{"report_id":"b6483d90-d01d-4959-ac9a-8e062e398912","version":6,"status":"done","tags":[],"date":"2025-10-25T17:28:07Z","url":{"schema":"http","addr":"vidsrc.su/embed/movie/1054867","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"172.67.203.204","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vidsrc.su/embed/movie/1054867","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"title":"Vidsrc"},"submit":{"url":{"schema":"http","addr":"vidsrc.su/embed/movie/1054867","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"172.67.203.204","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-29T17:28:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":5}},"detection":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"vidsrc.su","ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-09-02","domain_rank":387304,"first_seen":"2025-06-24T22:16:55.155154Z","last_seen":"2025-10-19T15:03:58.521978Z","alert_count":10,"request_count":10,"received_data":2018069,"sent_data":4467,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"stats.menochi.su","ip":{"addr":"104.21.6.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-05-04","domain_rank":0,"first_seen":"2025-10-19T15:03:58.128777Z","last_seen":"2025-10-19T15:03:58.128777Z","alert_count":0,"request_count":1,"received_data":3537,"sent_data":408,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2025-10-19T22:12:35.4735Z","alert_count":0,"request_count":1,"received_data":10794,"sent_data":468,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"wa.norryaboulic.com","ip":{"addr":"188.42.241.189","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"domain_registered":"2025-07-09","domain_rank":0,"first_seen":"2025-10-04T22:52:04.018921Z","last_seen":"2025-10-15T22:12:21.632526Z","alert_count":4,"request_count":1,"received_data":1416,"sent_data":425,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"wa.norryaboulic.com/rIyoJf7xGQ4U6UQ1w/QALrl","fqdn":"wa.norryaboulic.com","domain":"norryaboulic.com","tld":"com"},"ip":{"addr":"188.42.241.189","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-26T08:02:58.729985Z","times_seen":15785,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"stats.menochi.su/script.js","fqdn":"stats.menochi.su","domain":"menochi.su","tld":"su"},"ip":{"addr":"104.21.6.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"14510a5b7aeeaa1060666fd2f1fcda4a","sha1":"9fe250161aac6d93d342fdf97f4a7c59566f16c1","sha256":"a656812a02ca34d8dc65b86430b3434eb5f17e56bd904b4761566cf542d08b55","sha512":"135d932f031243ba24bbb3903f3a928506516ac86f6f2d6cd9b6c99932286c2f67dbfb2b978a8c05e0456c4b8c0aa965ba3a718fbe089cdcc9d6843c849ef2f0","ssdeep":"","tlshash":"e45109f6b2d5b0f13f7438c0c1b9612467290a71782f9091babe1c898b1d81b5132e3c","size":2522,"data":"","first_seen":"2025-07-27T21:31:49.605781Z","last_seen":"2026-04-25T07:39:05.156014Z","times_seen":650,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/player-vendor-BfEgDoR5.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"7b1df832a318dc7390fb81ef66ceaeb0","sha1":"a6296d4d9f5f75d89613aa344656b42749a7ecbc","sha256":"1fc7086ffcc170c7c749659f1d698bfd6aeadc16e9875ffdb4271a84fb99f5fd","sha512":"dc21a5a6daadbd87b5c62a2dc158faca9e8d9dbc08f88179d7a7e276d219ce1d3b1f9e311a1610d603abb2227c13dd0f5ba8a51e0771bfa69372f60370f2ec6c","ssdeep":"12288:RFuF7Q8PwWl2z62v3RAqkxU27mgE/tbEhFThonsB5wa:RFU7QAwWl2z62v3WqkxU4mgGtb09msBR","tlshash":"beb44ba636e6842747d099ca94354612a33d7d0a3408c1ecfe7ebdcb2d26946f07af74","size":516649,"data":"","first_seen":"2025-10-10T18:30:51.060162Z","last_seen":"2025-12-31T13:31:53.254253Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/react-vendor-B7ISnKZJ.