| 9xbuddy.com/build/291f13891176f90733ca.png | 104.21.235.81 | 200 OK | 2.5 kB |
URL GET HTTP/39xbuddy.com/build/291f13891176f90733ca.png IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typePNG image data, 217 x 55, 8-bit colormap, non-interlaced Hashf19a76e1de03a1ecb9c45dcfb96bce41 2156ba7ed189b2f22b87e87eb9ffcaa7ebb4db0c 55340830b75351b2ad4154871c488f34c0b66c8cef18719f3f7a8f9dc190cd58
GET /build/291f13891176f90733ca.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: image/png
content-length: 2501
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-9c5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3338
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TZr%2FD2zFK1ybQH%2ByMSe4KHQlUbvaGT%2FRmnlk0c%2FvydEVtbI0VQD%2B6iPpc3cvZZ8MtoC5B9balBDRcXjso%2BhwYovfP9YAVZ4s7GvLboyPBNZSBdGct50sxW0aFmF6Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a75867893f6358-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.235.81 | 302 Found | 0 B |
URL GET HTTP/39xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 26 Apr 2024 14:43:28 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2rnNJCTvenCsILUjc701fJQw5PW1A49XDPjZEDkYdx05UVnpRHMXYse3pa3QuUbvZVc4Pi9RrpNcBkTyxqXvP71bZd5bvyavunc3ttMNRvdHNtpH2Q%2FAfhI9i%2FNtdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a75868fb8a6358-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/7.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 8.1 kB |
URL GET HTTP/39xbuddy.com/build/7.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeJavaScript source, ASCII text, with very long lines (8147), with no line terminators Hash5396bcd5858168c1aa0e716e9106284d 8f3ca3fc8ab2fcf56c162058ea6d4e95c0af718d 5c57aba1d68f10be74b7d8c77c3d2313fa36d66854a3831f7586bef5b6619fc3
GET /build/7.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-1fd3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 436
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j%2Bl7VGNibdL6KJGQMgRs945kD1rtnmi5YGWRcMELBUGrMVE3VCSeCs0i7tcB%2F59eHebPpqpkJn9QRwxgBVlXLwMBnNsTWNqJXtUUCvi%2FFJPwbcLnOqEOhUDab0OzuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a75868eb776358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/icons/favicon-16x16.png | 104.21.235.81 | 200 OK | 680 B |
URL GET HTTP/39xbuddy.com/icons/favicon-16x16.png IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashf310dc4b30e94e078aa3d8ce14a93a7d f6b2f0419a8bb65aafd4c185079584494439cf4a 5261947833061f72396f2e0f6b27598ae37585d8de6da4bed8df9f683181aaab
GET /icons/favicon-16x16.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: image/png
content-length: 680
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-2a8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5479
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2FhGDztMy0VkqI1OEhFE8Mb%2FR%2BLP%2FTbPRQeFgDRgcpnyqSFf4xAFlblGwiN7y2TSqaYL7ei0RydbH2F4dOyYAjk7FI9LcgDKSCCQA3ovZNd8lTC4X2LAMUwLc3RyQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758692bca6358-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/19.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 7.8 kB |
URL GET HTTP/39xbuddy.com/build/19.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeJavaScript source, ASCII text, with very long lines (20973), with no line terminators Hash0d89fe65f87cddedad6a912166e53208 a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6 f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8
GET /build/19.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-51ed"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 436
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WeyN29azDD%2B7rNcRk6Nd6N1gtRLNduR0f%2BifzUeMQB6zU4RLd4YsQHSDCn95cnlRYAhMA1R2xKpp4dL6BaO7FOyhlNeoKL0Q0Sb0lJkeMH5q6tE7CUWESJ7Ew17ktA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758697c336358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ab1.9xbud.com/token | 188.114.96.1 | 200 OK | 506 B |
IP188.114.96.1:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbud.com FingerprintFB:EA:0D:88:59:40:5B:40:BF:67:3D:22:86:13:05:34:4F:E6:99:FE ValidityTue, 27 Feb 2024 17:44:28 GMT - Mon, 27 May 2024 17:44:27 GMT
