Report - onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html

Report Overview

Visited public
2025-04-20 22:56:44
Tags
URL
onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Finishing URL
onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
IP / ASN
172.67.136.15
#13335 CLOUDFLARENET
Title
OnHockey.TV | Live hockey streams (KHL, NHL, Euro Hockey Tour, World Championship, Olympic Games)

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
youradexchange.com	273384	2012-11-09	2013-02-04	2025-04-15	801 B	1.4 kB	172.67.177.214
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-04-16	434 B	88 kB	104.17.24.14
voodc.com	unknown	2022-09-24	2022-09-24	2025-04-19	2.7 kB	201 kB	104.21.112.1
pacteaten.com	unknown	2025-04-15	2025-04-20	2025-04-20	440 B	26 kB	172.240.108.76
onhockey.tv	429670	2013-08-25	2013-10-01	2025-03-25	1.6 kB	21 kB	172.67.136.15
experttrafficcounter.com	unknown	2025-01-23	2025-01-24	2025-04-17	439 B	420 B	18.198.132.236
nannyirrationalacquainted.com	unknown	2024-08-19	2025-01-22	2025-04-17	3.0 kB	11 kB	172.240.108.68
ssl.p.jwpcdn.com	2512	2012-08-07	2017-01-30	2025-04-17	1.2 kB	858 kB	151.101.130.114
qsvbi.space	unknown	2024-12-23	2025-01-13	2025-04-09	394 B	67 kB	188.114.96.1
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-09-13	2025-04-19	462 B	51 kB	45.133.44.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-20	medium	pacteaten.com	Sinkholed
2025-04-20	medium	nannyirrationalacquainted.com	Sinkholed
2025-04-20	medium	nannyirrationalacquainted.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	about:blank	Eval	2.1 kB	2025-04-20	2025-04-20
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash b89016ccfc70405f5d00171025c62bcf 831ba651dc35f31231b29a8b4b3b5acd1ce34333 51d4fbe795ac64905546be9a43f32c943e177045f1236e0c83d6ce4fee5bc015 Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	Eval	2.0 kB	2025-04-19	2025-04-20
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-04-19 22:26 Last Seen2025-04-20 22:56 Times Seen2 Hash 08ff7cbb7bf9c8f4906a38b70583eac5 519121041e65e328cd7092ae82d7b53d66ba2ae2 b57f658d321d1b500be1449e427079a9b5dd16d2b9e1713fba4eef38147edff9 Loading...

	ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.js	ScriptElement	110 kB	2023-07-11	2025-06-19
Pretty URL ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.js IP 151.101.130.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-11 16:56 Last Seen2025-06-19 17:36 Times Seen119 Hash 8dc1a43e7496a716635450fc7ca56ab0 6f69857c57abb54cef15aa5d23cd3536f8a91719 2329405419376039c00d692be914a5a01ac07a0a1e6ae84b7ba3ac06c9dafce2 Loading...

	pacteaten.com/6bdc4da1f3d522aba3ca4ab7b9fa2801/invoke.js	ScriptElement	26 kB	2025-04-20	2025-04-20
Pretty URL pacteaten.com/6bdc4da1f3d522aba3ca4ab7b9fa2801/invoke.js IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash f96987007af2a8ef8ea224e3ba9495ba 7b091b0a489cdb0315bc93a7d60dd475458ff170 ac8dad03d9c5887f2744cc0174b7589c3a5f827a63f073d34ee2b60e658c2a0d Loading...

	voodc.com/sbx.js	ScriptElement	5.8 kB	2025-03-18	2025-06-19
Pretty URL voodc.com/sbx.js IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-18 16:42 Last Seen2025-06-19 17:36 Times Seen28 Hash 35f8ce4ae83803cf0f592a237e1bdbb2 b3744f7251a45187aa74ad4345062049603427a8 8c69aeeeca1683d071384deade7947b54cb585026df7289fe3eb73bd655f3ae2 Loading...

	voodc.com/embed/0/0/p6yDlZmL3IGEf4OSo4uehY16jJechMqq/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_	ScriptElement	2.5 kB	2025-04-20	2025-04-20
Pretty URL voodc.com/embed/0/0/p6yDlZmL3IGEf4OSo4uehY16jJechMqq/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_ IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash 883588ed8e8a8077fbab33c01bc21199 12ff38ba67d438516b6eca024d2b2ef0c100038d 4d3bd59bf370d8c00c267134749745c56a87654a3f079f660a4e8deff290ed6f Loading...

	about:blank	ScriptElement	3.3 kB	2025-04-20	2025-04-20
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash 71effc95e27bd4996136229c6a5305f6 6a4cc86fe64243294f0b42d0c085e15fdf2afb64 47394f1e59ba7299b0d62df3a7e7146ff5f2bef4cc322c82c615ddaf2229aad4 Loading...