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"7e2ec4757cfcbc969c73e110fc1705c1","sha1":"a633de1b1e28dcc03e455b62b06bcf30b25a8b17","sha256":"90329232980b0895a68fdd8e000e95e2146e08dd190e940fc7b4630ea85877de","sha512":"41aafdc76a2e0bdc546257cba0ce375ee2bcdc063c05fb871d0d2213a5132c2992d9b209767e42f353e569b2e73c21dc926695c727c373781e5ea726619ac421","ssdeep":"1536:ntJhHWvilgM1QWHGY7XNGhtxy2i4FvsLBakLrRHUqImDyz3INuj3HuGP:tJhHWpMrNGtyHL+70Nujp","tlshash":"10f31ae83952f5626bb302b710af1817733d291b280d4960a211fddeb4f845da17bfad","size":160738,"data":"","first_seen":"2025-10-10T18:30:51.074511Z","last_seen":"2025-11-01T19:57:29.671401Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/ui-vendor-8NgSx85q.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"b29ccdaf1640df1cff3eca8bfd13e8a8","sha1":"bf954482dd718e0aa6801560da2a02d302a69fd6","sha256":"8c933a64480cfa0309b1ebacc90dd7fa34e15f3c18ea9e164fbabbcc741b0066","sha512":"e00f947d85b33385fd9965b783aba0641abef6325bbba5fc7979c4e0d126e211000a12c13bfeaedf61c0219cc3a27a8e9d098c23b92a4690e17b2eeb38f72e2b","ssdeep":"1536:UOGA7K6qb9FahlTgzTgaXeS1OHIyUC7oNYakq/QikoSUqBNoee7QJsg:UgF09oRgzFeSsHVnoh6N0EJsg","tlshash":"d5a30ac572a1b12193d74499c47f0b51b73b19d8305ac0ecb67daccb2d2114aa6bbb3e","size":102275,"data":"","first_seen":"2025-10-10T18:30:51.078504Z","last_seen":"2025-11-01T19:57:29.670619Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/index-DJ2A1_OX.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"8e435b07b3b32ddb1e66d349965585f6","sha1":"ba856d33bc401e7ad370fed973aa9c5481ab838f","sha256":"fdc83914d9a2b3832a21b2f8be9c89edb8004a1b5fc0f8502425a019e9444f49","sha512":"0e750b3e579e5fdc62bc70d52225f5be8c5c4b18e5092a1ddcc80bed0ed5c69541a09e028ade1c8294f352442fec2ae09528a37df2f2a4a4d0fbdf472c1e2b30","ssdeep":"3072:KWMYY2PeaWyFNJhodNSGmKsL8M/jqFrBkBKaN2Jp0Y+B+0GQBXT+6QjLrcVG:xG2PeaWd5mKsL8M/L+6RG","tlshash":"21744c19a100dbbdeea745d4a9bfa018f03f1fa4fb1f8890f13c68221755486ba57bc5","size":340622,"data":"","first_seen":"2025-10-10T18:30:51.084618Z","last_seen":"2025-11-01T19:57:29.674792Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/embed/movie/1054867","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"454ff1e854d71972b9f021d16cf25493","sha1":"c31efc264b38ae32111f8f39e4b732db536a66aa","sha256":"7cdfeaa75b9c3f98bc1cf85a24f6a3e3ff41ae1521645f402b531a69971c78ea","sha512":"f26ffc24d4311cda69d2f3694513b907795450b6b3b5aaad156f3d6d6b26d6ddb403e61678060ac9a358251c1dd0382caa87bc4e9da54638885f477bcea6e64d","ssdeep":"","tlshash":"e511f5ac28f7a20093a371ad2b8fb515b132e6573584dc047d1c93116fe2f69dab29cc","size":868,"data":"","first_seen":"2025-10-10T18:30:51.088032Z","last_seen":"2025-12-31T13:31:53.261337Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"vidsrc.su/assets/ui-vendor-8NgSx85q.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.930Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/ui-vendor-8NgSx85q.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/assets/index-DJ2A1_OX.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\netag: \"ddk0sy5663e126wz\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4402\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=U0%2FCeIoCYMgwqUJtXZ8URyKWkLrJ334JhT6M4Os84Uql7Bk6GeG7Df%2Boqc0gu5xqv2nVoQ3Sle1YHndJuuUaIkp%2F1ss%2FHA3uHA%3D%3D\"}]}\r\ncf-ray: 