Hash6e8167106374c0fe3f395e943bfef086 169c048d89398f517fdcf48f6d1c874867157315 50c5a437b7bc2482c6f8bc19ccbcf277c5692c34d034368892fa08c93072d333
OPTIONS /token HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:43:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f1RSQp8%2BvEzUpMF3MmcDZHzdFgmSavdjqbnk7ZtfQkUJXJUznac9rECB5CPxxkKC%2BIEFMhrZUdn2OlVwEknKikP6iFZ2re5J9ADykt7m64tsHFLRf2K5RDPBJVXSIUyY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7586b1deb56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| balldomcheders.top/rHH727qVeN4r6/7972 | 212.117.187.140 | 200 OK | 20 B |
URL GET HTTP/1.1balldomcheders.top/rHH727qVeN4r6/7972 IP212.117.187.140:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subjectballdomcheders.top Fingerprint84:64:0D:9E:29:4E:8D:6E:E0:AC:AC:0B:E1:C6:0F:EA:C9:8C:C1:FE ValidityMon, 15 Apr 2024 06:51:00 GMT - Sun, 14 Jul 2024 06:50:59 GMT
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rHH727qVeN4r6/7972 HTTP/1.1
Host: balldomcheders.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 14:43:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://9xbuddy.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sat, 27-Apr-2024 14:43:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sat, 27-Apr-2024 14:43:30 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| ab1.9xbud.com/extract | 188.114.96.1 | 200 OK | 4.9 kB |
IP188.114.96.1:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbud.com FingerprintFB:EA:0D:88:59:40:5B:40:BF:67:3D:22:86:13:05:34:4F:E6:99:FE ValidityTue, 27 Feb 2024 17:44:28 GMT - Mon, 27 May 2024 17:44:27 GMT
Hash98cab879586564d889e4afb7a9f96001 0c615f5b2c068723e95718626669763bd9a02774 e48500e8bb25312ee68095ca6ecc510dd6dbe0eb6f849c8ef1ed9dbaf64eb6e8
OPTIONS /extract HTTP/1.1
Host: ab1.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:43:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vbhkBuZbkueu%2FZMh66gI3Aypq2savGNXV83CodJwtN2catOqrExNW3Gb%2FKLWuOpWzqcdUTCEwxYte7j9Vzm0QeV%2F0Hwjl1HgCUaxg9fPbTbR0efVcFCfFvKJaCa4iFue"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a7586c4f3956ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| balldomcheders.top/nQNFvR4pfdjHeE/40618 | 212.117.187.140 | 200 OK | 26 B |
URL GET HTTP/1.1balldomcheders.top/nQNFvR4pfdjHeE/40618 IP212.117.187.140:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subjectballdomcheders.top Fingerprint84:64:0D:9E:29:4E:8D:6E:E0:AC:AC:0B:E1:C6:0F:EA:C9:8C:C1:FE ValidityMon, 15 Apr 2024 06:51:00 GMT - Sun, 14 Jul 2024 06:50:59 GMT
File typeASCII text, with no line terminators Hash4fc71bf68a1d477bd1523733e34d1e90 15119105cffbe108b6cf290146ab02c9aa8517ba 74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /nQNFvR4pfdjHeE/40618 HTTP/1.1
Host: balldomcheders.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 14:43:30 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://9xbuddy.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| balldomcheders.top/1clkn/9537 | 212.117.187.140 | 200 OK | 26 B |
URL GET HTTP/1.1balldomcheders.top/1clkn/9537 IP212.117.187.140:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subjectballdomcheders.top Fingerprint84:64:0D:9E:29:4E:8D:6E:E0:AC:AC:0B:E1:C6:0F:EA:C9:8C:C1:FE ValidityMon, 15 Apr 2024 06:51:00 GMT - Sun, 14 Jul 2024 06:50:59 GMT
File typeASCII text, with no line terminators Hash9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1clkn/9537 HTTP/1.1
Host: balldomcheders.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 14:43:31 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| 9xbuddy.com/process?url=https://videosection.com/video/178380450 | 104.21.235.81 | 200 OK | 20 kB |
URL User Request GET HTTP/29xbuddy.com/process?url=https://videosection.com/video/178380450 IP104.21.235.81:443
CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeHTML document, ASCII text, with very long lines (12652) Hash4780194c1356bd07b9cfd1e35076065c 9e1352d124114af021554be7c89dacdd322afcb5 e765fb936b995a549ec47c27d1a6c165e3f80e4c5c77877a936db084c8a4ee1f