	qsvbi.space/script/ut.js?cb=1745189784903	ScriptElement	66 kB	2024-12-02	2025-04-23
Pretty URL qsvbi.space/script/ut.js?cb=1745189784903 IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-02 13:05 Last Seen2025-04-23 06:17 Times Seen1612 Hash 4afa2ac99f97331dc98263d49022a958 60bb7c7c45ff14e8df86ef9e0b9a7a55a7d2baca a4beaec54247a9a3cb97821ecdb68d39cacdcdcc62ae872c13c2cca2d3d88e32 Loading...

	onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html	ScriptElement	80 B	2025-04-20	2025-05-17
Pretty URL onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html IP 172.67.136.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-20 22:56 Last Seen2025-05-17 02:11 Times Seen4 Hash 79cf83377de16f4f9caf9ac05806ff5c f8caf67cbad30e308d7620af8c1b51aca1237bfd 22e8355ed1249d74c2d79e5aeb622b2cecd649c8cdf29e7917a0b6413d375ec9 Loading...

	onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html	ScriptElement	139 B	2024-12-27	2025-05-17
Pretty URL onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html IP 172.67.136.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-27 18:45 Last Seen2025-05-17 02:11 Times Seen10 Hash 61372465ca845f7b1498dacab5c3e573 768bc551a533ffd1a94eedc146b63ffda970fe66 a2624c6b4512f985f5c1b2b3b786131bfc06e3fc12ab45a55db0e6ed22d369ed Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	211 B	2025-04-19	2025-06-08
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-19 22:26 Last Seen2025-06-08 19:04 Times Seen14 Hash ba0c17a76ce3e51a452755f0f8a35f01 1d07bfb3fab28d550ca6c0fa77fbb01d476867a1 0046356d714d30ec0c4616bf1fb444ed4edf5e09112e700f138995bf105b8576 Loading...

	about:blank	ScriptElement	145 B	2023-12-26	2025-05-17
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-26 18:29 Last Seen2025-05-17 02:11 Times Seen30 Hash 7662dfaa5e59abc09a8d0166497cfdb1 c7bfc4fc74c198a00145a74ae6ebc35923f8dc48 de6e0f06509184c68b0759bf65985173ad36bb938668e38800bab93d06d1e4ac Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	23 B	2024-04-25	2025-06-19
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 07:34 Last Seen2025-06-19 17:36 Times Seen38 Hash fca27b6472062c58eadcd20746f29d4e cd769e583a073f90ab067e2996baba5dc2a84925 ab5daee4ffc028d19571bed1417c08c9cfce3e4d4b293904a580db00aa8dac44 Loading...

	ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.core.controls.js	ScriptElement	1.0 kB	2025-04-20	2025-04-20
Pretty URL ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.core.controls.js IP 151.101.130.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash 607e58683f3a8c2f5937b636eb0b78e5 d10a6070da7921db2ef9d5234257ec36a1e374eb 13ce8c3d1d01735dfabf7c9c4f3599258c2b62929b656fbc42c6390ef6c6e7d9 Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	91 B	2025-04-20	2025-04-20
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash de3239346aef890a8ed1a3f5f649a200 2611a781a0cd737db884d5dc9202b1164d077b8c fc31f6dda9d30d7ef06965c155c229c64de0fd54107c5792d63443a41cba93e6 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js	ScriptElement	88 kB	2023-05-12	2025-06-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 23:07 Last Seen2025-06-25 04:47 Times Seen6924 Hash e6c2415c0ace414e5153670314ce99a9 5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6 d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8 Loading...

	voodc.com/avurcfe11.js?v82	ScriptElement	1.9 kB	2025-04-19	2025-04-20
Pretty URL voodc.com/avurcfe11.js?v82 IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-19 22:26 Last Seen2025-04-20 22:56 Times Seen2 Hash 27f2574d5e48b13ad30f4d5e5e764241 0c3e95d75a171110c2c3332ea14c6f0ba5f85733 f3b699ad7156a4ae987e4f8bb804e59ce7d4bcbd8ee2effff225c330e2fb95ad Loading...

	ssl.p.jwpcdn.com/player/v/8.27.1/provider.hlsjs.js	ScriptElement	422 kB	2023-05-26	2025-06-19
Pretty URL ssl.p.jwpcdn.com/player/v/8.27.1/provider.hlsjs.js IP 151.101.130.114 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 21:39 Last Seen2025-06-19 17:36 Times Seen136 Hash 4f4459c52455c57a5490992cac29595d 55790ba8e788ff62ddb68f640246acda2cdb4397 5172dcf83f6d622751ea688d1ba4b507d54e3eeed9e933ac38f87ada5ecc87fd Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	1.2 kB	2025-04-20	2025-04-20
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-20 22:56 Last Seen2025-04-20 22:56 Times Seen1 Hash e17526c1736ad86e611401000317d9b6 cf1aade74a0c7df1813db3779d87c83f4505aee6 2623a277106654666a0da900a83f079f395837ecc09e71b755c136f2bffdd84d Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	182 kB	2025-03-18	2025-06-19
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-18 16:42 Last Seen2025-06-19 17:36 Times Seen27 Hash 7c901a69a94fa99cf8fe460b913ef096 e680f8e36f42d95bf18aa7c58a86189d699d7598 2c3b33ba72bbf53293e81b6819ba4475e1bbc80990bb24a6fbe25d26d43e81c4 Loading...

	voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq	ScriptElement	49 B	2024-09-28	2025-06-19
Pretty URL voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq IP 104.21.112.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-28 07:58 Last Seen2025-06-19 17:36 Times Seen47 Hash 6049701187a06a8a6054712b9bc425ba c667a705093ef3cd2ddb725f275aba74e5d020c8 1dff3c27cedcf0a58c9a35599a89b85642e62c8e200d4a85001414d5968d844d Loading...