99436d29ba3f4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102275,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b29ccdaf1640df1cff3eca8bfd13e8a8","sha1":"bf954482dd718e0aa6801560da2a02d302a69fd6","sha256":"8c933a64480cfa0309b1ebacc90dd7fa34e15f3c18ea9e164fbabbcc741b0066","sha512":"e00f947d85b33385fd9965b783aba0641abef6325bbba5fc7979c4e0d126e211000a12c13bfeaedf61c0219cc3a27a8e9d098c23b92a4690e17b2eeb38f72e2b","ssdeep":"1536:UOGA7K6qb9FahlTgzTgaXeS1OHIyUC7oNYakq/QikoSUqBNoee7QJsg:UgF09oRgzFeSsHVnoh6N0EJsg","tlshash":"d5a30ac572a1b12193d74499c47f0b51b73b19d8305ac0ecb67daccb2d2114aa6bbb3e","first_seen":"2025-10-10T18:30:51.078504Z","last_seen":"2025-11-01T19:57:29.670619Z","times_seen":10,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/ui-vendor-8NgSx85q.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:45.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/ui-vendor-8NgSx85q.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:45 GMT\r\netag: \"ddk0sy5663e126wz\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4403\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2B1bEO7P6iHJLgwU3Kdapw%2FVexUZ%2B8FRBcKRY70FdTXmzJFEFnb7fWQQbwCoTu3L3qDKdxzUSGy8sStVx7MPk%2FJYncK9JXDUTig%3D%3D\"}]}\r\ncf-ray: 99436d2afa644e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":102275,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b29ccdaf1640df1cff3eca8bfd13e8a8","sha1":"bf954482dd718e0aa6801560da2a02d302a69fd6","sha256":"8c933a64480cfa0309b1ebacc90dd7fa34e15f3c18ea9e164fbabbcc741b0066","sha512":"e00f947d85b33385fd9965b783aba0641abef6325bbba5fc7979c4e0d126e211000a12c13bfeaedf61c0219cc3a27a8e9d098c23b92a4690e17b2eeb38f72e2b","ssdeep":"1536:UOGA7K6qb9FahlTgzTgaXeS1OHIyUC7oNYakq/QikoSUqBNoee7QJsg:UgF09oRgzFeSsHVnoh6N0EJsg","tlshash":"d5a30ac572a1b12193d74499c47f0b51b73b19d8305ac0ecb67daccb2d2114aa6bbb3e","first_seen":"2025-10-10T18:30:51.078504Z","last_seen":"2025-11-01T19:57:29.670619Z","times_seen":10,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/vite.svg","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:45.279Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /vite.svg HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=o4jxOmhpm0SRLR3nYBghGHuamSCoDkBrnhYYQfSaDKeAxtpAWlE9htjQ5zNkoL%2FoJlLok6I8R%2FwnXzKr3vyRbQQrAMfZQlW7Rg%3D%3D\"}]}\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Sat, 25 Oct 2025 17:27:45 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nage: 2293\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\ncf-ray: 99436d2bfa8a4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1862,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"a8897dbf5ce4e9eb779d3ce768b579f9","sha1":"3233c929018984a52d9e2743c4a8b00b7aad94e1","sha256":"05904815f2ea74d5eb1bfaada2b176b4733091806cf784d541175a7d181918d7","sha512":"4236e5f39cdcd5729f1820cdb4ae24ff7d91dd59d7fcfe98be6703e16ee5d4f2d575e9778f98a337c64f863723d4af71301fa858e06c178bc54bb261d534c81f","ssdeep":"","tlshash":"103101882cf3c5015361269dabc7f01cb566f3872588dc44b8acd2655f81f95cea7cac","first_seen":"2025-10-19T15:04:04.130609Z","last_seen":"2025-11-01T19:57:29.674291Z","times_seen":6,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/embed/movie/1054867","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-25T17:27:44.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /embed/movie/1054867 HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\ncontent-type: text/html; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z8GF%2B7qXmxml5HAgwlvvEsRmsBX1I3TbpAqyAkQr1hNBzzrkgdsYgfVs3ZZB1GC2mhLjLrtZfom43pf4ynocpwzgA%2BHELDilYg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 