GET /process?url=https://videosection.com/video/178380450 HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mOan%2FJoK4%2BGljLu0Xg5ktZo%2B0BhYdeUIQcU8A36lir%2B3QvF5fWT7y84c790dDJ4rTlF7nNzXU6EtPKeGcbrBMJxTo7seHu5e6qtsrnQwdgs4eLqf0v36RZBFNtb9fQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758650cb47777-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 9xbuddy.com/build/81.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 41 kB |
URL GET HTTP/39xbuddy.com/build/81.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeJavaScript source, ASCII text, with very long lines (40777), with no line terminators Hashb07408b315011864ecb3077df0744577 2937b18492a4a303e0f63f557dbc3f024fb2997f c3494c16546e74edd0e4d030c65e790cf6477e06846e76127271c6d288539816
GET /build/81.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-9f49"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 432
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EBhlkjCWy6fwgnTEI0dPHwUTxihUQYzS9NBGM8qIU2bc7AGrvXXLOJ00GXc6%2B59szA1ONI%2F4Annp87rGh46fWB4KWyQItQrvnmCch7ouWBhmiqfqOqEjftZxJUFPdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758698c416358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nlt01.videosection.com/6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg | 0.0.0.0 | | 0 B |
URL GET nlt01.videosection.com/6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg IP0.0.0.0:0
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg HTTP/1.1
Host: nlt01.videosection.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 9xbuddy.com/build/24.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 2.7 kB |
URL GET HTTP/39xbuddy.com/build/24.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2762), with no line terminators Hashed061eed2ad4ea9d81ab902dfe53eaa6 e467cd4d5fe4fc4b9be8fdd05c634ba1616d454f 1c1bb8ac8cc7b75c66cbfde1e639131975976ab8a718f04456ed187d4b446b1e
GET /build/24.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-aa8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 432
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0h7sAbTMXxSHIqt8u04Lk1ldHV%2BIDUtVnBP%2BCOO8KfUf21T0iCirdfw3%2BoEfH8iea%2BkQJj4i%2F%2Fa%2BuPyRkI1xWiHVVxFO1KEMIpnSE0aoxMmevu2B68IHkUdIcc71bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758698c3a6358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/h/b/jsd/r/87a758650cb47777 | 104.21.235.81 | 200 OK | 0 B |
URL POST HTTP/39xbuddy.com/cdn-cgi/challenge-platform/h/b/jsd/r/87a758650cb47777 IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/87a758650cb47777 HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12203
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=NQHfibl1XEgXa5lg07B3Uc_VPXmKSPgETcD.IILFejU-1714142609-1.0.1.1-fM2fsWNgnn6_7Mmbc8CR.YGKPmfosaCBWl9fKEg2P4KA_TqVNiBHpdPvkCBvnxueHkle8PUpoNQffHWS6feqWQ; path=/; expires=Sat, 26-Apr-25 14:43:29 GMT; domain=.9xbuddy.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j2YNauMTwi8zIu1phGP1mwcjs%2Bd0OVlciWsj7ubYaK3tIz7BH8eM%2FiDwC1MDEKzDxqxXymGYI43mGC60%2BR%2Fy%2Bn13yC8kgp1OOrZCDDUZOp6IyMrQij%2BW4B1tFwzFDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a7586acdbd6358-LHR
alt-svc: h3=":443"; ma=86400
|
|
| nlt01.videosection.com/6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg | 0.0.0.0 | | 0 B |
URL GET nlt01.videosection.com/6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg IP0.0.0.0:0
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /6/6/3/663a20b2206c2ca99791f0d92e8fa87b/thumbs/480x270/1.jpeg HTTP/1.1
Host: nlt01.videosection.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| 9xbuddy.com/icons/apple-touch-icon.png | 104.21.235.81 | 200 OK | 5.3 kB |
URL GET HTTP/39xbuddy.com/icons/apple-touch-icon.png IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash2a1f354702de7eb8d63c8f10d2d0beaf 5f42ee8dc3c78184fba322c0288776c86841f25d 447d4a8b2ef5e876f4bf0145893d9f300dd62a3a49ebbc04a49282a6e4c5475a
GET /icons/apple-touch-icon.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: image/png