HTTP Transactions (19)

URL IP Response Size

GET voodc.com/avurcfe11.js?v82

104.21.112.1

200 OK

1.9 kB

URL GET
voodc.com/avurcfe11.js?v82
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGoogle Trust Services
Subjectvoodc.com
Fingerprint21:07:E2:AE:B3:E4:0C:5B:FD:D6:29:F5:EC:08:DB:65:7E:38:26:0B
ValidityMon, 03 Mar 2025 22:15:25 GMT - Sun, 01 Jun 2025 23:11:30 GMT

File type
JavaScript source, ASCII text, with very long lines (1853)
Size
1.9 kB (1854 bytes)
Hash
27f2574d5e48b13ad30f4d5e5e764241
0c3e95d75a171110c2c3332ea14c6f0ba5f85733
f3b699ad7156a4ae987e4f8bb804e59ce7d4bcbd8ee2effff225c330e2fb95ad

HTTP Headers

GET /avurcfe11.js?v82 HTTP/1.1
Host: voodc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:24 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1bxfdAqn1gyWZyPcqnCPkZYxpfRcGuJAVO28b8EzfPMC%2Bn8JJrj216R2mpTs4%2FlNVHTwXZDaN4kT6LPaTmtbV34QiBjdtfMnJierZHTROB26DFxTwiU2QdW%2BdH0%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 14:14:04 GMT
etag: W/"68025e2c-73e"
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-xss-protection: 0
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 93383c170c88b4f9-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12062&min_rtt=1482&rtt_var=11185&sent=79&recv=35&lost=0&retrans=0&sent_bytes=63590&recv_bytes=3421&delivery_rate=5593596&cwnd=32400&unsent_bytes=0&cid=c28e1610493dbd91&ts=1125&x=16"

GET ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.core.controls.js

151.101.130.114

200 OK

325 kB

URL GET
ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.core.controls.js
IP
151.101.130.114:443
ASN
#54113 FASTLY

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
325 kB (324591 bytes)
Hash
3141cfbc04d2f12e7e4047ffd289780c
8831b1b49d7e4a9d7ad0009d56183a6a37ace6ea
f25b68cae995caaaaea17d890f255f8863419c6126a53322bb4469053acfc4c8

HTTP Headers

GET /player/v/8.27.1/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 22 May 2023 06:27:29 GMT
etag: "3141cfbc04d2f12e7e4047ffd289780c"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Apr 2025 22:56:25 GMT
via: 1.1 varnish
age: 1113256
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 2862
x-timer: S1745189785.087375,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 84863
X-Firefox-Spdy: h2

GET qsvbi.space/script/ut.js?cb=1745189784903

188.114.96.1

200 OK

66 kB

URL GET
qsvbi.space/script/ut.js?cb=1745189784903
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGoogle Trust Services
Subjectqsvbi.space
Fingerprint7D:DF:C5:7D:94:FB:E0:8E:C9:44:12:A1:F0:BA:E0:11:EE:A5:38:4C
ValiditySun, 20 Apr 2025 05:20:11 GMT - Sat, 19 Jul 2025 06:18:26 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size
66 kB (66473 bytes)
Hash
4afa2ac99f97331dc98263d49022a958
60bb7c7c45ff14e8df86ef9e0b9a7a55a7d2baca
a4beaec54247a9a3cb97821ecdb68d39cacdcdcc62ae872c13c2cca2d3d88e32

HTTP Headers

GET /script/ut.js?cb=1745189784903 HTTP/1.1
Host: qsvbi.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:25 GMT
content-type: text/javascript
server: cloudflare
x-guploader-uploadid: AKDAyIvCBVSCn2sAP8XHC88IFo1Xdo9DSHMb5_LNLALm_WzdjDYRU67RBtqlUzLQgIuinuVs
x-goog-generation: 1733127707295818
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 66473
x-goog-hash: crc32c=VBET1w==, md5=SvoqyZ+XMx3JgmPUkCKpWA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 20 Apr 2025 23:23:49 GMT
cache-control: public, max-age=14400
age: 967
last-modified: Mon, 02 Dec 2024 08:21:47 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
etag: W/"4afa2ac99f97331dc98263d49022a958"
content-encoding: br
cf-ray: 93383c1e0966568f-OSL
X-Firefox-Spdy: h2