99436d270ab90daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1862,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"a8897dbf5ce4e9eb779d3ce768b579f9","sha1":"3233c929018984a52d9e2743c4a8b00b7aad94e1","sha256":"05904815f2ea74d5eb1bfaada2b176b4733091806cf784d541175a7d181918d7","sha512":"4236e5f39cdcd5729f1820cdb4ae24ff7d91dd59d7fcfe98be6703e16ee5d4f2d575e9778f98a337c64f863723d4af71301fa858e06c178bc54bb261d534c81f","ssdeep":"","tlshash":"103101882cf3c5015361269dabc7f01cb566f3872588dc44b8acd2655f81f95cea7cac","first_seen":"2025-10-19T15:04:04.130609Z","last_seen":"2025-11-01T19:57:29.674291Z","times_seen":6,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":32,"dns":9,"connect":2,"send":0,"wait":114,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"stats.menochi.su/script.js","fqdn":"stats.menochi.su","domain":"menochi.su","tld":"su"},"ip":{"addr":"104.21.6.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.827Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"menochi.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 30 Aug 2025 16:36:56 GMT","end":"Fri, 28 Nov 2025 17:35:23 GMT"},"fingerprint":{"sha1":"BE:23:7C:39:D7:19:AB:FF:C4:D9:20:E5:2F:0C:9C:A5:A9:2B:9D:2B","sha256":"FD:1D:54:E8:F1:E1:3E:B8:28:AA:32:D5:97:C1:3C:68:20:CB:9D:FF:A4:03:FF:99:B4:D7:43:76:02:66:63:E8"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: stats.menochi.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncache-control: public, max-age=86400, must-revalidate\r\ncontent-encoding: gzip\r\ncontent-security-policy: default-src 'self';img-src * data:;script-src 'self' 'unsafe-eval' 'unsafe-inline';style-src 'self' 'unsafe-inline';connect-src 'self' api.umami.is cloud.umami.is;frame-ancestors 'self'\r\netag: W/\"9da-1984dfe4430\"\r\nlast-modified: Sun, 27 Jul 2025 22:26:06 GMT\r\nvary: Accept-Encoding\r\nvia: 1.1 Caddy\r\nx-dns-prefetch-control: on\r\nage: 73145\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Un4X7XH0vmHSimYcPYNiGqK9nX%2BQViwCeSxZ9faSIBP9YOEV4u70Wsq4t1R8vAvPeG9zV78EeiGdyFFHxKgfqKqSdtVHUiZRcp0Xbfux\"}]}\r\nserver: cloudflare\r\ncf-ray: 99436d29695db4ff-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2522,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2521)","md5":"14510a5b7aeeaa1060666fd2f1fcda4a","sha1":"9fe250161aac6d93d342fdf97f4a7c59566f16c1","sha256":"a656812a02ca34d8dc65b86430b3434eb5f17e56bd904b4761566cf542d08b55","sha512":"135d932f031243ba24bbb3903f3a928506516ac86f6f2d6cd9b6c99932286c2f67dbfb2b978a8c05e0456c4b8c0aa965ba3a718fbe089cdcc9d6843c849ef2f0","ssdeep":"","tlshash":"e45109f6b2d5b0f13f7438c0c1b9612467290a71782f9091babe1c898b1d81b5132e3c","first_seen":"2025-07-27T21:31:49.605781Z","last_seen":"2026-04-25T07:39:05.156014Z","times_seen":650,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":41,"dns":21,"connect":1,"send":0,"wait":10,"receive":0,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/index-DQ6JxJgd.css","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/index-DQ6JxJgd.css HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: text/css; charset=utf-8\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\netag: \"ddk0sy53scxr2b0m\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4402\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Yd88jlnrWq2LwxRZiBq5H1i7Qt0cJlKbkjqwh060Ovd9NCzZILwz1X%2FK%2FW9zC0hInRX3GF32fMAmGpKEAXZWbZv1ifCAuLPewQ%3D%3D\"}]}\r\ncf-ray: 