQ4LCJwaWQiOjYzMCwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjo1LCJwdCI6NCwicGsiOiJhdnltampwNnMiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9oZC5jcmljaGQtcGxheWVyLnRvcC9za3ktc3BvcnRzLWNyaWNrZXQtbGl2ZS1zdHJlYW1pbmctaGQtNTIiLCJhciI6W119fQ.5uzpmPoH_vEXtqna5NRASHciu6ToWeNpXptWpSIaPg4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 18 Oct 2024 05:00:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://hd.crichd-player.top
Access-Control-Allow-Origin: https://hd.crichd-player.top
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=77196471-0d18-48ed-b82f-cfa3f11c4740:2:1; expires=Fri, 25 Oct 2024 05:00:03 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 19 Oct 2024 05:00:03 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 19 Oct 2024 05:00:03 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Sat, 19 Oct 2024 05:00:03 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Sat, 19 Oct 2024 05:00:03 GMT; path=/; secure; SameSite=None
Host: householdlieutenant.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 7a330937354e4039161b6ef7de5347fe
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 | 104.21.35.231 | 520 No Reason Phrase | 0 B |
URL GET HTTP/2lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 IP104.21.35.231:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerGoogle Trust Services Subjectlolcalhost.ru FingerprintB5:C6:FA:CE:47:03:A8:2C:18:7B:06:9E:E1:1F:66:65:0E:4F:3D:BD ValidityMon, 07 Oct 2024 18:09:30 GMT - Sun, 05 Jan 2025 18:09:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embedx.php?v=skyscriccc&con=abc&dt=241018050002 HTTP/1.1
Host: lolcalhost.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 520 No Reason Phrase
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: text/html; charset=UTF-8
content-length: 7167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sIH8d1eNf%2Bk5D7TW3zrP1Kbepk6bAuqSmbe4x3cygnH5i1Mx98widAN4TqJ13Rjm97aQEKf7Insamu82uwX9IoUyqTWYSsfU5kMA%2BMI1BMk6rLgR7N0qpyukv87uh9g0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8d45f66a0fb61c12-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| lolcalhost.ru/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.35.231 | 302 Found | 0 B |
URL lolcalhost.ru/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.35.231:0
CertificateIssuerGoogle Trust Services Subjectlolcalhost.ru FingerprintB5:C6:FA:CE:47:03:A8:2C:18:7B:06:9E:E1:1F:66:65:0E:4F:3D:BD ValidityMon, 07 Oct 2024 18:09:30 GMT - Sun, 05 Jan 2025 18:09:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: lolcalhost.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 18 Oct 2024 05:00:03 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BeMKbCvd4pHqAtjt3wZUS9VCoiXjM%2Bni6YGOjVTLcR3FBB9KTxeM1ItQnvhYlgZQbK2QVHG1HGiFCFB7vS7QUznzHbPqrGrwKkahNM5N88QHRURTFjz1KsYDDZ7TMye4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d45f66ad8361c12-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| cdn.storageimagedisplay.com/cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg | 45.133.44.2 | 200 OK | 38 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg IP45.133.44.2:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36 ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 16:00:20], progressive, precision 8, 320x50, components 3 Hash051cc133b2430a8f70f322cac7339c38 01fdfd9b95c35f86fbe8f10a2f85cb108e6e514c f53bba61704138e18c9373a89b36aa4cfc03b9db23db3d944f32cc67a11bfcff
GET /cti/fb/2e/4c/fb2e4ceb25f9e8394e12c3d216df7b2e/1708270373.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: image/jpeg
content-length: 37503
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:33:02 GMT
etag: "65d2232e-927f"
expires: Sun, 20 Oct 2024 05:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg | 45.133.44.2 | 200 OK | 79 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg IP45.133.44.2:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com Fingerprint35:34:7E:96:D3:74:A9:D9:1F:BE:9D:7C:A7:EF:B0:88:78:CB:82:36 ValidityFri, 13 Sep 2024 11:57:48 GMT - Thu, 12 Dec 2024 11:57:47 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:16 15:04:57], progressive, precision 8, 300x250, components 3 Hash325d5a8fd98bd4abebe19e1ea0bfa6b5 724b06f3b7fd7b0e958b59c4c4afb2813a5f5c17 710e54e782c441ef1ce60c52642dae8084dbbaa413343ff13f86c1e53c981318
GET /cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: image/jpeg
content-length: 79010
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:30:40 GMT
etag: "65d222a0-134a2"
expires: Sun, 20 Oct 2024 05:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pv004.zplayer001.com:7054/hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 | 194.76.0.101 | 200 OK | 618 B |
URL GET HTTP/1.1pv004.zplayer001.com:7054/hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 IP194.76.0.101:7054 ASN#149457 Angel cloud Limited
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectpv004.lolcalhost.ru FingerprintCB:57:28:30:C0:67:C5:53:E1:C3:31:0E:18:3B:FE:6C:7A:DF:B8:4B ValidityThu, 17 Oct 2024 20:24:05 GMT - Wed, 15 Jan 2025 20:24:04 GMT
Hash74291ed3bf8a6cec56bef5e539ea9906 15ceb775e859ab6f474d904c7482313cc7ad3885 f61d8472c2880d55dce28e7dbbd806b5dd0647cbd6bf0fa64c6e84d048fe40ac
GET /hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 HTTP/1.1
Host: pv004.zplayer001.com:7054
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:03 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 618
Last-Modified: Fri, 18 Oct 2024 04:59:57 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6711eb4d-26a"