GET pacteaten.com/6bdc4da1f3d522aba3ca4ab7b9fa2801/invoke.js

172.240.108.76

200 OK

26 kB

URL GET
pacteaten.com/6bdc4da1f3d522aba3ca4ab7b9fa2801/invoke.js
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerLet's Encrypt
Subjectpacteaten.com
Fingerprint5D:BB:8A:1E:28:19:91:C0:A6:CE:DD:6D:E6:E8:F4:22:8F:75:F4:AB
ValidityTue, 15 Apr 2025 11:41:16 GMT - Mon, 14 Jul 2025 11:41:15 GMT

File type
JavaScript source, ASCII text, with very long lines (25473), with no line terminators
Size
26 kB (25473 bytes)
Hash
f96987007af2a8ef8ea224e3ba9495ba
7b091b0a489cdb0315bc93a7d60dd475458ff170
ac8dad03d9c5887f2744cc0174b7589c3a5f827a63f073d34ee2b60e658c2a0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /6bdc4da1f3d522aba3ca4ab7b9fa2801/invoke.js HTTP/1.1
Host: pacteaten.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Apr 2025 22:56:23 GMT
Content-Type: application/javascript
Content-Length: 10612
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: pacteaten.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0a00c555348065f9b7cf494eedff561d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET voodc.com/embed/0/0/p6yDlZmL3IGEf4OSo4uehY16jJechMqq/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_

104.21.112.1

200 OK

2.5 kB

URL GET
voodc.com/embed/0/0/p6yDlZmL3IGEf4OSo4uehY16jJechMqq/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectvoodc.com
Fingerprint21:07:E2:AE:B3:E4:0C:5B:FD:D6:29:F5:EC:08:DB:65:7E:38:26:0B
ValidityMon, 03 Mar 2025 22:15:25 GMT - Sun, 01 Jun 2025 23:11:30 GMT

File type
ASCII text, with very long lines (306)
Size
2.5 kB (2503 bytes)
Hash
883588ed8e8a8077fbab33c01bc21199
12ff38ba67d438516b6eca024d2b2ef0c100038d
4d3bd59bf370d8c00c267134749745c56a87654a3f079f660a4e8deff290ed6f

HTTP Headers

GET /embed/0/0/p6yDlZmL3IGEf4OSo4uehY16jJechMqq/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_ HTTP/1.1
Host: voodc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5fgMaJFue7ww2gm3ZTKcsXsdilYavXy%2Fj5Whc6ErY4heuYaAvGti8WluJ2qlRN7rKKvujPML471rrNjRIJftidFDzIomTznFpW7WsptNR%2BKzA1NnBh59lpodCz8%3D"}],"group":"cf-nel","max_age":604800}
x-powered-by: PHP/8.0.30
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-xss-protection: 0
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 93383c12bc32b4f9-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=16602&min_rtt=9234&rtt_var=8529&sent=24&recv=25&lost=0&retrans=0&sent_bytes=7534&recv_bytes=2378&delivery_rate=1670&cwnd=12000&unsent_bytes=0&cid=c28e1610493dbd91&ts=423&x=16"

GET voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq

104.21.112.1

200 OK

186 kB

URL GET
voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectvoodc.com
Fingerprint21:07:E2:AE:B3:E4:0C:5B:FD:D6:29:F5:EC:08:DB:65:7E:38:26:0B
ValidityMon, 03 Mar 2025 22:15:25 GMT - Sun, 01 Jun 2025 23:11:30 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (62138)
Size
186 kB (185643 bytes)
Hash
f6dac28c2457f1823e7caed32b739cff
e6ca77fb974262589654600e14cc32cced2ad8ff
518086c7e015f4e81136f5279b3794880dc936cc01ae1e4228097f7eef61c2d6

HTTP Headers

GET /player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq HTTP/1.1
Host: voodc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dfc1jdCszesvCCaYEeHO1KiWtqSGXrpWrsnE9sCetvp9dBFfVlde%2FN3vEMCDchiQQU4P2T4I1kV2x6cm6tM0r6b7xVis2dHLyxtKD%2Ff6gvTu0mz2HftUmwUeFaU%3D"}],"group":"cf-nel","max_age":604800}
x-powered-by: PHP/8.0.30
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-xss-protection: 0
cf-cache-status: DYNAMIC
vary: accept-encoding
content-encoding: br
cf-ray: 93383c151c61b4f9-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19702&min_rtt=9234&rtt_var=12596&sent=27&recv=27&lost=0&retrans=0&sent_bytes=9148&recv_bytes=2876&delivery_rate=51885&cwnd=12000&unsent_bytes=0&cid=c28e1610493dbd91&ts=807&x=16"

GET ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.js

151.101.130.114

200 OK

110 kB

URL GET
ssl.p.jwpcdn.com/player/v/8.27.1/jwplayer.js
IP
151.101.130.114:443
ASN
#54113 FASTLY

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65144)
Size
110 kB (109839 bytes)
Hash
8dc1a43e7496a716635450fc7ca56ab0
6f69857c57abb54cef15aa5d23cd3536f8a91719
2329405419376039c00d692be914a5a01ac07a0a1e6ae84b7ba3ac06c9dafce2