99436d291a364e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":107590,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"7e35d91d648925348d524fd2ec6f4c6a","sha1":"0770d0936d1f68af2f7b74c0b43e27ae7006f3fd","sha256":"d00f21bfe69a8b6b9ded9a5556e60ea958076cea38369851fded3ce2a7a41eaa","sha512":"19afd817685418ee524603c155b248b9295b4dbccae69bae73cea383cecc4caa1b595721f4bcc53fe3dd16346e8cba172317beafe766ad9278f4bd27d9683ad9","ssdeep":"1536:+/9XQx57ij6hVx5DNg99J9zBTb6AoP67whD:+/9XQx57ij6hVx5DNg99J9zBNoP67whD","tlshash":"5ab3842daa54907f7c27e1e4d3dcaaacf51af1c1cf3e16b9b981122067c23f50d56928","first_seen":"2025-10-10T18:30:51.067447Z","last_seen":"2025-11-01T19:57:29.675281Z","times_seen":10,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.862Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Oct 2025 14:34:04 GMT","end":"Wed, 24 Dec 2025 14:34:03 GMT"},"fingerprint":{"sha1":"5F:D5:F8:10:14:80:32:78:B6:66:AC:25:01:5E:C2:6B:0C:D6:03:BD","sha256":"66:2A:01:C5:DD:28:0B:66:17:E5:8A:2F:4E:52:AF:74:21:21:65:E1:71:72:47:4B:5D:69:50:8D:B4:16:49:C5"}}},"request":{"raw":"GET /css2?family=Inter:wght@400;500;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sat, 25 Oct 2025 17:27:44 GMT\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10108,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"e85517dadd43448782d60d7f207fddce","sha1":"6cd31f870727ba8090fac9602b42524b4139a619","sha256":"88fbd0b95222be288587a149c324189ecbd8de0d6f0c94f528ec53857e52b66c","sha512":"5edc78df5bb062a9a2e1ea6724c14dd7eb80d77ea0fa9572de4bb0d52bbd0d163815b08a1ae77084f99fbefbb07715da1c61f0bb36fb498710c91387792955f8","ssdeep":"192:9NNIxO34OxDENOPCO3/Nx8NNryfO3iExlONEhYO3RrxGx:vXuM0p2+4","tlshash":"04227792002ba400ab971dc233cf7f3aaece50896085d1b95ffd0dc59cead66436876d","first_seen":"2025-09-10T18:13:11.065101Z","last_seen":"2026-04-26T08:01:31.900289Z","times_seen":22747,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":117,"dns":1,"connect":21,"send":0,"wait":30,"receive":0,"ssl":93},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/player-vendor-BfEgDoR5.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.931Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/player-vendor-BfEgDoR5.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/assets/index-DJ2A1_OX.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\netag: \"ddk0sy5663e1b2nd\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4403\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SyRM7Rf7zQEjh2g%2BjvrxKmom1AouaJVQIxQ5HSIFabtxpVH36u5N%2BNiVr%2FTSVMr11cI16GG5W0W4la%2B9LlGI0rISCTQG6Pv0ZA%3D%3D\"}]}\r\ncf-ray: 99436d29ba404e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":516649,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7b1df832a318dc7390fb81ef66ceaeb0","sha1":"a6296d4d9f5f75d89613aa344656b42749a7ecbc","sha256":"1fc7086ffcc170c7c749659f1d698bfd6aeadc16e9875ffdb4271a84fb99f5fd","sha512":"dc21a5a6daadbd87b5c62a2dc158faca9e8d9dbc08f88179d7a7e276d219ce1d3b1f9e311a1610d603abb2227c13dd0f5ba8a51e0771bfa69372f60370f2ec6c","ssdeep":"12288:RFuF7Q8PwWl2z62v3RAqkxU27mgE/tbEhFThonsB5wa:RFU7QAwWl2z62v3WqkxU4mgGtb09msBR","tlshash":"beb44ba636e6842747d099ca94354612a33d7d0a3408c1ecfe7ebdcb2d26946f07af74","first_seen":"2025-10-10T18:30:51.060162Z","last_seen":"2025-12-31T13:31:53.254253Z","times_seen":15,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/react-vendor-B7ISnKZJ.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:45.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/react-vendor-B7ISnKZJ.