Expires: Fri, 18 Oct 2024 05:00:02 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Accept-Ranges: bytes
|
|
| lolcalhost.ru/cdn-cgi/challenge-platform/h/b/jsd/r/8d45f6650b7c56bd | 104.21.35.231 | 200 OK | 0 B |
URL POST HTTP/3lolcalhost.ru/cdn-cgi/challenge-platform/h/b/jsd/r/8d45f6650b7c56bd IP104.21.35.231:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerGoogle Trust Services Subjectlolcalhost.ru FingerprintB5:C6:FA:CE:47:03:A8:2C:18:7B:06:9E:E1:1F:66:65:0E:4F:3D:BD ValidityMon, 07 Oct 2024 18:09:30 GMT - Sun, 05 Jan 2025 18:09:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/8d45f6650b7c56bd HTTP/1.1
Host: lolcalhost.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12201
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.lolcalhost.ru; Priority=High; HttpOnly; Secure; SameSite=None
cf_clearance=0JzI.R5FMnQLq_iLC9JEbpQoWrocrS65Fh_TZN.4lJ4-1729227603-1.2.1.1-05.p0E4QJY7voiVlTSld9XPelopgwqRX82aRe5v9JdjjHNQ0LLD48VW0X.Ib6QBPSNR7Zw2oeXlXb.BxEsNhgEM.7ekGMExXX3UOIOL1i.zMMPP6HybLRwDz5iE2vOQ3.8cdfZrrk3bG97kpwp6CXL25hNtCJUx4h1owexU6NT1UjSyIcFJE0CfwStgf0Fv3s7M_UoCEwclukmoxRZ..EtaIEd_cP7JYKr7WlgO2RgMe8U_4cDK2VOCp6Hbvc17x1sx2vynhuz1dW49NbaF5kNV86DW8vqUvF3fInjegK4A2S2kjDoBZwdHSm8r8dSuYkb4kwk42H4OpAE5G8FA3qg; Path=/; Expires=Sat, 18-Oct-25 05:00:03 GMT; Domain=.lolcalhost.ru; Priority=High; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TSM2qsAMmE4nXkBD%2Fz6oA80Ldfl89Fe%2B9fUlP%2Bhu82WP4jsCkI7PWX08CQDhcGeWwGOWcHMgVbLoE9wSHuNvyEL6h%2BThgtS8Au9PYQydr4Pk%2BORTyBve%2Bzra4Y7yJVnj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f66c492e1c12-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| pv004.zplayer001.com:7054/hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 | 194.76.0.101 | 200 OK | 618 B |
URL GET HTTP/1.1pv004.zplayer001.com:7054/hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 IP194.76.0.101:7054 ASN#149457 Angel cloud Limited
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectpv004.lolcalhost.ru FingerprintCB:57:28:30:C0:67:C5:53:E1:C3:31:0E:18:3B:FE:6C:7A:DF:B8:4B ValidityThu, 17 Oct 2024 20:24:05 GMT - Wed, 15 Jan 2025 20:24:04 GMT
Hash74291ed3bf8a6cec56bef5e539ea9906 15ceb775e859ab6f474d904c7482313cc7ad3885 f61d8472c2880d55dce28e7dbbd806b5dd0647cbd6bf0fa64c6e84d048fe40ac
GET /hls/skyscriccc.m3u8?md6=oF_AAfGYuY6zMUqknYltFQ&expires=1729229402 HTTP/1.1
Host: pv004.zplayer001.com:7054
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:03 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 618
Last-Modified: Fri, 18 Oct 2024 04:59:57 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6711eb4d-26a"
Expires: Fri, 18 Oct 2024 05:00:02 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Accept-Ranges: bytes
|
|
| my.rtmark.net/gid.js?userId=0080f94688534b30f51f885f89b26806 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=0080f94688534b30f51f885f89b26806 IP139.45.195.8:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectrtmark.net Fingerprint59:49:A1:C9:C3:99:98:FC:2D:E7:4A:9E:86:83:A6:DE:2E:C3:8A:B6 ValidityFri, 30 Aug 2024 01:00:45 GMT - Thu, 28 Nov 2024 01:00:44 GMT
Hashefe33e8b0e85ef6ca6b8eb2de531c3d0 6d5fadb23e01a6797182f13b95042d3e7ca3a0fc 63787e5e386340db30bfa8cfe67321b050f9feb5c36f91402feeacc62d1eca1b
GET /gid.js?userId=0080f94688534b30f51f885f89b26806 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://lolcalhost.ru
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0080f94688534b30f51f885f89b26806; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho |  51.195.5.58 | 200 OK | 159 B |
URL GET HTTP/1.1pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho IP51.195.5.58:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerSectigo Limited Subject*.ip-api.com FingerprintF0:28:4B:02:B3:57:5A:73:21:4F:42:DF:04:2D:19:39:F8:5F:3D:3A ValidityThu, 21 Dec 2023 00:00:00 GMT - Mon, 20 Jan 2025 23:59:59 GMT
Hashb1ea57bc6eb7dec0d3eef7ee9a0ee775 d8ad7d9d6191874e6f3b076b82e42236ef2c00e1 9d887a2c0903866bb108826ac6af8cc768a8ce4f1a3bb6f84adfc86f3d2c6f01
GET /json?fields=2181826&key=XOpiansRgYxGTho HTTP/1.1
Host: pro.ip-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lolcalhost.ru/
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Date: Fri, 18 Oct 2024 05:00:04 GMT
Content-Length: 159
|
|
| pv004.zplayer001.com:7054/hls/skyscriccc-65579.ts | 194.76.0.101 | 200 OK | 1.6 MB |
URL GET HTTP/1.1pv004.zplayer001.com:7054/hls/skyscriccc-65579.ts IP194.76.0.101:7054 ASN#149457 Angel cloud Limited
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectpv004.lolcalhost.ru FingerprintCB:57:28:30:C0:67:C5:53:E1:C3:31:0E:18:3B:FE:6C:7A:DF:B8:4B ValidityThu, 17 Oct 2024 20:24:05 GMT - Wed, 15 Jan 2025 20:24:04 GMT
File typeMPEG transport stream data Size1.6 MB (1556828 bytes) Hash776b2bfecc94a597b25c0d108934bcc3 a8b92438d83e0de990b59390dfbcc82a072f3b2f 1c448c68d9a9d460fd9d946d014822e3cbe5cd4071203baadb15bb0116c0e9bb
GET /hls/skyscriccc-65579.ts HTTP/1.1
Host: pv004.zplayer001.com:7054
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:03 GMT
Content-Type: application/octet-stream
Content-Length: 1556828
Last-Modified: Fri, 18 Oct 2024 04:59:37 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6711eb39-17c15c"
Expires: Fri, 18 Oct 2024 05:00:02 GMT
Cache-Control: no-cache, no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| ust.chatango.com/groupinfo/c/r/crichd-live/gprofile.xml | 208.93.230.24 | 200 OK | 87 B |
URL ust.chatango.com/groupinfo/c/r/crichd-live/gprofile.xml IP208.93.230.24:0