HTTP Headers

GET /player/v/8.27.1/jwplayer.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 22 May 2023 06:27:30 GMT
etag: "8dc1a43e7496a716635450fc7ca56ab0"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Apr 2025 22:56:24 GMT
via: 1.1 varnish
age: 2313897
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 4228
x-timer: S1745189784.289685,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 41022
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg

45.133.44.2

200 OK

51 kB

URL GET
cdn.storageimagedisplay.com/cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint44:32:60:54:16:79:8E:ED:60:B9:DD:B2:36:7C:B0:DC:CC:F5:B5:5C
ValidityWed, 12 Mar 2025 02:33:05 GMT - Tue, 10 Jun 2025 02:33:04 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 15:38:28], progressive, precision 8, 468x60, components 3
Size
51 kB (50848 bytes)
Hash
0713b13138c98e7ad32f5d7fe3af2e06
6e1239f3961b51fe2d592d23e8e318f8d01c0c65
4b6471c649ceca54d807a2554a77885510230145c1839dc7ff4ecb8cdf1495b6

HTTP Headers

GET /cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:25 GMT
content-type: image/jpeg
content-length: 50848
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:35:53 GMT
etag: "65d223d9-c6a0"
expires: Tue, 22 Apr 2025 22:56:25 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET voodc.com/sbx.js

104.21.112.1

200 OK

5.8 kB

URL GET
voodc.com/sbx.js
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectvoodc.com
Fingerprint21:07:E2:AE:B3:E4:0C:5B:FD:D6:29:F5:EC:08:DB:65:7E:38:26:0B
ValidityMon, 03 Mar 2025 22:15:25 GMT - Sun, 01 Jun 2025 23:11:30 GMT

File type
JavaScript source, ASCII text, with very long lines (5786)
Size
5.8 kB (5787 bytes)
Hash
35f8ce4ae83803cf0f592a237e1bdbb2
b3744f7251a45187aa74ad4345062049603427a8
8c69aeeeca1683d071384deade7947b54cb585026df7289fe3eb73bd655f3ae2

HTTP Headers

GET /sbx.js HTTP/1.1
Host: voodc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SKS9J4HLsJeGiZY5c0UFTjC6g6IC15YimUPQhSQh3EbefVOz7XPuc3dUofpfY7LvlE12K%2BQtYPr3yWtsE1zESRz%2B%2Bbv3zCRXxEbuEklFvbBz%2FbORy0vYTCNSGXw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 01 Mar 2025 04:21:13 GMT
etag: W/"67c28b39-169b"
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-xss-protection: 0
content-encoding: gzip
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 93383c12bc33b4f9-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=16602&min_rtt=9234&rtt_var=8529&sent=21&recv=25&lost=0&retrans=0&sent_bytes=4198&recv_bytes=2378&delivery_rate=1670&cwnd=12000&unsent_bytes=0&cid=c28e1610493dbd91&ts=422&x=16"

GET onhockey.tv/favicon.ico

172.67.136.15

200 OK

2.1 kB

URL GET
onhockey.tv/favicon.ico
IP
172.67.136.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectonhockey.tv
Fingerprint2A:9C:A0:DE:10:2D:13:90:10:18:24:43:04:81:42:61:88:3A:74:A3
ValidityThu, 13 Mar 2025 11:47:14 GMT - Wed, 11 Jun 2025 12:45:35 GMT

File type
MS Windows icon resource - 1 icon, 22x22, 32 bits/pixel
Size
2.1 kB (2086 bytes)
Hash
569869e411c1081feb7a24ba7930a796
b67f515cbfc6a4e5df1f82446d00e09768deab27
aa8e151283df35f9da0684d48c67b06d72d5401f0bd0280bf855c5a98d6a0896

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: onhockey.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: image/vnd.microsoft.icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=786HiUDNizAwcmpG8ldFUCiFBnpL7T4if1kRTnOk6mJb8DfCgDSXAft%2B1sDBmWKcp788zUWC8q3%2FKj9k4Sf1vFGmJTz6SHpdg%2BzEgiPOJsuHzSgxsslGYqs%2BSfJixA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 02 Feb 2018 08:03:30 GMT
etag: W/"20337-826-5643625e30a25"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2978
content-encoding: br
cf-ray: 93383c1409171c0a-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5422&min_rtt=2563&rtt_var=2786&sent=59&recv=62&lost=0&retrans=1&sent_bytes=22646&recv_bytes=4323&delivery_rate=428627&cwnd=25200&unsent_bytes=0&cid=e20973c966a81319&ts=1414&x=16"

GET experttrafficcounter.com/stats

18.198.132.236

200 OK

40 B

URL GET
experttrafficcounter.com/stats
IP
18.198.132.236:443
ASN
#16509 AMAZON-02