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:45 GMT\r\netag: \"ddk0sy5663e13g0y\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4403\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=twxQV%2B3wT3TrTszK51ZuWotDJ3gRKDVYJxccSlRtrJk5P3GsLF5nuCpaPp1O0EGr9YOV%2B9F%2BrJMykR8IRbu811Z2%2BGzHLuz6YA%3D%3D\"}]}\r\ncf-ray: 99436d2afa634e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":160738,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (54226)","md5":"7e2ec4757cfcbc969c73e110fc1705c1","sha1":"a633de1b1e28dcc03e455b62b06bcf30b25a8b17","sha256":"90329232980b0895a68fdd8e000e95e2146e08dd190e940fc7b4630ea85877de","sha512":"41aafdc76a2e0bdc546257cba0ce375ee2bcdc063c05fb871d0d2213a5132c2992d9b209767e42f353e569b2e73c21dc926695c727c373781e5ea726619ac421","ssdeep":"1536:ntJhHWvilgM1QWHGY7XNGhtxy2i4FvsLBakLrRHUqImDyz3INuj3HuGP:tJhHWpMrNGtyHL+70Nujp","tlshash":"10f31ae83952f5626bb302b710af1817733d291b280d4960a211fddeb4f845da17bfad","first_seen":"2025-10-10T18:30:51.074511Z","last_seen":"2025-11-01T19:57:29.671401Z","times_seen":10,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/player-vendor-BfEgDoR5.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:45.149Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/player-vendor-BfEgDoR5.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:45 GMT\r\netag: \"ddk0sy5663e1b2nd\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4403\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NLpbv459TVTaFIbaxzQ5NgBJHsPx9pepfr9%2Bj59oeErcHjgyLN8ViIV%2F%2BWr5K%2FO4XX0cYewgTHkoi%2F9Cm3HUke4G0K6bXdhkbQ%3D%3D\"}]}\r\ncf-ray: 99436d2b1a654e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":516649,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"7b1df832a318dc7390fb81ef66ceaeb0","sha1":"a6296d4d9f5f75d89613aa344656b42749a7ecbc","sha256":"1fc7086ffcc170c7c749659f1d698bfd6aeadc16e9875ffdb4271a84fb99f5fd","sha512":"dc21a5a6daadbd87b5c62a2dc158faca9e8d9dbc08f88179d7a7e276d219ce1d3b1f9e311a1610d603abb2227c13dd0f5ba8a51e0771bfa69372f60370f2ec6c","ssdeep":"12288:RFuF7Q8PwWl2z62v3RAqkxU27mgE/tbEhFThonsB5wa:RFU7QAwWl2z62v3WqkxU4mgGtb09msBR","tlshash":"beb44ba636e6842747d099ca94354612a33d7d0a3408c1ecfe7ebdcb2d26946f07af74","first_seen":"2025-10-10T18:30:51.060162Z","last_seen":"2025-12-31T13:31:53.254253Z","times_seen":15,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wa.norryaboulic.com/rIyoJf7xGQ4U6UQ1w/QALrl","fqdn":"wa.norryaboulic.com","domain":"norryaboulic.com","tld":"com"},"ip":{"addr":"188.42.241.189","port":443,"asn":7979,"as":"SERVERS-COM","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.823Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"wa.norryaboulic.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 13 Sep 2025 19:57:45 GMT","end":"Fri, 12 Dec 2025 19:57:44 GMT"},"fingerprint":{"sha1":"E3:BC:9A:62:D5:BC:F8:6A:60:84:A6:13:46:49:91:DF:0F:4B:AB:CB","sha256":"1B:AC:C1:76:C4:7E:6E:E1:5A:6F:66:E9:ED:7B:2B:48:FB:12:53:E1:5C:22:6C:99:03:DF:91:AB:F5:8A:DF:C5"}}},"request":{"raw":"GET /rIyoJf7xGQ4U6UQ1w/QALrl HTTP/1.1\r\nHost: wa.norryaboulic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://vidsrc.su\r\naccess-control-allow-headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\naccess-control-max-age: 600\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\nset-cookie: GL_UI4=eJw9jc1OhDAcB%2FkGddnkl%2FAA%2BwgtUtKrF1%2FBI2npn7UKdFMqq28v8eBtDjOZKIqSpka8FyekX0rgwrnsZSdaybpRqlZr2feCaSEZb8U0CTzYbQhKzxQyVNuifBjCniHXXq2mRr44Q3ONUnt338g3KbJVLYTy1Xqa3PdhqA%2FnkfLn7mC7HhwzJG5r0nOF8s2u5ijPj0g4O5%2BKCE%2B3WYXJ%2BWWwpoiRX70yhPgF1agCXZ3%2FQWlo%2BwzuBrjZDP%2F%2B3zi9c4bC0G5HQu7CO%2FlfoWNCFg%3D%3D; expires=Sun, 26-Oct-2025 17:27:44 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyD0LglAYhmHPixyIpHjAodGlVbRUcAnJOR0aGprEQgTxlaP2MfVX2puif9Xa1JYN93DdmqaROQWVDYzQtUPH9ha263sQBShJQXkNmbA6Z1cIBXKWIFVjnLYVWzH3dTf8HPrfECUm66q8WFuu%2Bq7kugUNjWJWDausO0I0UoA6lgRqD6YGcZIzUJUZ0ebzfhX37wA2ovntud%2BtHqCmhe74QfADt0Iqrw%3D%3D; expires=Sun, 26-Oct-2025 17:27:44 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-26T08:02:58.729985Z","times_seen":15785,"resource_available":true,"data":null}},"time_used":318,"timings":{"blocked":145,"dns":103,"connect":19,"send":0,"wait":24,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"wa.norryaboulic.