File typeXML 1.0 document, ASCII text, with no line terminators Hashb803c707557d5cefc5704e78d8558101 05f24b007f19515161a38a1109c07b98f16cd907 238a92fb26ea72cc46c62942f4867bccbcf7c90c19c388bf705937ce51995ae7
GET /groupinfo/c/r/crichd-live/gprofile.xml HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:04 GMT
Content-Type: text/xml
Content-Length: 87
Last-Modified: Thu, 08 Feb 2024 10:30:08 GMT
Connection: keep-alive
ETag: "65c4ad30-57"
Expires: Fri, 18 Oct 2024 05:00:04 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| thubanoa.com/1?z=3961139&var=3950893 | 139.45.197.242 | 200 OK | 16 kB |
URL GET HTTP/2thubanoa.com/1?z=3961139&var=3950893 IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintA3:21:18:06:45:5B:CD:F8:C7:C7:EE:D9:38:4D:15:83:85:2C:47:39 ValidityThu, 22 Aug 2024 00:57:32 GMT - Wed, 20 Nov 2024 00:57:31 GMT
File typegzip compressed data, max speed, from Unix Hash01bfc9703821aa3ed1842c6f9e214a56 5aac4e363cd3a48bc10319f4e2c71413b7c34b51 737c1214da42784a379787a9e8b292ea8100f5c45a8c308f9bf458b3e1b23f8f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /1?z=3961139&var=3950893 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: f6f4787af9ef1a2fefd8231f6ad9e392
access-control-expose-headers: X-Sc
x-sc: yAMCc_boMrzNHvimMpsTvmeoZqFJyQlyEZrHwd6S3u8UpB_o9dlyD7A9ieDeSZ-56BYHPBysCLjtZjMP9OFzfXBU3cY=
set-cookie: scm=1; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
OAID=0400f95228094519f7399cae16d0b3b3; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
oaidts=1729227604; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s82.chatango.com:8081/ | 208.93.230.187 | 101 Switching Protocols | 0 B |
IP208.93.230.187:0
CertificateIssuerLet's Encrypt Subjectpv004.lolcalhost.ru FingerprintCB:57:28:30:C0:67:C5:53:E1:C3:31:0E:18:3B:FE:6C:7A:DF:B8:4B ValidityThu, 17 Oct 2024 20:24:05 GMT - Wed, 15 Jan 2025 20:24:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: s82.chatango.com:8081
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Nf6zTbO6Ynsm4QkFryzSQw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: HveXZMKvK3K3VrYsr9xUGEgur1o=
|
|
| thubanoa.com/11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ot=69 | 139.45.197.242 | 200 OK | 0 B |
URL GET HTTP/2thubanoa.com/11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ot=69 IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintA3:21:18:06:45:5B:CD:F8:C7:C7:EE:D9:38:4D:15:83:85:2C:47:39 ValidityThu, 22 Aug 2024 00:57:32 GMT - Wed, 20 Nov 2024 00:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ot=69 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Cookie: scm=1; OAID=0080f94688534b30f51f885f89b26806; oaidts=1729227604
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://lolcalhost.ru
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 738638026465a40609f83f9497208877
access-control-expose-headers: X-Sc
set-cookie: OAID=0080f94688534b30f51f885f89b26806; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
oaidts=1729227604; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| d3x2.myfastcdn.com/www/images/5a634e5a0e263ea3822eb71f71223198.jpg?width=984 | 172.66.40.155 | 200 OK | 8.0 kB |
URL GET HTTP/2d3x2.myfastcdn.com/www/images/5a634e5a0e263ea3822eb71f71223198.jpg?width=984 IP172.66.40.155:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerGoogle Trust Services Subjectmyfastcdn.com Fingerprint2F:32:28:66:5F:0E:B0:5B:18:56:D7:FD:E4:D8:77:1E:D4:2C:1C:55 ValidityWed, 04 Sep 2024 03:17:25 GMT - Tue, 03 Dec 2024 03:17:24 GMT
File typeRIFF (little-endian) data, Web/P image Hash27f5785a1196f490c08ad055295cb531 3147eb46a3ec408765d3d2ac37a115e30f1255fd 28717f1425348332536d5c5d6bdd8539f968b279d8ee9cdf47395deaf268dab4
GET /www/images/5a634e5a0e263ea3822eb71f71223198.jpg?width=984 HTTP/1.1
Host: d3x2.myfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: image/webp
content-length: 7978
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
edge-cache-tag: 423439890603723207641544262447648801629,613570411217116831189459287628353010494,29ecf9b93bbf306179626feeda1fab70
etag: "b5662d08f44c50d5c054347819158768"
expiration: expiry-date="Sat, 12 Oct 2024 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 11 Sep 2024 16:09:14 GMT
req-referer: https://www.vrogue.co/
surrogate-reporting: width=900,height=600,bytes=16481,owidth=900,oheight=600,obytes=128320,ef=(1,13,17,23,30)
x-orig-request-id: 2f73d404f4cef50b6b17bd805d490368
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 1459
cache-control: max-age=86400
age: 72124
vary: ImageFormat, Accept-Encoding
x-vcl-time-ms: 1
expires: Fri, 18 Oct 2024 08:58:00 GMT
timing-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4%2FAiBtsM2a6XamSkRr8DabIekFi1kMyg0xTU25Euo0zuebc%2BHNs3bESM4SS9UxHQh0MVzypAlBHiLFbDnCMBvQJ0LUdOKNJmCCcmmWqGjDLird2PIo%2BkYvX7MAfbQpJ2dvQt3zY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f671ee540b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| thubanoa.com/11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 | 139.45.197.242 | 200 OK | 0 B |