content-length: 5323
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-14cb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4949
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GhLwQ6z0BKYLskHlcJ7QRG8RVr5iftY7dvnLh1VLuGLH9AUqI4ec98REHCaWRoPiORm4tTnxiqI8MivYnyu6jVHj6QLLsWC%2FqaX8FcWGoRBkSxFazXraj98aft9SGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758692bc86358-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/main.da3e03857bdbe0dd8737.css | 104.21.235.81 | 200 OK | 34 kB |
URL GET HTTP/39xbuddy.com/build/main.da3e03857bdbe0dd8737.css IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeASCII text, with very long lines (33647) Hash0f5c61890f014772a3dcc7652caef97a a15caaa3f981da78f53c8bfe4d9b694b5eb5e4f6 fce7eae43f856f06c4981570e813855262a6a90c6bff85ed3b96cf21c47d3c23
GET /build/main.da3e03857bdbe0dd8737.css HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: text/css
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-83af"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0yVU%2FWaSpY5EvP%2BLcvYic3tDWxPAX5PkmX76UEqbiun6MBO%2B1Y7cQfsB2VgotmqlCaMExOT9EZiiRRF3CtDhClXAtlcBI7lublOatE%2FBjO7b3SWpAQk4b5FEx01y%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a7586789396358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/main.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 335 kB |
URL GET HTTP/39xbuddy.com/build/main.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
Size335 kB (335349 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /build/main.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-51df5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pHPTknRJ6CUVa0LRtWVLD4qoooCr%2B0OrDkZZdWw4td6O%2BbcLzciJB8vX4%2FMAD5GdPfHF09ZO9XnDtjs2L03hm8BSG%2BMC%2FQ1PV%2Bk%2FU%2FoHpr7iopwDFoKQHwaUFKbyFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a7586789466358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/70.da3e03857bdbe0dd8737.js | 104.21.235.81 | 200 OK | 24 kB |
URL GET HTTP/39xbuddy.com/build/70.da3e03857bdbe0dd8737.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeJavaScript source, ASCII text, with very long lines (23834), with no line terminators Hasha5df48809858975b8647793535e2f75e b86697eda22d3d97d02092fd16470ee61ff5b5fe d83eba8e1787fd738c44d63e007742de66a68c97a513aefbbb21b8ba3c6e6026
GET /build/70.da3e03857bdbe0dd8737.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://videosection.com/video/178380450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript
last-modified: Wed, 24 Apr 2024 16:04:09 GMT
vary: Accept-Encoding
etag: W/"66292d79-5d1a"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6628
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rC6FA4ZWyLRXzQTVmssOwnawWrq0pTpTyN8c5o3ZrXhpmlugjEc2lpj5QRqctDE%2B6GPzoA1iVVAPfv5UCY3nNF%2BJH6rN%2BLaUgz7OjZLvfd4LPNCqPHQNz7bUIfhlaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87a758698c3f6358-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js | 104.21.235.81 | 200 OK | 7.8 kB |
URL GET HTTP/39xbuddy.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js IP104.21.235.81:443
Requested byhttps://9xbuddy.com/process?url=https://videosection.com/video/178380450 CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint03:C0:4D:EF:26:68:8C:D0:4C:B2:64:32:43:5B:0C:A5:CD:FC:31:3C ValiditySat, 02 Mar 2024 03:56:46 GMT - Fri, 31 May 2024 03:56:45 GMT
File typeJavaScript source, ASCII text, with very long lines (7833), with no line terminators Hash474fa94ddc60b6cfbcb9683c458096e2 c4d9cadf73a70839ef0e8b909a33faa1e26589aa 91478710f2798685716c881e1257fdde788e42903c1d53d2da0f4022be1410b1
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/471dc2adc340/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 14:43:28 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eCnx5nmpP4Qe2vVHWEx4tnldf%2FYPAgBNlazQj%2BeOuDLIAq0rUz5yfiM%2FMjyfZEPiVFpFbZ6thdWqk%2FRE%2FrkFOASaG6rTGZsBk8zLBcwr0rLCeFx%2BydQEcj4PhMb07w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a758699c536358-LHR
alt-svc: h3=":443"; ma=86400
|
|