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/index-DJ2A1_OX.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/index-DJ2A1_OX.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/embed/movie/1054867\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\netag: \"ddk0sy5663e17atq\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4402\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=boxMeTwsjeQkOtE6ZnzfgKxLf7xVA6V8Y3ZNt%2Fa7%2BlKBzj4WEIeTtMH%2FpsF0BYm6oJShGC0mzwnzT2zHTnkeKYyT2BnTMy4oUA%3D%3D\"}]}\r\ncf-ray: 99436d291a354e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":340622,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators","md5":"8e435b07b3b32ddb1e66d349965585f6","sha1":"ba856d33bc401e7ad370fed973aa9c5481ab838f","sha256":"fdc83914d9a2b3832a21b2f8be9c89edb8004a1b5fc0f8502425a019e9444f49","sha512":"0e750b3e579e5fdc62bc70d52225f5be8c5c4b18e5092a1ddcc80bed0ed5c69541a09e028ade1c8294f352442fec2ae09528a37df2f2a4a4d0fbdf472c1e2b30","ssdeep":"3072:KWMYY2PeaWyFNJhodNSGmKsL8M/jqFrBkBKaN2Jp0Y+B+0GQBXT+6QjLrcVG:xG2PeaWd5mKsL8M/L+6RG","tlshash":"21744c19a100dbbdeea745d4a9bfa018f03f1fa4fb1f8890f13c68221755486ba57bc5","first_seen":"2025-10-10T18:30:51.084618Z","last_seen":"2025-11-01T19:57:29.674792Z","times_seen":10,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vidsrc.su/assets/react-vendor-B7ISnKZJ.js","fqdn":"vidsrc.su","domain":"vidsrc.su","tld":"su"},"ip":{"addr":"104.21.14.155","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vidsrc.su/embed/movie/1054867","date":"2025-10-25T17:27:44.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vidsrc.su","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 07 Oct 2025 21:59:37 GMT","end":"Mon, 05 Jan 2026 22:56:50 GMT"},"fingerprint":{"sha1":"EE:1C:A5:7D:4E:D6:99:DE:02:4B:6B:DE:83:7E:F1:21:87:87:99:6A","sha256":"C5:0F:78:78:F3:7C:FE:AE:15:19:9E:61:25:CA:F2:4C:8E:3D:83:8D:7C:16:44:6A:46:80:70:7F:7C:5C:32:EB"}}},"request":{"raw":"GET /assets/react-vendor-B7ISnKZJ.js HTTP/1.1\r\nHost: vidsrc.su\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vidsrc.su/assets/index-DJ2A1_OX.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript\r\ndate: Sat, 25 Oct 2025 17:27:44 GMT\r\netag: \"ddk0sy5663e13g0y\"\r\nlast-modified: Thu, 16 Oct 2025 20:14:37 GMT\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 4403\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hJZ4OESebMmHTULCR7ECO00JY4cNQS2gP7xOHPoVzGez8WdhVovHvAHh4gdn07x40sr%2B0FtpT0ApV5wcWxZw8vAOfLajCjJqsQ%3D%3D\"}]}\r\ncf-ray: 99436d29ba3e4e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":160738,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (54226)","md5":"7e2ec4757cfcbc969c73e110fc1705c1","sha1":"a633de1b1e28dcc03e455b62b06bcf30b25a8b17","sha256":"90329232980b0895a68fdd8e000e95e2146e08dd190e940fc7b4630ea85877de","sha512":"41aafdc76a2e0bdc546257cba0ce375ee2bcdc063c05fb871d0d2213a5132c2992d9b209767e42f353e569b2e73c21dc926695c727c373781e5ea726619ac421","ssdeep":"1536:ntJhHWvilgM1QWHGY7XNGhtxy2i4FvsLBakLrRHUqImDyz3INuj3HuGP:tJhHWpMrNGtyHL+70Nujp","tlshash":"10f31ae83952f5626bb302b710af1817733d291b280d4960a211fddeb4f845da17bfad","first_seen":"2025-10-10T18:30:51.074511Z","last_seen":"2025-11-01T19:57:29.671401Z","times_seen":10,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2025-10-25","alert":"Sinkholed","trigger":"vidsrc.su","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}