URL GET HTTP/2thubanoa.com/11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintA3:21:18:06:45:5B:CD:F8:C7:C7:EE:D9:38:4D:15:83:85:2C:47:39 ValidityThu, 22 Aug 2024 00:57:32 GMT - Wed, 20 Nov 2024 00:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /11?rnd=596656930&z=3961139&b=22194881&var=3950893&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=DDzDYDWcpBTzzn1dwlnDuknr6TBRoroiAZcy2PBB9JHDZQSNIlMzA0CC9Ety1JOL4CfbEsBsy0gXNkaG2z_WYRGpbsY6-p5HC8Byynu9Po1bUHQIUFoWdIaETWHd-CstaJHlmnS2rCEgK2AZYLTKpzcZDrJlOv_Sl2FzI4ttx5M1AQ00daPHCFmVvtrWlN5z6lpMKZ0bXzocAZ10IrQioAIuvAKJNW7quta8O-sMHNqCj6pPmM8TiWOUiK8pWvYPQZDkcSFbvmEL5Kaa342MV0F_acEJJ29Sy5xlmGOwZ2TTgzQal6iRpkAo3eg7bZ0EbcHgnOlaqs--WxETOQIXMJWSHcyd1ezL9vYQ0W9FH3jiA3qD6yU10WwrUf51rOu3NZaiwBDgwemXOZUDjfIGpG6pmC7GJYLLKCk6unRu9fPMRDG5u5Rs96EnfZaQu54Zj7R19_NoD1jGUq6z-HtCKE5PyJ5p50i1v6SQQZ5wVnMM56___rlCLNZIEzqlH7Ifb1kfi2Gl8XXwl9_8Y9bl2juo0jqCcuDywpvVP2XyS6uUHkhdydgWESGIaBJ9r2MmARDq4SagXTxGHCjA2GcGhetUFAeedu_iqZh9qc1AqvP5eoQfQA-bxk0_4X-v8m87zYfAqyNdu6wmEgqmJxltQqTw-w_m9yjqenKkjA==&ruid=fa584c4a-2dde-4f78-89db-376b6da47162&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Cookie: scm=1; OAID=0080f94688534b30f51f885f89b26806; oaidts=1729227604
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://lolcalhost.ru
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 045576feb7d94f79a8507cf878534711
access-control-expose-headers: X-Sc
set-cookie: OAID=0080f94688534b30f51f885f89b26806; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
oaidts=1729227604; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
oaidvc=1; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
CNT=1_v1_wapSAQEAAAAuTgAA; expires=Fri, 18 Oct 2024 06:00:04 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| st.chatango.com/js/gz/r0924241845/CommonUIModule.js | 208.93.230.28 | 200 OK | 7.6 kB |
URL GET HTTP/1.1st.chatango.com/js/gz/r0924241845/CommonUIModule.js IP208.93.230.28:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1121) Hash3a9c512bd2af03d0fe8a577f11b83a76 b6b3018907db6d322ea706cf6a828977cfadc7d9 4ca3e4dfb62e2512fff3b944a1e97a26927503d836675051e65c6579489081da
GET /js/gz/r0924241845/CommonUIModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0924241845/id.html
Cookie: session_id=3538898645475944
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: application/x-javascript
Content-Length: 7607
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Expires: Sat, 18 Oct 2025 05:00:05 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
|
|
| st.chatango.com/js/gz/r0924241845/RklModule.js | 208.93.230.28 | 200 OK | 906 B |
URL GET HTTP/1.1st.chatango.com/js/gz/r0924241845/RklModule.js IP208.93.230.28:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeASCII text, with very long lines (516) Hash7c295d51c11f947bcf184c0f610cfb00 6a1bfdf497d6436923ead75fa6acbea978475497 5ac6a3210fa3e37aac8eb47b2e22bce7aa2bc3fa6ee68b01914d541ef8dfba84
GET /js/gz/r0924241845/RklModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0924241845/id.html
Cookie: session_id=3538898645475944
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: application/x-javascript
Content-Length: 906
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Expires: Sat, 18 Oct 2025 05:00:05 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
|
|
| ust.chatango.com/profileimg/g/o/godse/thumb.jpg | 208.93.230.24 | 200 OK | 640 B |
URL GET HTTP/1.1ust.chatango.com/profileimg/g/o/godse/thumb.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 50x50, components 3 Hash81a620d0a6b17b31632ca56ac588ecbb c93fc7d3b7c2ab12a68edf54be4b71753cb8f5e8 fcfa793d204b4144bf54f59bd9c5c720843af02dd02999d1653c8fafc0ebd8ea
GET /profileimg/g/o/godse/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: image/jpeg
Content-Length: 640
Last-Modified: Tue, 09 Jun 2009 03:36:06 GMT
Connection: keep-alive
ETag: "4a2dd8a6-280"
Expires: Fri, 18 Oct 2024 05:00:05 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| ust.chatango.com/profileimg/m/u/multansultan/thumb.jpg | 208.93.230.24 | 200 OK | 1.1 kB |
URL ust.chatango.com/profileimg/m/u/multansultan/thumb.jpg IP208.93.230.24:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3 Hashad0f33ce73f7441baca6d6d313d4dcb4 1117367baf7702c88194fe87947d2a2775e2400b f37d53f6206171d9c91f3c27b0bf9de468212c8027b77fe48173eb3897b0ff39
GET /profileimg/m/u/multansultan/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: image/jpeg
Content-Length: 1141
Last-Modified: Sat, 14 Aug 2021 09:03:18 GMT
Connection: keep-alive
ETag: "611786d6-475"
Expires: Fri, 18 Oct 2024 05:00:05 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| hd.crichd-player.top/fonts/awsomefonts.css | 104.21.54.55 | 200 OK | 1.2 kB |
URL GET HTTP/3hd.crichd-player.top/fonts/awsomefonts.css IP104.21.54.55:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectcrichd-player.top Fingerprint43:EC:B6:67:77:96:DE:C5:AD:96:A0:DB:31:D4:76:FF:B2:97:58:FB ValiditySat, 05 Oct 2024 18:15:28 GMT - Fri, 03 Jan 2025 18:15:27 GMT
File typeASCII text, with very long lines (1590), with no line terminators Hash1233ceec363397e275555d339fa2db74 e192e1753697147b02d2cb40afa6c3855cea5c00 9b36a62d2380489e5183a6898079ac99154f965d96b39b7cebd61db4ed34e7ee
GET /fonts/awsomefonts.css HTTP/1.1
Host: hd.crichd-player.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:01 GMT
content-type: text/css
age: 4504
cf-bgj: minify
cf-polished: origSize=1602
etag: W/"66ff04f1-642"
last-modified: Thu, 03 Oct 2024 20:56:17 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.6)
x-varnish: 16446950
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ot0dSvFN9L1l%2BIszaiA93%2BPWQJHaUmi7bmUJLww2t4F6R8h7LyQ2q4jGFkqbk2ZYBXqMvWBcMvTlfUKn2YQCd79OqQUE0jrPMzIhWvk7HM5gZiOmKZT290H1tSrtussZjtllYQcibA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f65d2f4f0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ust.chatango.com/profileimg/b/e/beeroads/thumb.jpg | 208.93.230.24 | 200 OK | 1.3 kB |