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerAmazon
Subjectexperttrafficcounter.com
FingerprintEE:A0:89:D0:CF:A2:E2:EC:50:6D:6C:20:D2:5A:BB:B9:8C:6E:3F:CC
ValidityThu, 23 Jan 2025 00:00:00 GMT - Sat, 21 Feb 2026 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
8d994a76d5809ca4009a91613a06527e
e96b38ea6272ccc17406c63a5623a3629ab4668f
a6b39d2ab711a332082b8686306bc2edee394ff8bb404afe1188569cee205781

HTTP Headers

GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://onhockey.tv
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://onhockey.tv
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=d7509ff0-7beb-4b91-b424-d77d1720faf6:1:1; expires=Wed, 18 Apr 2035 22:56:23 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET nannyirrationalacquainted.com/watch.13871459081.js?key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&tz=0&dev=e&res=14.3095&rb=&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1

172.240.108.68

307 Temporary Redirect

3.3 kB

URL GET
nannyirrationalacquainted.com/watch.13871459081.js?key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&tz=0&dev=e&res=14.3095&rb=&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerLet's Encrypt
Subjectnannyirrationalacquainted.com
Fingerprint02:A2:15:3C:6C:15:16:0E:78:8F:56:09:21:EA:27:04:2D:EC:D5:E2
ValiditySun, 20 Apr 2025 00:43:48 GMT - Sat, 19 Jul 2025 00:43:47 GMT

File type

Size
3.3 kB (3339 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.13871459081.js?key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&tz=0&dev=e&res=14.3095&rb=&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1 HTTP/1.1
Host: nannyirrationalacquainted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://onhockey.tv
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 20 Apr 2025 22:56:24 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://onhockey.tv
access-control-allow-origin: https://onhockey.tv
access-control-allow-credentials: true
location: https://nannyirrationalacquainted.com/watch.13871459081.js?dev=e&key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&pst=1745189844&rb=&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&res=14.3095&rmtc=t&shu=149dc94c38ba2ac442b4d979294fb3c3b09050d77dda9486e3069e58226dbbc94f52498c778ec57eba4e3f50a6ca663b25ce7287b2b5a9ae05f67e24db6ca904dbe8826411214853b77486f9c131d450437960b3e1565bdee9d296&tz=0&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTY4NTY0MywiayI6IjZiZGM0ZGExZjNkNTIyYWJhM2NhNGFiN2I5ZmEyODAxIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMTM2ODcsInBpZCI6OTA3NjEsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MTksImFpZCI6MjcsInB0Ijo0LCJwayI6Im1kdjdhdXYydm4iLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6MjY2NTYxMTE1LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTM2OTI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEzNC4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vb25ob2NrZXkudHYvbnBfc3RyZWFtNDAwLnBocD9jaGFubmVsPS8vdm9vZGMuY29tL2VtYmVkLzg1ODE4YTk2OWQ5MDk5ODQ4NDdhODU5NTljOGM5ODg2OGI3Yi5odG1sIiwiYXIiOltdfX0.OCSlbw6vhRkKxu7eOU89pzRZ8P3Ek1A8SFrh_SWspkM; expires=Sun, 20 Apr 2025 22:57:24 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: nannyirrationalacquainted.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 71ce64fd3b3d53b0e389f6aa8e5b4b3c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET youradexchange.com/script/suurl5.php?r=7137382&cbur=0.6577867727831764&cbiframe=1&cbWidth=710&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&cbref=&cbdescription=&cbkeywords=&cbcdn=qsvbi.space&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1745189785017&srs=d04d820d051f294632cb9e08e6dc74d3&atv=57.0&abtg=1&adbv=3-cdn-js

172.67.177.214

200 OK

942 B

URL GET
youradexchange.com/script/suurl5.php?r=7137382&cbur=0.6577867727831764&cbiframe=1&cbWidth=710&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&cbref=&cbdescription=&cbkeywords=&cbcdn=qsvbi.space&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1745189785017&srs=d04d820d051f294632cb9e08e6dc74d3&atv=57.0&abtg=1&adbv=3-cdn-js
IP
172.67.177.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint15:B3:64:96:16:B0:F4:77:6F:50:C1:66:99:8E:A6:A8:90:64:AD:7E
ValidityThu, 03 Apr 2025 15:59:56 GMT - Wed, 02 Jul 2025 16:56:55 GMT

File type
JSON text data
Size
942 B (942 bytes)
Hash
f2500d992858d739c8423fa0ddee3692
af53e6414a7cc333a120bd47d60c553453f26c59
da0461d01924b83fa42d5d2abd7d8ae413295823fc725ff49af093ce7a84e3c1

HTTP Headers

GET /script/suurl5.php?r=7137382&cbur=0.6577867727831764&cbiframe=1&cbWidth=710&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&cbref=&cbdescription=&cbkeywords=&cbcdn=qsvbi.space&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1745189785017&srs=d04d820d051f294632cb9e08e6dc74d3&atv=57.0&abtg=1&adbv=3-cdn-js HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voodc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:25 GMT
content-type: application/json; charset=utf-8
server: cloudflare
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
cf-ray: 93383c1eeea5b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html