URL GET HTTP/1.1ust.chatango.com/profileimg/b/e/beeroads/thumb.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3 Hash62a128f8fe33fbcf1df628dfc6f4c5d3 95857243b04cf0a4d9cffb89f6b74ed014f6b3d6 bc736a83820dc463a499b289beebabc5e9367ed8f94ef5dcf3954a49288ef714
GET /profileimg/b/e/beeroads/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: image/jpeg
Content-Length: 1288
Last-Modified: Sun, 09 Jan 2022 06:41:29 GMT
Connection: keep-alive
ETag: "61da8399-508"
Expires: Fri, 18 Oct 2024 05:00:05 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| ust.chatango.com/profileimg/r/c/rchamp/thumb.jpg | 208.93.230.24 | 200 OK | 1.7 kB |
URL GET HTTP/1.1ust.chatango.com/profileimg/r/c/rchamp/thumb.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3 Hash820bb480fc563fc388e3514f8909a36e a65f7017c599d81689fd95b3611aca4de7314acf 6a558a24cf368e7c53ee7da9a98106612e48364f0144297a0f52b6c92896bc73
GET /profileimg/r/c/rchamp/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:06 GMT
Content-Type: image/jpeg
Content-Length: 1734
Last-Modified: Tue, 20 Sep 2022 15:31:04 GMT
Connection: keep-alive
ETag: "6329dcb8-6c6"
Expires: Fri, 18 Oct 2024 05:00:06 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| ust.chatango.com/profileimg/g/0/g00gly/thumb.jpg | 208.93.230.24 | 200 OK | 1.7 kB |
URL GET HTTP/1.1ust.chatango.com/profileimg/g/0/g00gly/thumb.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3 Hashd4a5c082de8b365f18b1c8d597aa73a4 22dae719bb35606d93e8d6c476c5a4c47135f6dc af762ca42e1efefa29a2f822a5e7e6ec8cd6120f82c604730251fa090b94199a
GET /profileimg/g/0/g00gly/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:06 GMT
Content-Type: image/jpeg
Content-Length: 1677
Last-Modified: Sun, 23 Oct 2016 05:43:51 GMT
Connection: keep-alive
ETag: "580c4e17-68d"
Expires: Fri, 18 Oct 2024 05:00:06 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| ust.chatango.com/um/h/u/husseinxoxo/img/l_0.jpg | 208.93.230.24 | 200 OK | 20 kB |
URL GET HTTP/1.1ust.chatango.com/um/h/u/husseinxoxo/img/l_0.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x423, components 3 Hashb42d4c1437c5a8b2b165968044450f72 480906d6b8aafa22e9349c2daa464693f827026e aa719effb5633d2c96cc164c5b68e5a832bd8c1544ac7edd80563d9e1e62e03a
GET /um/h/u/husseinxoxo/img/l_0.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: image/jpeg
Content-Length: 19719
Last-Modified: Mon, 23 Sep 2024 11:47:12 GMT
Connection: keep-alive
ETag: "66f15540-4d07"
Expires: Fri, 18 Oct 2024 05:10:05 GMT
Cache-Control: max-age=600
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| st.chatango.com/pcache/sounds/message_received.mp3?1 | 208.93.230.28 | 206 Partial Content | 3.6 kB |
URL GET HTTP/1.1st.chatango.com/pcache/sounds/message_received.mp3?1 IP208.93.230.28:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural Hash751b8404037ee33d5038a335329444f8 fabc33696ff290a74d8e16c3883c6ac7482f9d4a 1ff3e9a39d7c0b422cd1a275c2292f55effdde5f3d648369634ad121bfb81b2b
GET /pcache/sounds/message_received.mp3?1 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0924241845/id.html
Cookie: session_id=3538898645475944
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 18 Oct 2024 05:00:20 GMT
Content-Type: audio/mpeg
Content-Length: 3584
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Expires: Sat, 18 Oct 2025 05:00:20 GMT
Cache-Control: max-age=31536000
Content-Range: bytes 0-3583/3584
|
|
| ust.chatango.com/profileimg/j/u/jubankesari/thumb.jpg | 208.93.230.24 | 200 OK | 640 B |
URL GET HTTP/1.1ust.chatango.com/profileimg/j/u/jubankesari/thumb.jpg IP208.93.230.24:443
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 50x50, components 3 Hash81a620d0a6b17b31632ca56ac588ecbb c93fc7d3b7c2ab12a68edf54be4b71753cb8f5e8 fcfa793d204b4144bf54f59bd9c5c720843af02dd02999d1653c8fafc0ebd8ea
GET /profileimg/j/u/jubankesari/thumb.jpg HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:05 GMT
Content-Type: image/jpeg
Content-Length: 640
Last-Modified: Tue, 09 Jun 2009 03:36:06 GMT
Connection: keep-alive
ETag: "4a2dd8a6-280"
Expires: Fri, 18 Oct 2024 05:00:05 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js | 104.18.187.31 | 200 OK | 191 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js IP104.18.187.31:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerSectigo Limited Subject*.jsdelivr.net Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size191 kB (190847 bytes) Hash8b282736631cc6e37fa25c5ea13db461 7b0886e78d52d87b188c792823a0353fcb2532b6 938cec20a584d283e32fc1fafb5b3619a62507a9e7a701c68f974b657fbc95ab
GET /npm/@swarmcloud/hls/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 54259
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.12.7
x-jsd-version-type: version
etag: W/"2e97f-ewiG541S2HsYjHkoI6A1P8slMrY"
content-encoding: br
x-served-by: cache-fra-eddf8230149-FRA, cache-lga21966-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 22840
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OpIZw67KmRwKF5kw5ErRp6Jkmvd3RVvYTJdgKMSEnZ9W1h%2BMg4fCYTUG5hFlwqlvAIVheSQzIoX46j5h1Br30iHnGNTIoqQdp5yMwWn6sdsuNxCZBhMDRp4Sr6FflMG5sCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f6667fe77127-OSL
X-Firefox-Spdy: h2
|
|
| thubanoa.com/27/6e8c83428372140d8e398c34fdc95157 | 139.45.197.242 | 200 OK | 413 kB |
URL GET HTTP/2thubanoa.com/27/6e8c83428372140d8e398c34fdc95157 IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintA3:21:18:06:45:5B:CD:F8:C7:C7:EE:D9:38:4D:15:83:85:2C:47:39 ValidityThu, 22 Aug 2024 00:57:32 GMT - Wed, 20 Nov 2024 00:57:31 GMT
File typeJavaScript source, ASCII text, with very long lines (65523) Size413 kB (413314 bytes) Hash2633ed252590a11b16999a1ed4b56b81 19c43c4d5b0219cd890fe54070ba1f402495cdb5 e1d182acc7b7f55024e93112635e15f8ebab2aa7b89a9eb9daa4c33afdeb4068
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /27/6e8c83428372140d8e398c34fdc95157 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Cookie: scm=1; OAID=0400f95228094519f7399cae16d0b3b3; oaidts=1729227604
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9645f38dcb23129454a9f695acef3e76
cache-control: max-age:290304000, public
last-modified: Tue, 10 Sep 2024 13:52:36 GMT
expires: Tue, 10 Oct 2084 13:52:36 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| thubanoa.com/9?z=3961139&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&var=3950893&oaid=0080f94688534b30f51f885f89b26806 | 139.45.197.242 | 200 OK | 6.5 kB |
URL POST HTTP/2thubanoa.com/9?z=3961139&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&var=3950893&oaid=0080f94688534b30f51f885f89b26806 IP139.45.197.242:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintA3:21:18:06:45:5B:CD:F8:C7:C7:EE:D9:38:4D:15:83:85:2C:47:39 ValidityThu, 22 Aug 2024 00:57:32 GMT - Wed, 20 Nov 2024 00:57:31 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (6964), with no line terminators Hash08251ecd0abdadd602b2c4c0f688af6f d060ce3897558696e3db972764d2e1e46ddfef84 0e24c1de440f2d91e888d4ff21fb08a4ff410bd852a47860d5da921937893ef9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /9?z=3961139&ng=0&ix=1&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Flolcalhost.ru%2Fembedx.php%3Fv%3Dskyscriccc%26con%3Dabc%26dt%3D241018050002&wy=0&wx=0&ww=1280&wh=1024&cw=678&wiw=678&wih=510&wfc=2&sah=1024&drf=https%3A%2F%2Fcdn.crichdplays.ru%2F&hil=1&ist=0&var=3950893&oaid=0080f94688534b30f51f885f89b26806 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 43
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Referer: https://lolcalhost.ru/
Cookie: scm=1; OAID=0400f95228094519f7399cae16d0b3b3; oaidts=1729227604
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://lolcalhost.ru
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: edb6e89ef779834bd3bd9cbfad18d435
access-control-expose-headers: X-Sc
set-cookie: OAID=0080f94688534b30f51f885f89b26806; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
oaidts=1729227604; expires=Sat, 18 Oct 2025 05:00:04 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s82.chatango.com:8081/ | 208.93.230.187 | 101 Switching Protocols | 0 B |
IP208.93.230.187:8081
Requested byhttps://st.chatango.com/h5/gz/r0924241845/id.html CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: s82.chatango.com:8081
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://st.chatango.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Nf6zTbO6Ynsm4QkFryzSQw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-WebSocket-Accept: HveXZMKvK3K3VrYsr9xUGEgur1o=
|
|
| pubtrky.com/ut/hb.php?cb=0.2535130794889634&v=1 | 172.67.188.110 | 204 No Content | 0 B |
URL POST HTTP/2pubtrky.com/ut/hb.php?cb=0.2535130794889634&v=1 IP172.67.188.110:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectpubtrky.com Fingerprint1C:AA:FC:FF:38:D8:EF:73:88:D2:C1:25:B4:81:1C:94:2A:06:07:C3 ValidityWed, 11 Sep 2024 07:35:33 GMT - Tue, 10 Dec 2024 07:35:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.2535130794889634&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 1448
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 18 Oct 2024 05:00:02 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xeQ75mUIcTTXKKArdRpirCk813MhKqCdye7FrDa02DXKKUr%2FS%2Ff0QvVyfYHWIYVoUZdi6GjrYhwCcTDHgLGLCkGIC3J82H%2BVh3iyBUc81URTa%2B7drogbtugHHgFTmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f661f896b4ee-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=601&sent=9&recv=12&lost=0&retrans=0&sent_bytes=3272&recv_bytes=2712&delivery_rate=7541666&cwnd=253&unsent_bytes=0&cid=93cc620cf0e1364f&ts=163&x=0"
X-Firefox-Spdy: h2
|
|
| cdn.crichdplays.ru/assets/tmp/sp.js?v=7.009 | 104.21.66.188 | 200 OK | 356 B |
URL GET HTTP/3cdn.crichdplays.ru/assets/tmp/sp.js?v=7.009 IP104.21.66.188:443
Requested byhttps://cdn.crichdplays.ru/embed2.php?id=skysp2 CertificateIssuerGoogle Trust Services Subjectcrichdplays.ru Fingerprint33:B6:CD:AA:EB:15:CB:02:62:E8:72:5F:CF:0A:C2:46:8C:2E:C0:A7 ValidityTue, 08 Oct 2024 14:26:00 GMT - Mon, 06 Jan 2025 14:25:59 GMT
File typeASCII text, with very long lines (366), with no line terminators Hashbc55025f015cc43e03ff31ec63c32f20 41898dd4a21aedc3624a9a9c531a8fcbf596bd6c 7035245ab4037597caa9bd8174b6ac1aeeec62571d6f73e7bfca41292ec3c73d
GET /assets/tmp/sp.js?v=7.009 HTTP/1.1
Host: cdn.crichdplays.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.crichdplays.ru/embed2.php?id=skysp2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/javascript
age: 4852
cf-bgj: minify
cf-polished: origSize=365
etag: W/"671196fc-16d"
last-modified: Thu, 17 Oct 2024 23:00:12 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.6)
x-varnish: 47348467
cache-control: max-age=2678400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PoPqtstPe8DVFSo%2BtI9b0aB8ZVAtf4HUriq38hLpxgKn4VmhgxmmpWA%2FF4wORTXujiqrCzPfQ5J%2BhFgi1ZVjhX%2FIlZltq5YRZS4ndR3Gq3U54%2Byd2YUH41Kbuh7WMjlB0%2Ba2o5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f6637f1e56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| youradexchange.com/script/suurl5.php?r=7017558&cbur=0.6805035614417254&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Sky%20Sports%20Cricket%20Live%20Streaming%20-%20CricHD%20PLAYER%20%23CricHD&cbpage=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&cbref=&cbdescription=Watch%20Sky%20Sports%20Cricket%20Live%20Streaming%20on%20our%20website%20CricHD%20free%20live%20cricket%20streaming%20site.%20Sky%20Sports%20Cricket%20Online%20in%20hd%20for%20free%20on%20android%20mobile%20%2C%20iphone%2C%20ipad.&cbkeywords=sky%20sports%20cricket%2C%20sky%20sports%20cricket%20live%2C%20sky%20sports%20cricket%20live%20stream%2C%20sky%20sports%20cricket%20live%20streaming%2C%20watch%20sky%20sports%20cricket%20online%2C%20sky%20sports%20cricket%20live%20streaming%20free%2C%20watch%20sky%20sports%20cricket%20free%2C%20&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602113&srs=e22439dd6635bd4059386678ff280f85&atv=55.0&abtg=1&adbv=3-cdn-js | 104.21.91.188 | 200 OK | 975 B |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=7017558&cbur=0.6805035614417254&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Sky%20Sports%20Cricket%20Live%20Streaming%20-%20CricHD%20PLAYER%20%23CricHD&cbpage=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&cbref=&cbdescription=Watch%20Sky%20Sports%20Cricket%20Live%20Streaming%20on%20our%20website%20CricHD%20free%20live%20cricket%20streaming%20site.%20Sky%20Sports%20Cricket%20Online%20in%20hd%20for%20free%20on%20android%20mobile%20%2C%20iphone%2C%20ipad.&cbkeywords=sky%20sports%20cricket%2C%20sky%20sports%20cricket%20live%2C%20sky%20sports%20cricket%20live%20stream%2C%20sky%20sports%20cricket%20live%20streaming%2C%20watch%20sky%20sports%20cricket%20online%2C%20sky%20sports%20cricket%20live%20streaming%20free%2C%20watch%20sky%20sports%20cricket%20free%2C%20&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602113&srs=e22439dd6635bd4059386678ff280f85&atv=55.0&abtg=1&adbv=3-cdn-js IP104.21.91.188:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectyouradexchange.com Fingerprint03:7E:C0:10:42:5B:39:CE:2A:03:91:B7:74:65:C7:B0:C7:27:21:4B ValidityTue, 08 Oct 2024 07:34:56 GMT - Mon, 06 Jan 2025 07:34:55 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1002), with no line terminators Hash4acc0856388aa9d269b35736ace847e5 7f23ed5b66a06171546aff7a8bfa648ab297dfc3 ad09939aed01036aa0d4fe7abb47e2c44b6cf59d6f0caae83596a85f51786c6a
GET /script/suurl5.php?r=7017558&cbur=0.6805035614417254&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Sky%20Sports%20Cricket%20Live%20Streaming%20-%20CricHD%20PLAYER%20%23CricHD&cbpage=https%3A%2F%2Fhd.crichd-player.top%2Fsky-sports-cricket-live-streaming-hd-52&cbref=&cbdescription=Watch%20Sky%20Sports%20Cricket%20Live%20Streaming%20on%20our%20website%20CricHD%20free%20live%20cricket%20streaming%20site.%20Sky%20Sports%20Cricket%20Online%20in%20hd%20for%20free%20on%20android%20mobile%20%2C%20iphone%2C%20ipad.&cbkeywords=sky%20sports%20cricket%2C%20sky%20sports%20cricket%20live%2C%20sky%20sports%20cricket%20live%20stream%2C%20sky%20sports%20cricket%20live%20streaming%2C%20watch%20sky%20sports%20cricket%20online%2C%20sky%20sports%20cricket%20live%20streaming%20free%2C%20watch%20sky%20sports%20cricket%20free%2C%20&cbcdn=sdbuuzhjzznc.fun&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1729227602113&srs=e22439dd6635bd4059386678ff280f85&atv=55.0&abtg=1&adbv=3-cdn-js HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hd.crichd-player.top/
Origin: https://hd.crichd-player.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5Q9K605Oybls0MMhNXsszTnEoeHNnvDGXisZ7PyxsOpVh4f1Mf5D7PX8%2BXvMoknSckRf2UlbU95fyJ%2Bqqy5qyuvKRjZ7xxMVNuI7TYfUgqjTzFncHaBp4R%2FNotXcVKZFjwblaaA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f66178317131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| eu.cdnbye.com/v1/channel | 172.67.146.36 | 200 OK | 394 B |
IP172.67.146.36:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerGoogle Trust Services Subjectcdnbye.com FingerprintDB:A6:9C:BF:E8:29:72:DA:0B:45:B8:E8:0C:29:98:67:CD:06:E5:FC ValidityFri, 13 Sep 2024 15:24:55 GMT - Thu, 12 Dec 2024 15:24:54 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (462), with no line terminators Hashbf9c3176d58b2d4bae71c60731ef75f6 9bcf85b92b4bcbb34166c6347cd6104fb86125fa b2bfddc3e0083d6e98ef25541474ad16a31e77c0b6ffe0319c21170916321fc1
POST /v1/channel HTTP/1.1
Host: eu.cdnbye.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lolcalhost.ru/
Content-Type: text/plain;charset=UTF-8
Content-Length: 367
Origin: https://lolcalhost.ru
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:04 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vDKJk2xTpK01Fl4i0IfNDULA3KcGAYGP7OwQSKIyXjcw6ktOAaz0dcWMpRdqMopVEcs%2B2nNvj%2BZoFmCVOUfXvcCk0KOUl%2BwxYkmg5R19M%2BAxONp%2Fq4DlTJWGQ2o5oZ%2F4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f66f1ee556c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lolcalhost.ru/cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js? | 104.21.35.231 | 200 OK | 8.1 kB |
URL GET HTTP/3lolcalhost.ru/cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js? IP104.21.35.231:443
Requested byhttps://lolcalhost.ru/embedx.php?v=skyscriccc&con=abc&dt=241018050002 CertificateIssuerGoogle Trust Services Subjectlolcalhost.ru FingerprintB5:C6:FA:CE:47:03:A8:2C:18:7B:06:9E:E1:1F:66:65:0E:4F:3D:BD ValidityMon, 07 Oct 2024 18:09:30 GMT - Sun, 05 Jan 2025 18:09:29 GMT
File typeJavaScript source, ASCII text, with very long lines (8079), with no line terminators Hash479827f15ff8fd9d9277820480f7bb9c 0204590ec540b5b9b548e6e6e3186b8b943cfb49 54cf8b768d3e61771770be6140b9968baa7209c80ca12e969b7795626c0050b7
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/62ec4f065604/main.js? HTTP/1.1
Host: lolcalhost.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:03 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OxMAoLJGD4xBEin4z0fxl7PKzXomlMKG%2B17Z%2BNA7VcQg%2FaD%2FFgARLuLDKzWKuK%2Fr3B5cJ1Zmk%2FYG5J19uel%2BesA%2BAcBdziUBs557Gl%2BhiH1BJXfaAQdNbAuUyMjmTdOf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d45f66b08541c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| sdbuuzhjzznc.fun/script/ut.js?cb=1729227602102 | 104.21.40.2 | 200 OK | 63 kB |
URL GET HTTP/2sdbuuzhjzznc.fun/script/ut.js?cb=1729227602102 IP104.21.40.2:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectsdbuuzhjzznc.fun Fingerprint07:10:C3:C9:74:CD:EC:12:A7:55:8A:44:57:CF:EF:17:3D:C1:71:CB ValidityMon, 14 Oct 2024 13:37:03 GMT - Sun, 12 Jan 2025 13:37:02 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /script/ut.js?cb=1729227602102 HTTP/1.1
Host: sdbuuzhjzznc.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: text/javascript
x-goog-generation: 1728560515014783
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 63065
x-goog-hash: crc32c=8dV6jg==, md5=jCS1btpZX9m1Y7FuuSCH1g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: AHmUCY06O7e3l-kN3cOiTV3O5ipaKuoULcY_G6o3s-0bqtyCBOTwoSrEK4O5a-E5L9suSOQZDLM
expires: Fri, 18 Oct 2024 05:14:57 GMT
cache-control: public, max-age=14400
age: 2311
last-modified: Thu, 10 Oct 2024 11:41:55 GMT
etag: W/"8c24b56eda595fd9b563b16eb92087d6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UmHBnvcZmOMS0pzy14RUGZscJjD2hn19UAc7Z5e4eUUtyJM%2FU1kan%2BwvqLMACCRuF%2F%2Bnu04t0BvmEZHunqsvAPw4hDpINdImP665AXqSIj%2Ft23ePDsFWDNbpM1NkxvDZY6ih"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8d45f6615ac00b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.crichdplays.ru/embed2.php?id=skysp2 | 104.21.66.188 | 200 OK | 1.7 kB |
URL GET HTTP/2cdn.crichdplays.ru/embed2.php?id=skysp2 IP104.21.66.188:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectcrichdplays.ru Fingerprint33:B6:CD:AA:EB:15:CB:02:62:E8:72:5F:CF:0A:C2:46:8C:2E:C0:A7 ValidityTue, 08 Oct 2024 14:26:00 GMT - Mon, 06 Jan 2025 14:25:59 GMT
File typeHTML document, ASCII text, with very long lines (1839), with no line terminators Hashc6b4e48e24b45496600a094c25729eef d411acc535706b7bc7c4f45c39a6ef3b1e5bd0cc 8adfb9c55330da27eb73ebf45e96f3bdc60ff7e9068d7f8af636dce094a53eb1
GET /embed2.php?id=skysp2 HTTP/1.1
Host: cdn.crichdplays.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-varnish: 56623656
age: 0
via: 1.1 varnish (Varnish/6.6)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=937ldo2clCzhC0pG9qFof%2B64FBfasU%2B3jMxs1tG%2FxG8GptACKdRuu61Fo2yuT8B39NAsfLK2b%2BN%2FVRZmTOgI7stYD%2FOtDgF5FccTIu5Rv%2Bau93d9f9IqIK%2FuY9nD%2Bynaja0DuxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f661b9951bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| st.chatango.com/h5/gz/r0924241845/id.html | 208.93.230.28 | 200 OK | 698 kB |
URL GET HTTP/1.1st.chatango.com/h5/gz/r0924241845/id.html IP208.93.230.28:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerSectigo Limited Subject*.chatango.com FingerprintCA:CB:28:83:0F:25:6F:8E:F9:1B:D1:C9:48:5C:78:14:83:32:65:7A ValidityMon, 24 Jun 2024 00:00:00 GMT - Thu, 24 Jul 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators Size698 kB (697808 bytes) Hasha430906737a6b55f5d62cc5b7fd1402b c68fc596bfd6a4d153a793c61842d5424f94e276 7195b397a7173d3bfbe35b02dd8ba1f3baf3f437928ffe9072243e04aee489da
GET /h5/gz/r0924241845/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 18 Oct 2024 05:00:02 GMT
Content-Type: text/html
Content-Length: 224329
Last-Modified: Wed, 25 Sep 2024 01:49:29 GMT
Connection: keep-alive
Expires: Sat, 18 Oct 2025 05:00:02 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
|
|
| hd.crichd-player.top/favicon.ico | 104.21.54.55 | 200 OK | 1.1 kB |
URL GET HTTP/3hd.crichd-player.top/favicon.ico IP104.21.54.55:443
Requested byhttps://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52 CertificateIssuerGoogle Trust Services Subjectcrichd-player.top Fingerprint43:EC:B6:67:77:96:DE:C5:AD:96:A0:DB:31:D4:76:FF:B2:97:58:FB ValiditySat, 05 Oct 2024 18:15:28 GMT - Fri, 03 Jan 2025 18:15:27 GMT
File typePNG image data, 25 x 25, 8-bit colormap, non-interlaced Hash4da3c1f68e8302a8bab0ce402f732c98 6da90b39b5730fe89ca87f0aa45edfc5725a208f 9c6e0db8e8ee60a9ad727a2add0e70b899b141cdc197779a4b72b7f914376a46
GET /favicon.ico HTTP/1.1
Host: hd.crichd-player.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hd.crichd-player.top/sky-sports-cricket-live-streaming-hd-52
Cookie: isFTime_81ffc7c92e97ea045fe49eba44f4cbf5=true; isFTime_81ffc7c92e97ea045fe49eba44f4cbf5_expiry=Fri, 18 Oct 2024 05:00:02 GMT; isFTime_9dd12203842fdbb7ff56cfdbd2c7d020=true; isFTime_9dd12203842fdbb7ff56cfdbd2c7d020_expiry=Fri, 18 Oct 2024 05:00:02 GMT; dom3ic8zudi28v8lr6fgphwffqoz0j6c=77196471-0d18-48ed-b82f-cfa3f11c4740%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 18 Oct 2024 05:00:02 GMT
content-type: image/x-icon
last-modified: Sun, 21 Apr 2024 18:25:05 GMT
vary: Accept-Encoding
etag: W/"66255a01-427"
x-varnish: 25598823
age: 4490
via: 1.1 varnish (Varnish/6.2)
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cpG9ldOCw2vy%2FV8%2FRa6%2FKwZasCWfTN9681XP38z60niu0Ga4sMptem9GbHIDQiK7S7LIZRGK6iCUEZDPLEsrcHznmhW8urzDKOWLzEO%2Fbku5AfuiKNzeZVUHLc6gssR10MzQcGcu%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8d45f665f93d0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
0.0.0.0