172.67.136.15

200 OK

2.0 kB

URL User Request GET
onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
IP
172.67.136.15:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectonhockey.tv
Fingerprint2A:9C:A0:DE:10:2D:13:90:10:18:24:43:04:81:42:61:88:3A:74:A3
ValidityThu, 13 Mar 2025 11:47:14 GMT - Wed, 11 Jun 2025 12:45:35 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
2.0 kB (1995 bytes)
Hash
b3c7411c06e1525f4ee518281a650908
b3249dabf15cd87c06be862c3cf6f123114cc3b2
d97c8adfe1cdd225e5d351c4f2c024db4fdf98ec9ad9bd0d9d5742be52bade10

HTTP Headers

GET /np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html HTTP/1.1
Host: onhockey.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:22 GMT
content-type: text/html; charset=windows-1251
server: cloudflare
x-powered-by: PHP/5.3.3
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 93383c0aa9b6712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html

104.21.112.1

200 OK

1.3 kB

URL GET
voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectvoodc.com
Fingerprint21:07:E2:AE:B3:E4:0C:5B:FD:D6:29:F5:EC:08:DB:65:7E:38:26:0B
ValidityMon, 03 Mar 2025 22:15:25 GMT - Sun, 01 Jun 2025 23:11:30 GMT

File type
HTML document, ASCII text
Size
1.3 kB (1323 bytes)
Hash
f8dfbbdd2218778b6d9bc30c9416146a
ac9bea0abaf992d97415da37daee71fafe9b5bfb
9aa472442ab93d7dcc8a572c4efc498e0d558fd1fae04b8d292bc56488e98e63

HTTP Headers

GET /embed/85818a969d909984847a85959c8c98868b7b.html HTTP/1.1
Host: voodc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
vary: accept-encoding
x-powered-by: PHP/8.0.30
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-xss-protection: 0
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 93383c0ec844b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET nannyirrationalacquainted.com/watch.13871459081.js?dev=e&key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&pst=1745189844&rb=&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&res=14.3095&rmtc=t&shu=149dc94c38ba2ac442b4d979294fb3c3b09050d77dda9486e3069e58226dbbc94f52498c778ec57eba4e3f50a6ca663b25ce7287b2b5a9ae05f67e24db6ca904dbe8826411214853b77486f9c131d450437960b3e1565bdee9d296&tz=0&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1

172.240.108.68

200 OK

3.3 kB

URL GET
nannyirrationalacquainted.com/watch.13871459081.js?dev=e&key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&pst=1745189844&rb=&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&res=14.3095&rmtc=t&shu=149dc94c38ba2ac442b4d979294fb3c3b09050d77dda9486e3069e58226dbbc94f52498c778ec57eba4e3f50a6ca663b25ce7287b2b5a9ae05f67e24db6ca904dbe8826411214853b77486f9c131d450437960b3e1565bdee9d296&tz=0&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerLet's Encrypt
Subjectnannyirrationalacquainted.com
Fingerprint02:A2:15:3C:6C:15:16:0E:78:8F:56:09:21:EA:27:04:2D:EC:D5:E2
ValiditySun, 20 Apr 2025 00:43:48 GMT - Sat, 19 Jul 2025 00:43:47 GMT

File type
JavaScript source, ASCII text, with very long lines (2463)
Size
3.3 kB (3339 bytes)
Hash
bc74cf4c9a8b0373b6195a5125344298
ed4f7feffdc3ec54af2eeb9ee90a882353e401ad
282be3e546684e8d9939585bc8980b78e6e5346428670b7a905028ff5cd6344a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.13871459081.js?dev=e&key=6bdc4da1f3d522aba3ca4ab7b9fa2801&kw=%5B%22onhockey%22%2C%22tv%22%2C%22live%22%2C%22hockey%22%2C%22streams%22%2C%22khl%22%2C%22nhl%22%2C%22euro%22%2C%22hockey%22%2C%22tour%22%2C%22world%22%2C%22championship%22%2C%22olympic%22%2C%22games%22%5D&pst=1745189844&rb=&refer=https%3A%2F%2Fonhockey.tv%2Fnp_stream400.php%3Fchannel%3D%2F%2Fvoodc.com%2Fembed%2F85818a969d909984847a85959c8c98868b7b.html&res=14.3095&rmtc=t&shu=149dc94c38ba2ac442b4d979294fb3c3b09050d77dda9486e3069e58226dbbc94f52498c778ec57eba4e3f50a6ca663b25ce7287b2b5a9ae05f67e24db6ca904dbe8826411214853b77486f9c131d450437960b3e1565bdee9d296&tz=0&uuid=d7509ff0-7beb-4b91-b424-d77d1720faf6%3A1%3A1 HTTP/1.1
Host: nannyirrationalacquainted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://onhockey.tv
Referer: https://onhockey.tv/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.OCSlbw6vhRkKxu7eOU89pzRZ8P3Ek1A8SFrh_SWspkM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 20 Apr 2025 22:56:24 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://onhockey.tv
access-control-allow-origin: https://onhockey.tv
access-control-allow-credentials: true
set-cookie: uid_id2=d7509ff0-7beb-4b91-b424-d77d1720faf6:1:1; expires=Sun, 27 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 21 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 21 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
pdhtkv27=true; expires=Mon, 21 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
uncs27=1; expires=Mon, 21 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
u_pl21685643=1; expires=Mon, 21 Apr 2025 22:56:24 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 10
Host: nannyirrationalacquainted.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f1f0e52c5777419981e5d61c46db71bc
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET ssl.p.jwpcdn.com/player/v/8.27.1/provider.hlsjs.js

151.101.130.114

200 OK

422 kB

URL GET
ssl.p.jwpcdn.com/player/v/8.27.1/provider.hlsjs.js
IP
151.101.130.114:443
ASN
#54113 FASTLY

Requested by
https://voodc.com/player/d/jXuPkaCJmomIl8Xb1cPVtYl6rcrau9jLx5iqkpyHpKu9uIyVp8-fiI-8zJKfi5mbua3B0J6HmoSEe4aSssDbubq5zpKfi5k_/p6yDlZmL3IGEf4OSo4uehY16jJechMqq
Certificate
IssuerGlobalSign nv-sa
Subject*.jwplayer.com
FingerprintEB:7D:6F:C0:96:2F:66:35:5C:60:21:FF:31:D2:7A:D1:4F:C7:CF:96
ValidityTue, 02 Jul 2024 18:10:25 GMT - Sun, 03 Aug 2025 18:10:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
422 kB (422237 bytes)
Hash
4f4459c52455c57a5490992cac29595d
55790ba8e788ff62ddb68f640246acda2cdb4397
5172dcf83f6d622751ea688d1ba4b507d54e3eeed9e933ac38f87ada5ecc87fd

HTTP Headers

GET /player/v/8.27.1/provider.hlsjs.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 22 May 2023 06:27:32 GMT
etag: "4f4459c52455c57a5490992cac29595d"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 20 Apr 2025 22:56:25 GMT
via: 1.1 varnish
age: 1713067
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 3072
x-timer: S1745189785.101460,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 125992
X-Firefox-Spdy: h2

GET onhockey.tv/stopadblock440.jpg

172.67.136.15

200 OK

15 kB

URL GET
onhockey.tv/stopadblock440.jpg
IP
172.67.136.15:443
ASN
#13335 CLOUDFLARENET

Requested by
https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectonhockey.tv
Fingerprint2A:9C:A0:DE:10:2D:13:90:10:18:24:43:04:81:42:61:88:3A:74:A3
ValidityThu, 13 Mar 2025 11:47:14 GMT - Wed, 11 Jun 2025 12:45:35 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 440x60, components 3
Size
15 kB (14982 bytes)
Hash
aaf922c544ac5ec24c9c30e05c5219b5
fee57b82d5fefd4368af8dbf1209bfb66e317255
f2a58174339da236d4d5f6714dcf5dc17e749068eecdc9458a939b8930482ece

HTTP Headers

GET /stopadblock440.jpg HTTP/1.1
Host: onhockey.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onhockey.tv/np_stream400.php?channel=//voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 20 Apr 2025 22:56:22 GMT
content-type: image/jpeg
content-length: 14982
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lx6wQVNnAFsnNLQH5giICpMhXL9MOw72Tzd1DEU9sDq%2BuqpUJGf1uiQNNVNcOa6oSh8I5aCzst5Gcq%2BFv1eYKeLrtrMcmicALd%2F7NiWO5p38cgDd0Vc%2F06TSB3ippA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 05 Dec 2018 12:08:18 GMT
etag: "20576-3a86-57c453cce5580"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4559
accept-ranges: bytes
cf-ray: 93383c0e289a1c0a-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5073&min_rtt=2563&rtt_var=2308&sent=42&recv=59&lost=0&retrans=0&sent_bytes=5371&recv_bytes=3900&delivery_rate=1377&cwnd=12000&unsent_bytes=0&cid=e20973c966a81319&ts=484&x=16"

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js

104.17.24.14

200 OK

88 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/jquery/3.7.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voodc.com/embed/85818a969d909984847a85959c8c98868b7b.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87462 bytes)
Hash
e6c2415c0ace414e5153670314ce99a9
5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6
d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8

HTTP Headers

GET /ajax/libs/jquery/3.7.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voodc.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 20 Apr 2025 22:56:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 27437
cf-ray: 93383c135be3b503-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "659afac8-6b2d"
last-modified: Sun, 07 Jan 2024 20:26:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 352092
expires: Fri, 10 Apr 2026 22:56:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rN1hWKpa4aBGpkRQsl5ulmJbcgPSbPttQJTZn%2BiqJlPALFqQEsUyGdgz193VO8ec9xB0aHNz9Xdy4oyAwnUbZtLiwWHx10%2BRrpvoDNTujLHdUFwW3%2FHq%2BDiCpkBFSHVN7skNzJc9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML