Report - javguard.club/e/eL2157M8veBErw4

Report Overview

Visited public
2025-06-02 02:36:09
Tags
URL
javguard.club/e/eL2157M8veBErw4
Finishing URL
javguard.club/e/eL2157M8veBErw4
IP / ASN
104.21.16.1
#13335 CLOUDFLARENET
Title
GAS-524-javgg.net.mp4

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
junkyadexchange.com	unknown	2024-07-29	2024-07-29	2025-05-29	1.2 kB	532 B	104.21.31.39
experttrafficcounter.com	unknown	2025-01-23	2025-01-24	2025-05-30	443 B	422 B	52.58.57.192
youradexchange.com	273384	2012-11-09	2013-02-04	2025-05-29	4.4 kB	8.2 kB	104.18.25.98
c66afocw1c.guardstorage.net	unknown	2022-12-22	2025-06-02	2025-06-02	3.6 kB	932 kB	57.128.74.112
javguard.club	unknown	2025-05-28	2025-05-28	2025-05-28	4.2 kB	1.2 MB	104.21.48.1
recordedthereby.com	unknown	2024-05-08	2024-05-08	2025-05-26	412 B	86 kB	185.196.197.71
shotgunchancecruel.com	unknown	2024-08-20	2025-01-25	2025-05-26	500 B	499 B	192.243.61.227
heardaccumulatebeans.com	unknown	2024-05-24	2024-05-28	2025-05-23	455 B	105 kB	192.243.61.225
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2025-05-30	426 B	377 B	185.196.197.71
i.guardstorage.net	unknown	2022-12-22	2023-02-27	2025-05-23	1.4 kB	779 kB	104.21.80.1
acscdn.com	93608	2020-05-05	2020-05-06	2025-05-29	1.7 kB	418 kB	104.18.17.201
unseenreport.com	unknown	2022-03-30	2022-03-30	2025-05-29	764 B	496 B	192.243.59.12
pubtrky.com	unknown	2023-11-21	2023-11-21	2025-05-26	483 B	528 B	172.67.188.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-01	medium	capaciousdrewreligion.com	Sinkholed
2025-06-01	medium	recordedthereby.com	Sinkholed
2025-06-01	medium	shotgunchancecruel.com	Sinkholed
2025-06-01	medium	unseenreport.com	Sinkholed
2025-06-02	medium	heardaccumulatebeans.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	From	Size	First Seen	Last Seen
	javguard.club/e/eL2157M8veBErw4	ScriptElement	77 B	2024-01-22	2025-06-03
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-22 09:14 Last Seen2025-06-03 11:50 Times Seen51 Hash b5cdb3fb48157901ac97a5b90241bffb 0669ba024cb1a6fcc2270de34f57e32315fc3949 aeca2316a1f3548628f04b96af44da3ac3519b76bbe79f513c7195380e52d0d7 Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	163 B	2024-01-22	2025-06-03
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-22 09:14 Last Seen2025-06-03 11:50 Times Seen55 Hash 8c86115a74a05eab860602400b1bf55a d852d67127ab71ac875b26ff5d4e2b8b2ed006f5 a757611ec5dd52c76c6599caf7e64796d0b93116b7b70b352fdf506fc2178438 Loading...

	javguard.club/assets/jwplayer/8.36.4/jwpsrv.js	ScriptElement	67 kB	2025-01-10	2025-06-03
Pretty URL javguard.club/assets/jwplayer/8.36.4/jwpsrv.js IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-10 15:16 Last Seen2025-06-03 11:50 Times Seen88 Hash 31401fbc0ab6b12a6501bd594be3a8f3 f83a4ddd2d63bb4466fd6af488c54a262228e34a 9a14bfe6376ee1c040735882769d97f12b8eda3620f214e70c4053166d64fc9a Loading...

	acscdn.com/script/suv5.js	ScriptElement	96 kB	2025-05-30	2025-06-02
Pretty URL acscdn.com/script/suv5.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-30 17:33 Last Seen2025-06-02 02:36 Times Seen18 Hash c6c68aef4c520ca53aee1e9a7d6a7593 eef23e1f12af66c995a66f9aeab0451c6916bbbe 163b67c2747d3eb41aec65446a9b1ce23230c638715129bb930f16af7ee76fae Loading...

	acscdn.com/script/inpagepush.js	ScriptElement	87 kB	2025-05-30	2025-06-02
Pretty URL acscdn.com/script/inpagepush.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-30 16:55 Last Seen2025-06-02 02:36 Times Seen12 Hash db81ec77ad3ba75e116ec4afd8156fd3 527835ef387f00ef4acc48a0413b9940066d45a5 f31c54ba12af7435c39dc5bd6f521883192e1bd9ec76a35c25d74a8e8dd46226 Loading...

	javguard.club/e/eL2157M8veBErw4	Function	630 B	2025-06-02	2025-06-02
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash e5728a3b53f2aa57b302ded0e9ee3d53 7df4a7a2c9c95cc79be4c0b3da5c81879a285fe2 5a048cc753ba02aac5c0c9cb5e03788f978ae86160eee054f6894ec20449d764 Loading...

	javguard.club/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6	ScriptElement	148 kB	2025-03-25	2025-06-03
Pretty URL javguard.club/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 21:34 Last Seen2025-06-03 11:50 Times Seen13 Hash 7d12e5f8255c527cbd563d0281a3e404 465a16f78ebb976f5599ee6a8f8665b5b7529564 a53bd1a0e458c9901eeb5c79b2a65c2ffe24225e424749b217e0f918d87b9086 Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	2.5 kB	2025-06-02	2025-06-02
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash 6c5f0a2b64cb3888714b686ced208e61 f65f2bb4c81c2d5f4a5b3c12b2b3b64a7b9a7b73 2ce6f59f36016809a5ccc88462fb0c66e6ad9c2fb578ac034ff43fb5434d785b Loading...

	javguard.club/assets/jwplayer/8.36.4/jwplayer.core.controls.js	ScriptElement	332 kB	2025-01-02	2025-06-03
Pretty URL javguard.club/assets/jwplayer/8.36.4/jwplayer.core.controls.js IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-02 21:48 Last Seen2025-06-03 11:50 Times Seen110 Hash aa76c7bf8a702f02c4ec0fc973d698d6 cd8bd98969dd7167c8d99a5abcec4a07df4e63a2 7220be9e6db902dabf6a18a260e3a1d14a877aa9aeb113380dd3711c908eba0f Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2025-01-25	2025-06-03
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.71 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 09:25 Last Seen2025-06-03 19:39 Times Seen1085 Hash 108625937affa4b38bb17cea65510d72 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0 Loading...

	javguard.club/assets/jwplayer/8.36.4/provider.hlsjs.js	ScriptElement	461 kB	2025-03-25	2025-06-03
Pretty URL javguard.club/assets/jwplayer/8.36.4/provider.hlsjs.js IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-25 21:34 Last Seen2025-06-03 11:50 Times Seen12 Hash 53f377cf2bb36a2da25d07fa1b4b2b84 35ab3e3f9b2cb94860fd594fa2310187f8115d82 2ba7e35f6c4c9654a8a80a8476509c69526c1bc52b65cea7e98558d600f2e231 Loading...

	acscdn.com/script/interstitial.js	ScriptElement	89 kB	2025-05-30	2025-06-02
Pretty URL acscdn.com/script/interstitial.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-30 22:35 Last Seen2025-06-02 02:36 Times Seen8 Hash e9714e0d9c8d8be9bff8ada1c054ff6e b43c8bd00e3796b62bb7733dce13b094c6fbe055 06fb0a7e2852bc0cfbb2e1951b8591fc8febfcf6516f331f1df3e2561c0a82e3 Loading...

	acscdn.com/script/aclib.js	ScriptElement	143 kB	2025-05-30	2025-06-02
Pretty URL acscdn.com/script/aclib.js IP 104.18.17.201 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-30 16:55 Last Seen2025-06-02 06:31 Times Seen31 Hash 591e62a3b8d6c575241c8e46ff467a5f 71b3bdc87deb2844ed8c833d7742e92481a46418 0ffb493ec054f372b8e53cc61d6874dc90634c3bbeced49ade0fab97ad0da21e Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	56 kB	2025-06-02	2025-06-02
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash 7ebe6971154b76fe8b5438bc68c341a3 4f457f3d20b2c08a240e435b3802a271d71f9684 b96175e23b594bfae870aea4cd0ffe97b53b6dbe60e69e8fb0338bf30b58975c Loading...

	heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js	ScriptElement	104 kB	2025-06-02	2025-06-02
Pretty URL heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash 785a918ec0b48a089d8cfc49b2091875 bc91405d859d18b51773510b697c83915543d7a1 8a7822e71258943334dcca2e1a37b8d8a71a271f55410e0e4ef06181d46971d6 Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	2.2 kB	2023-05-22	2025-06-03
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 10:53 Last Seen2025-06-03 11:50 Times Seen58 Hash 62a92dd510564854e07d8a6de701ed58 03e17a24753ced6bf9fa12b7aba90abb873d72f1 92b002ab80f8fdaac7bbb92f61853a089cf735188c7de0bd7417e65bd644bf13 Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	59 B	2025-01-27	2025-06-03
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-27 03:46 Last Seen2025-06-03 11:50 Times Seen16 Hash cc13095b119ebfeac3a238961d349fd0 6d4f6763fd6813449cd38cd55f48408320fc0fdd 44f876dbb8ea470a6f40a4fea813d52aa9301194f2bb5d530455c0ef3d9fdcf4 Loading...

	javguard.club/e/eL2157M8veBErw4	Eval	41 kB	2025-06-02	2025-06-02
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by eval Embedded in HTML false Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash 63f1f11c6e99223270f624a37faacc6a 8d3ccc2a73eccb0d4a8297cee8c0afa6a6612035 f756bb24770cee31edacabb03ed603c4e591833b900783af6275bd712f2b5602 Loading...

	javguard.club/e/eL2157M8veBErw4	ScriptElement	110 B	2025-02-08	2025-06-03
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-08 19:11 Last Seen2025-06-03 11:50 Times Seen13 Hash c2fe9d08d1049f99116a45f120963ba4 2ee1dba67c9b850582148adb9a48932c4cbedd3b 5823d152db2f403cfadd9747743c41569ddec36cc112fca5131a9ae4076bd52e Loading...

	javguard.club/e/eL2157M8veBErw4	Function	2.3 kB	2025-06-02	2025-06-02
Pretty URL javguard.club/e/eL2157M8veBErw4 IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2025-06-02 02:36 Last Seen2025-06-02 02:36 Times Seen1 Hash 9764286bef409f56c329470413c13b80 3183cdd8fa64508dc4962591698aaeb2c53578dd 0681430a81754dcb602e2b236540994008acfb8fe96e60a361f37f134fb6ca86 Loading...

	javguard.club/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db	ScriptElement	106 kB	2025-01-03	2025-06-03
Pretty URL javguard.club/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-03 17:03 Last Seen2025-06-03 11:50 Times Seen23 Hash 2600e0252870a20882319cf68fbe5260 27edc7b0bcfd4145510e3175a749f26de1f19048 07873ddc8c12db088b3bef80b0979ab082cdd92af545c2a1608574bf98f737e9 Loading...

	javguard.club/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db	ScriptElement	14 kB	2023-03-07	2025-06-03
Pretty URL javguard.club/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db IP 104.21.48.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-06-03 11:50 Times Seen1364 Hash 19b624e7fe7a86b4c7851ed61e250626 760a6c0399930b96c61b6e18a6cbb0dbf0125f97 eaf266c920ef8297bf135324d4c6232d117d1eb849a082850b8d0520c1966c2e Loading...

HTTP Transactions (34)

URL IP Response Size

capaciousdrewreligion.com/advertisers.js

185.196.197.71

200 OK

0 B

URL GET
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint4C:9A:D1:39:AD:B4:C8:D5:6E:A1:5A:54:6F:88:D5:0F:D1:C6:5A:06
ValidityFri, 02 May 2025 21:09:09 GMT - Thu, 31 Jul 2025 21:09:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 02 Jun 2025 02:35:47 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 529f50feb720dd2539e87744ccb3008a
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

i.guardstorage.net/posters/X6eL2157M8veBErw48Ko.poster.jpg

104.21.80.1

200 OK

53 kB

URL GET
i.guardstorage.net/posters/X6eL2157M8veBErw48Ko.poster.jpg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjecti.guardstorage.net
FingerprintB1:13:CA:4F:6B:63:3D:8A:24:22:B0:71:72:36:13:0E:B0:F6:3F:04
ValiditySun, 06 Apr 2025 03:13:13 GMT - Sat, 05 Jul 2025 03:13:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 852x476, components 3
Size
53 kB (53317 bytes)
Hash
01a16478fec42452514859d19c51aea5
0461d19dc72f71a8fad8ce0666b46ae9c3b61ba8
631485a3b063ce188c8bf64ff02e5916c2a63eb1be72053d14fdf8f14892778b

HTTP Headers

GET /posters/X6eL2157M8veBErw48Ko.poster.jpg HTTP/1.1
Host: i.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: image/jpeg
content-length: 53317
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Sun, 01 Jun 2025 03:31:34 GMT
etag: "683bc996-d045"
access-control-allow-origin: *
x-server: cdn2
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Y5FQ6A9X4HZKRKRJvnpWJ5Dduuh93dn7G36boRfzgxy496H98AN1ALnvatk8Wd2F%2Fl4GjEKy5gghIJIrDm8uSZchawBnYC7%2Fsl5ne%2FF6f4g%3D"}]}
cf-ray: 94938f348e25712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

acscdn.com/script/interstitial.js

104.18.17.201

200 OK

89 kB

URL GET
acscdn.com/script/interstitial.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (33090), with NEL line terminators
Size
89 kB (88656 bytes)
Hash
e9714e0d9c8d8be9bff8ada1c054ff6e
b43c8bd00e3796b62bb7733dce13b094c6fbe055
06fb0a7e2852bc0cfbb2e1951b8591fc8febfcf6516f331f1df3e2561c0a82e3

HTTP Headers

GET /script/interstitial.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: text/javascript
x-guploader-uploadid: ABgVH89yuv5HWUTQYS2KNJFZG1fZKRTurs8qgR3QE26i6RdelTPL6ek6s_f6syblrOwwfAM
x-goog-generation: 1748593955176935
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 88656
x-goog-hash: crc32c=MGkQYQ==, md5=6XFODZyNi+m/+K2hwFT/bg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Mon, 02 Jun 2025 03:35:47 GMT
cache-control: public, max-age=3600
last-modified: Fri, 30 May 2025 08:32:35 GMT
etag: W/"e9714e0d9c8d8be9bff8ada1c054ff6e"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1931
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94938f34981f0b65-OSL
content-encoding: gzip
server-timing: cfExtPri

youradexchange.com/script/interstitial.php?r=9830558&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=&pblcz=9148982

104.18.25.98

200 OK

2.2 kB

URL GET
youradexchange.com/script/interstitial.php?r=9830558&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=&pblcz=9148982
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type
JSON text data
Size
2.2 kB (2166 bytes)
Hash
8430dda18022a8712eb1095f14556585
6457e62e55fff0ea3bb223111772e966c8950aaf
7085ad99f13905c54daf50b65e3eda745e79eb81e04da08f04251b5c47771ce2

HTTP Headers

GET /script/interstitial.php?r=9830558&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=&pblcz=9148982 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
server: cloudflare
cf-ray: 94938f35d91f712b-OSL
X-Firefox-Spdy: h2

c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f1-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745

57.128.74.112

200 OK

79 kB

URL GET
c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f1-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745
IP
57.128.74.112:443
ASN
#16276 OVH SAS

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
79 kB (78908 bytes)
Hash
1c59e7ee35d2874858acd3c7c839f357
65ba1256e07aa6a7ed44174038d439374b3b2755
2ad1f50fd611e85f007cb5a44bcb8e56abaa639d71ce84aeb113f09aa7d1e4e4

HTTP Headers

GET /hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f1-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745 HTTP/1.1
Host: c66afocw1c.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Mon, 02 Jun 2025 02:35:47 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-1-f1-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745

57.128.74.112

200 OK

244 kB

URL GET
c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-1-f1-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745
IP
57.128.74.112:443
ASN
#16276 OVH SAS

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
MPEG transport stream data
Size
244 kB (244024 bytes)
Hash
e3158531042f6fbff458976d404c8748
b73c375a330e0a2284c41be597f7155b42496b51
cba4e0854e563ecc4ab46e593c74ddf6a703eaa195578cee5485ae2ee3534372

HTTP Headers

GET /hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-1-f1-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745 HTTP/1.1
Host: c66afocw1c.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: video/MP2T
content-length: 244024
etag: "3a1794b0-3b938"
last-modified: Sun, 19 Nov 2000 08:52:00 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
expires: Wed, 10 Sep 2025 02:35:47 GMT
cache-control: max-age=8640000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-2-f2-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745

57.128.74.112

200 OK

527 kB

URL GET
c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-2-f2-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745
IP
57.128.74.112:443
ASN
#16276 OVH SAS

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
MPEG transport stream data
Size
527 kB (526776 bytes)
Hash
7a0f5711d153ddcb3195e2e9e44a56f1
89dd089d6682ad566e1a5e02ab002f695af31283
378ca21f4c7f88fe0bbe3a201b33c0b08f3459a27426bb6cca83c28810a521bd

HTTP Headers

GET /hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/seg-2-f2-v1-a1.ts?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745 HTTP/1.1
Host: c66afocw1c.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Mon, 02 Jun 2025 02:35:48 GMT
content-type: video/MP2T
content-length: 526776
etag: "3a1794b0-809b8"
last-modified: Sun, 19 Nov 2000 08:52:00 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
expires: Wed, 10 Sep 2025 02:35:48 GMT
cache-control: max-age=8640000
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

acscdn.com/script/suv5.js

104.18.17.201

200 OK

96 kB

URL GET
acscdn.com/script/suv5.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators
Size
96 kB (96328 bytes)
Hash
c6c68aef4c520ca53aee1e9a7d6a7593
eef23e1f12af66c995a66f9aeab0451c6916bbbe
163b67c2747d3eb41aec65446a9b1ce23230c638715129bb930f16af7ee76fae

HTTP Headers

GET /script/suv5.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript
x-guploader-uploadid: ABgVH89DDrqMcy9aZ1YouJQ4bp2sS-Bk0QI1Tuh7aZg12FcHuUDnJBbsOMWr9Yj7QUxao-fS
x-goog-generation: 1748594140523087
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 96328
x-goog-hash: crc32c=Q3nXbA==, md5=xsaK70xSDKU67h6afWp1kw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 02 Jun 2025 03:35:46 GMT
cache-control: public, max-age=3600
last-modified: Fri, 30 May 2025 08:35:40 GMT
etag: W/"c6c68aef4c520ca53aee1e9a7d6a7593"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2110
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94938f307f240b65-OSL
content-encoding: gzip
server-timing: cfExtPri

javguard.club/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db

104.21.48.1

200 OK

14 kB

URL GET
javguard.club/assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
ASCII text, with very long lines (13852), with no line terminators
Size
14 kB (13852 bytes)
Hash
19b624e7fe7a86b4c7851ed61e250626
760a6c0399930b96c61b6e18a6cbb0dbf0125f97
eaf266c920ef8297bf135324d4c6232d117d1eb849a082850b8d0520c1966c2e

HTTP Headers

GET /assets/js/player.js?id=a9b24acc6c8d37de23098caa2f7907db HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y3S0j5QO0C0JP3VWhXQHDziG82%2F0G9R3Zk2nCC%2F3J07XZFI1WZbhL5VOLXsIxGQPj9I3d5N3nzVNBvlRYWflqzWyeP70qYnZMFN3kqop9cLCml%2B5NzPMQa4Dim5L1WOk"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Thu, 21 Mar 2024 07:00:23 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
age: 289900
cf-cache-status: HIT
cf-ray: 94938f2cbcd07128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5270&min_rtt=1281&rtt_var=3334&sent=32&recv=36&lost=0&retrans=0&sent_bytes=4737&recv_bytes=3163&delivery_rate=452467&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=196&x=80"

youradexchange.com/script/suurl5.php?r=9148982&cbur=0.27827310265034655&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831746800&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2

104.18.25.98

200 OK

1.1 kB

URL GET
youradexchange.com/script/suurl5.php?r=9148982&cbur=0.27827310265034655&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831746800&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type
JSON text data
Size
1.1 kB (1058 bytes)
Hash
53a34614b49cf820d15fa89a29de007c
42961f68dadb6e4e6bce7561f71cea3615a84839
c57612a3a58335d12479ee4ac4af3d3fa4e0c0780e3db0da118cf29e35f6ec35

HTTP Headers

GET /script/suurl5.php?r=9148982&cbur=0.27827310265034655&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831746800&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
server: cloudflare
cf-ray: 94938f326ff7712b-OSL
X-Firefox-Spdy: h2

javguard.club/favicon.ico

104.21.48.1

404 Not Found

18 B

URL GET
javguard.club/favicon.ico
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
ASCII text, with no line terminators
Size
18 B (18 bytes)
Hash
53af239ee5d3e261545dededcb6ffd57
04ca7e137e1e9feead96a7df45bb67d5ab3de190
99eb12f2ab3c4866a353e098ffa3cb7a967e617c49b98480394ec5d8ea92b094

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Cookie: pp_show_on_f2779c2b84f5bc3a945716675a808305=1; pp_main_f2779c2b84f5bc3a945716675a808305=1; pp_exp_f2779c2b84f5bc3a945716675a808305=1748838947182; dom3ic8zudi28v8lr6fgphwffqoz0j6c=abfe9973-f49d-4907-81d4-13c4f828b86c%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: text/plain
content-length: 18
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NXKQVogemMbC98C7JZs7cRyujYVi5Gw38JH87EMAmX58eVNBcc7csCijffkHVAVoBmcQJSOFGpx6XYF6itb0erAHaC44008jq6Hdb8s%2FohfDRtAEgrGer%2F9jfX5kE8mO"}],"group":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
cf-ray: 94938f37ecdd7128-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3753&min_rtt=1061&rtt_var=2214&sent=336&recv=49&lost=0&retrans=0&sent_bytes=360106&recv_bytes=4977&delivery_rate=21795039&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=192000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=2041&x=80"

javguard.club/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6

104.21.48.1

200 OK

148 kB

URL GET
javguard.club/assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65141)
Size
148 kB (147986 bytes)
Hash
7d12e5f8255c527cbd563d0281a3e404
465a16f78ebb976f5599ee6a8f8665b5b7529564
a53bd1a0e458c9901eeb5c79b2a65c2ffe24225e424749b217e0f918d87b9086

HTTP Headers

GET /assets/jwplayer/8.36.4/jwplayer.js?id=2ec1cfc87408adedf85a8ebcbcd646f6 HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1m3j%2BeL7Ou%2BuBgR2TkProJZrDzGTUTcLuaZeExNmHcGCLz3QFTkCjIuiPqzWoaCnxZZF6JkE8J9XdcUoohDcx7v3AhJ1qa4DRLk3W2QiFdiLFhWd8%2B0Ork6xfRNjKcTd"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:40 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
age: 289901
cf-cache-status: HIT
cf-ray: 94938f2cbccf7128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4088&min_rtt=1281&rtt_var=3215&sent=71&recv=39&lost=0&retrans=0&sent_bytes=51370&recv_bytes=3298&delivery_rate=12840301&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=48000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=207&x=80"

recordedthereby.com/sfp.js

185.196.197.71

200 OK

85 kB

URL GET
recordedthereby.com/sfp.js
IP
185.196.197.71:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
Fingerprint43:76:D8:56:43:66:8A:49:51:DC:E6:8E:5A:E9:35:93:29:07:37:C1
ValidityMon, 05 May 2025 21:20:39 GMT - Sun, 03 Aug 2025 21:20:38 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85380 bytes)
Hash
108625937affa4b38bb17cea65510d72
2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee
c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 02 Jun 2025 02:35:46 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 28255
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9a41a29d66946ae6ea2207f4e537e820
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=

104.18.25.98

200 OK

1.8 kB

URL GET
youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type
JSON text data
Size
1.8 kB (1845 bytes)
Hash
7de6a9d3ee0a14a0c18ba2495912011b
d9bbe3d83b40e4fdbbdefb0776b776295978dc99
ff4d170e1873c9eedacb55805ac47d81e4106babe56c73b3ade0208cc777e811

HTTP Headers

GET /script/push.php?r=9502494&ipp=1&mads=2&position=top&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
server: cloudflare
cf-ray: 94938f33885e712b-OSL
X-Firefox-Spdy: h2

i.guardstorage.net/previews/X6eL2157M8veBErw48Ko.preview.vtt

104.21.80.1

200 OK

8.8 kB

URL GET
i.guardstorage.net/previews/X6eL2157M8veBErw48Ko.preview.vtt
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjecti.guardstorage.net
FingerprintB1:13:CA:4F:6B:63:3D:8A:24:22:B0:71:72:36:13:0E:B0:F6:3F:04
ValiditySun, 06 Apr 2025 03:13:13 GMT - Sat, 05 Jul 2025 03:13:12 GMT

File type
WebVTT subtitles, ASCII text
Size
8.8 kB (8798 bytes)
Hash
13059d403a125558447df4b01adcd28b
2fd5e545a7f1a9fd13ab1cc34b7cd4e9cc16b10a
64880cdb33a76d04b492d688430da53811e567cc8a593a00bdd8a2e3972f5172

HTTP Headers

GET /previews/X6eL2157M8veBErw48Ko.preview.vtt HTTP/1.1
Host: i.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/octet-stream
content-length: 8798
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Sun, 01 Jun 2025 03:31:44 GMT
etag: "683bc9a0-225e"
accept-ranges: bytes
access-control-allow-origin: *
x-server: cdn2
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=mCOtoKZp7yKN0N84d2QmPqdTKUs9b2agOHdT8w2bQuRKCdlbvHmI1kOiYIOG7vbB0V3rKtIHr8ChzPCAprJSn1JjDKeWFoRaedW4KB1Rre0%3D"}]}
cf-ray: 94938f347dcf56a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

youradexchange.com/script/suurl5.php?r=9830554&cbur=0.3953436241920423&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831747349&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2&pblcz=9502494

104.18.25.98

200 OK

999 B

URL GET
youradexchange.com/script/suurl5.php?r=9830554&cbur=0.3953436241920423&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831747349&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2&pblcz=9502494
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type
JSON text data
Size
999 B (999 bytes)
Hash
8d40dce480e593f5b19c027ef8872d55
b49cea8a95d3e688dfaed2bd8f3438c3f8d4c805
78a7f1737dfcf8c8e5989faedfa7fc6cfcbddafeab3ec6490d9b245f55f72294

HTTP Headers

GET /script/suurl5.php?r=9830554&cbur=0.3953436241920423&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=GAS-524-javgg.net.mp4&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1748831747349&srs=b508e5d01130ae4b3b893bbf823d61e3&atv=61.2&pblcz=9502494 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
server: cloudflare
cf-ray: 94938f3508e2712b-OSL
X-Firefox-Spdy: h2

i.guardstorage.net/previews/X6eL2157M8veBErw48Ko.preview.jpg

104.21.80.1

200 OK

714 kB

URL GET
i.guardstorage.net/previews/X6eL2157M8veBErw48Ko.preview.jpg
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjecti.guardstorage.net
FingerprintB1:13:CA:4F:6B:63:3D:8A:24:22:B0:71:72:36:13:0E:B0:F6:3F:04
ValiditySun, 06 Apr 2025 03:13:13 GMT - Sat, 05 Jul 2025 03:13:12 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 765x4080, components 3
Size
714 kB (714373 bytes)
Hash
4b0bba793cfb64ff89153f0d6bba4f95
be1444abf134660933b595b29c90170c79ed77f9
3b65d150523680eb2be2c5b3a94e0b55f18917082f141d7bff8994335b71b635

HTTP Headers

GET /previews/X6eL2157M8veBErw48Ko.preview.jpg HTTP/1.1
Host: i.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: image/jpeg
content-length: 714373
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
last-modified: Sun, 01 Jun 2025 03:31:43 GMT
etag: "683bc99f-ae685"
accept-ranges: bytes
access-control-allow-origin: *
x-server: cdn2
cache-control: max-age=14400
cf-cache-status: MISS
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UFOuIU%2FcDYbR7eYS5BUxRyuJCDbCrGLcMkr8Du3zP7XHLnjg3wCAm8f5RLBlBWqLeI4RC7DQilSaLqVGCit3EFOcl3BQ5aVfzDBxoUI9Zq8%3D"}]}
cf-ray: 94938f361ec7712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

javguard.club/e/eL2157M8veBErw4

104.21.48.1

200 OK

69 kB

URL User Request GET
javguard.club/e/eL2157M8veBErw4
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (48408)
Size
69 kB (68668 bytes)
Hash
7d0223913e1a775258f92b92764b90ba
d2de06c74243697a8001d1b75e3d77109dd646a1
54b9ac7897857e37916bb5af80966b82833f019bebf5602a7534fa1030b7d4c0

HTTP Headers

GET /e/eL2157M8veBErw4 HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:45 GMT
content-type: text/html; charset=utf-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ySXGxqzA7VwNfMPtzmNY%2FVTlJ7qmxCu6S5XSnbdqcWmO9932hJU2Eq3FF1yJUtdR7tQ5opcjapjDIZln6ZFLgLdwPjWfy3o1ovkI"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 94938f285c551c02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f2-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745

57.128.74.112

200 OK

79 kB

URL GET
c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f2-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745
IP
57.128.74.112:443
ASN
#16276 OVH SAS

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
M3U playlist, ASCII text
Size
79 kB (78908 bytes)
Hash
876341be530c5fe708da1ac597047622
03da63501772d62d47359894dbe7c30276603d6e
5f34e4298a496d2f392bd5590e6f7e1e9b5bfa212a14e8f35c4f82e593cfc5cb

HTTP Headers

GET /hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/index-f2-v1-a1.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745 HTTP/1.1
Host: c66afocw1c.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Mon, 02 Jun 2025 02:35:48 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Mon, 02 Jun 2025 02:35:48 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=

104.18.25.98

204 No Content

0 B

URL GET
youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Mon, 02 Jun 2025 02:35:52 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 94938f543ca8712b-OSL
X-Firefox-Spdy: h2

104.18.25.98

204 No Content

0 B

URL GET
youradexchange.com/script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref=
IP
104.18.25.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint5D:6F:35:ED:36:A9:D9:F7:69:BE:71:FD:6E:3A:C4:28:3D:88:9D:58
ValiditySun, 01 Jun 2025 20:52:12 GMT - Sat, 30 Aug 2025 21:51:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/push.php?r=9502494&ipp=1&mads=2&position=top&rbd=1&srs=b508e5d01130ae4b3b893bbf823d61e3&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&atv=61.2&cbref= HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://javguard.club/
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Mon, 02 Jun 2025 02:36:02 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 94938f93ef5a712b-OSL
X-Firefox-Spdy: h2

acscdn.com/script/inpagepush.js

104.18.17.201

200 OK

87 kB

URL GET
acscdn.com/script/inpagepush.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (33238), with NEL line terminators
Size
87 kB (86793 bytes)
Hash
db81ec77ad3ba75e116ec4afd8156fd3
527835ef387f00ef4acc48a0413b9940066d45a5
f31c54ba12af7435c39dc5bd6f521883192e1bd9ec76a35c25d74a8e8dd46226

HTTP Headers

GET /script/inpagepush.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript
x-guploader-uploadid: ABgVH89TsPHjYNqHcRgADxU1ims5hMe1NLX7y6drcZMOzOCSe2dMDpP0JEBTmp9-bibvO4Yq
x-goog-generation: 1748593948598682
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 86793
x-goog-hash: crc32c=ylsyVg==, md5=24Hsd607p14RbsSv2BVv0w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 02 Jun 2025 03:35:46 GMT
cache-control: public, max-age=3600
last-modified: Fri, 30 May 2025 08:32:28 GMT
etag: W/"db81ec77ad3ba75e116ec4afd8156fd3"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1594
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 94938f308f250b65-OSL
content-encoding: gzip
server-timing: cfExtPri

javguard.club/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db

104.21.48.1

200 OK

106 kB

URL GET
javguard.club/assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size
106 kB (105577 bytes)
Hash
2600e0252870a20882319cf68fbe5260
27edc7b0bcfd4145510e3175a749f26de1f19048
07873ddc8c12db088b3bef80b0979ab082cdd92af545c2a1608574bf98f737e9

HTTP Headers

GET /assets/js/main.js?id=a2b24acc6c8d37de23098caa2f7907db HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BT9iWcNqXUcv11jdExnUAtP8ae52UBqxQH%2FUsggkgbjW8O1etcVZTIvCLlvyNJncmtGrU2K6uoNNJfW9D7Y%2Bfp4SeQdfha32xst2jsNJeEvaeJNo812mjBhvtWUJqiyj"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 30 Dec 2024 21:18:05 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
age: 420605
cf-cache-status: HIT
cf-ray: 94938f2cbcd17128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5270&min_rtt=1281&rtt_var=3334&sent=32&recv=36&lost=0&retrans=0&sent_bytes=4737&recv_bytes=3163&delivery_rate=452467&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=196&x=80"

shotgunchancecruel.com/pixel/purst?dl=0&th=0&sc=0&rs=1312&rd=1312&fd=591&bv=25.5.2579&tmpl=70

192.243.61.227

200 OK

0 B

URL GET
shotgunchancecruel.com/pixel/purst?dl=0&th=0&sc=0&rs=1312&rd=1312&fd=591&bv=25.5.2579&tmpl=70
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjectshotgunchancecruel.com
Fingerprint57:F1:91:12:31:BB:80:19:FF:41:09:D0:8D:7B:40:3F:77:DF:B2:B3
ValiditySun, 20 Apr 2025 02:16:11 GMT - Sat, 19 Jul 2025 02:16:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1312&rd=1312&fd=591&bv=25.5.2579&tmpl=70 HTTP/1.1
Host: shotgunchancecruel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 02 Jun 2025 02:35:47 GMT
Content-Length: 0
Connection: keep-alive
Host: shotgunchancecruel.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

junkyadexchange.com/script/i.php?t=1&c=23952152&stamat=m%257C%252C%252CQhK29jantGU3B0-GH0dEdHP3xP.220%252CDsSE4Ib4aBcGYnp4ffwg1dzYgaUQvjnz1IqJPq8KVDZKAiGxVFE4U77-slThCwEWKNVuondn2gZ71EnxiuGGHLMqrlWnXamC1vh9cQTiP7IQ5Id3ts-JUk2A6chqI_SeCeN0D4wW7R6jiyW-2C63D6zvHxVaxOL1JHEJAthkiT8MEdcAxPlB9H7ff2C6by4B_1U-NF-VXL4alLTm9XsyDqeTBRh9K8ibkU21DFWTBVX5YuZfQ8UXP3RUve9vkB_Jtaw9asCAsoVfgWmElgarcljXT0GYBk374VtlA23EKniz5jnW6RJ7SqLEMpbUViy_EODkSh36EmzwqLHiJwzegkKgN6_uDmcRKWAedm1W5t9lsT_fvOTjCn5pkr6Ve89CfQvhExkaLYOoQRV82msq7kp2DCAIvj3IaJV9mzkiPR7uqrkSgI5bntfn3o4HqafdzMZt4CKZESRfZ1r-Zd0HAysIX5aYkWWDU4BjB8SLkqUyS3T24Pr-I7Di8gHGuHRFFPKn0__1EvrADqGp0o70fwAnDoZA1i3DEmw1Akh72r850J4OfsbRacjR2ty1gt5DzbW_JPRnLGYSwGjHcya4upCCrGrETppYq4JmS80Ff_8%252C&utsid=b508e5d01130ae4b3b893bbf823d61e3&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=

104.21.31.39

204 No Content

0 B

URL GET
junkyadexchange.com/script/i.php?t=1&c=23952152&stamat=m%257C%252C%252CQhK29jantGU3B0-GH0dEdHP3xP.220%252CDsSE4Ib4aBcGYnp4ffwg1dzYgaUQvjnz1IqJPq8KVDZKAiGxVFE4U77-slThCwEWKNVuondn2gZ71EnxiuGGHLMqrlWnXamC1vh9cQTiP7IQ5Id3ts-JUk2A6chqI_SeCeN0D4wW7R6jiyW-2C63D6zvHxVaxOL1JHEJAthkiT8MEdcAxPlB9H7ff2C6by4B_1U-NF-VXL4alLTm9XsyDqeTBRh9K8ibkU21DFWTBVX5YuZfQ8UXP3RUve9vkB_Jtaw9asCAsoVfgWmElgarcljXT0GYBk374VtlA23EKniz5jnW6RJ7SqLEMpbUViy_EODkSh36EmzwqLHiJwzegkKgN6_uDmcRKWAedm1W5t9lsT_fvOTjCn5pkr6Ve89CfQvhExkaLYOoQRV82msq7kp2DCAIvj3IaJV9mzkiPR7uqrkSgI5bntfn3o4HqafdzMZt4CKZESRfZ1r-Zd0HAysIX5aYkWWDU4BjB8SLkqUyS3T24Pr-I7Di8gHGuHRFFPKn0__1EvrADqGp0o70fwAnDoZA1i3DEmw1Akh72r850J4OfsbRacjR2ty1gt5DzbW_JPRnLGYSwGjHcya4upCCrGrETppYq4JmS80Ff_8%252C&utsid=b508e5d01130ae4b3b893bbf823d61e3&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref=
IP
104.21.31.39:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjunkyadexchange.com
FingerprintD0:14:AC:FF:38:6A:CF:08:E1:43:73:F4:69:73:98:4E:7E:3E:5B:D6
ValidityTue, 20 May 2025 12:26:21 GMT - Mon, 18 Aug 2025 13:24:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/i.php?t=1&c=23952152&stamat=m%257C%252C%252CQhK29jantGU3B0-GH0dEdHP3xP.220%252CDsSE4Ib4aBcGYnp4ffwg1dzYgaUQvjnz1IqJPq8KVDZKAiGxVFE4U77-slThCwEWKNVuondn2gZ71EnxiuGGHLMqrlWnXamC1vh9cQTiP7IQ5Id3ts-JUk2A6chqI_SeCeN0D4wW7R6jiyW-2C63D6zvHxVaxOL1JHEJAthkiT8MEdcAxPlB9H7ff2C6by4B_1U-NF-VXL4alLTm9XsyDqeTBRh9K8ibkU21DFWTBVX5YuZfQ8UXP3RUve9vkB_Jtaw9asCAsoVfgWmElgarcljXT0GYBk374VtlA23EKniz5jnW6RJ7SqLEMpbUViy_EODkSh36EmzwqLHiJwzegkKgN6_uDmcRKWAedm1W5t9lsT_fvOTjCn5pkr6Ve89CfQvhExkaLYOoQRV82msq7kp2DCAIvj3IaJV9mzkiPR7uqrkSgI5bntfn3o4HqafdzMZt4CKZESRfZ1r-Zd0HAysIX5aYkWWDU4BjB8SLkqUyS3T24Pr-I7Di8gHGuHRFFPKn0__1EvrADqGp0o70fwAnDoZA1i3DEmw1Akh72r850J4OfsbRacjR2ty1gt5DzbW_JPRnLGYSwGjHcya4upCCrGrETppYq4JmS80Ff_8%252C&utsid=b508e5d01130ae4b3b893bbf823d61e3&cbpage=https%3A%2F%2Fjavguard.club%2Fe%2FeL2157M8veBErw4&cbref= HTTP/1.1
Host: junkyadexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Mon, 02 Jun 2025 02:35:47 GMT
server: cloudflare
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ujJEGoIKC1C6mQUhGTq0amnWqR7qIubNMjcqntcR46riZPdh6Cq%2FUB0m3i0rJgw3xpWtJ09Dp1p5hZ%2BBR76UyV8sq49Llwm6RJY4IV0Qu2EJ"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 94938f35698ab505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=abfe9973-f49d-4907-81d4-13c4f828b86c&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=f2779c2b84f5bc3a945716675a808305&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2

192.243.59.12

200 OK

0 B

URL GET
unseenreport.com/pxf.gif?uuid=abfe9973-f49d-4907-81d4-13c4f828b86c&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=f2779c2b84f5bc3a945716675a808305&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint70:62:DC:6C:0A:F4:AA:56:4E:74:DC:EF:DA:CC:60:5A:C4:34:CE:F2
ValiditySat, 17 May 2025 22:34:21 GMT - Fri, 15 Aug 2025 22:34:20 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=abfe9973-f49d-4907-81d4-13c4f828b86c&eb=56a3745424804a23b12899170f9076de&te=9c9b2bc1fcb866fe34b4078d4dc2b749&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0&dev=e&res=14.3095&b_frame=0&pk=f2779c2b84f5bc3a945716675a808305&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 02 Jun 2025 02:35:48 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 404eb2ef6b408906f812f666bd866c7c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

acscdn.com/script/aclib.js

104.18.17.201

200 OK

143 kB

URL GET
acscdn.com/script/aclib.js
IP
104.18.17.201:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectacscdn.com
FingerprintE8:04:28:CD:40:56:EF:C8:19:07:48:1D:8F:83:82:58:38:D8:61:A1
ValidityTue, 13 May 2025 15:22:09 GMT - Mon, 11 Aug 2025 16:21:52 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators
Size
143 kB (143001 bytes)
Hash
591e62a3b8d6c575241c8e46ff467a5f
71b3bdc87deb2844ed8c833d7742e92481a46418
0ffb493ec054f372b8e53cc61d6874dc90634c3bbeced49ade0fab97ad0da21e

HTTP Headers

GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript
x-guploader-uploadid: ABgVH8-rAY04q1DYO9omRQ5jw3HYdf_Fjsum1PMJ2vtVelAv5hWdpVgvyRSha7c15M7U2H4Ud6EN4Mc
x-goog-generation: 1748593779543304
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 143001
x-goog-hash: crc32c=fQVbnA==, md5=WR5io7jWxXUkHI5G/0Z6Xw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Mon, 02 Jun 2025 03:35:46 GMT
cache-control: public, max-age=3600
last-modified: Fri, 30 May 2025 08:29:39 GMT
etag: W/"591e62a3b8d6c575241c8e46ff467a5f"
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2850
vary: Accept-Encoding
server: cloudflare
cf-ray: 94938f2d0edd7130-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

pubtrky.com/ut/hb.php?cb=0.5689590992949857&v=1

172.67.188.110

204 No Content

0 B

URL POST
pubtrky.com/ut/hb.php?cb=0.5689590992949857&v=1
IP
172.67.188.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectpubtrky.com
FingerprintD1:DF:C8:94:03:32:97:45:6F:1A:E3:AD:EE:EC:22:B8:E7:5C:6F:27
ValidityMon, 05 May 2025 10:34:21 GMT - Sun, 03 Aug 2025 11:31:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /ut/hb.php?cb=0.5689590992949857&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 843
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 02 Jun 2025 02:35:46 GMT
server: cloudflare
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=1R%2BpKeEmq8Iwio9k%2Faxz8Ft59nOtKZKaGTQ7NeLYPj73fsKpbnT8V1ZlR88Kimg5Zf3Nm6hkcOax4m7mpzpSFIAuoyaIt4YVoQ%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
cf-ray: 94938f319bf8b4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/master.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745

57.128.74.112

200 OK

1.8 kB

URL GET
c66afocw1c.guardstorage.net/hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/master.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745
IP
57.128.74.112:443
ASN
#16276 OVH SAS

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerSectigo Limited
Subject*.guardstorage.net
FingerprintE1:0D:A0:4E:AC:1E:00:C1:5A:A6:31:64:0A:CE:0C:1A:C2:6A:2E:0B
ValiditySat, 04 Jan 2025 00:00:00 GMT - Wed, 04 Feb 2026 23:59:59 GMT

File type
M3U playlist, ASCII text, with very long lines (429)
Size
1.8 kB (1780 bytes)
Hash
4fd0f53e75d835e03bd7d09ea0b8d72c
dffd5282c12768f5e3bd9c3ad370bf6b99fa5838
ef2de22d24386a9746d6bf4e6378a6b3de041dbb9b8093081b3d4554d8278894

HTTP Headers

GET /hls_3/4Iku_mGbxNXhbjs4NnlciEqwT101dI3WqzaBa1ejRSTPZSdaDbetqe-Ws3sUraxsRrO6OzRocLAToyAKtCRBMyvmi1KIOsMForpM2HIOUr29VcC3_RfvQePUY1Hmv-Pn2pWoIG6kqejpISql-xjF5tjhG98n_I5D_ouIwvox5EyEuvHSDtpOErudxmi57SwcTmS_35j5T8qZinkUFIBY9g/master.m3u8?sig=BL9IS6N8sOoO2ixclUOxww&expires=1748840745 HTTP/1.1
Host: c66afocw1c.guardstorage.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty/1.21.4.3
date: Mon, 02 Jun 2025 02:35:47 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Mon, 02 Jun 2025 02:35:47 GMT
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

experttrafficcounter.com/stats

52.58.57.192

200 OK

40 B

URL GET
experttrafficcounter.com/stats
IP
52.58.57.192:443
ASN
#16509 AMAZON-02

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerAmazon
Subjectexperttrafficcounter.com
FingerprintCE:93:F6:82:20:C2:20:51:6E:53:85:EC:03:9C:48:F0:13:0B:67:D7
ValidityTue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
6c84d4f9201f2d5d916fa6d609ede553
3c514d117bfa9d79629134076820ed63b830b939
b0c572d3a156d7537c7efbc1674404d41fc52c16589ae460303079ac4dfc61a8

HTTP Headers

GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://javguard.club
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://javguard.club
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=abfe9973-f49d-4907-81d4-13c4f828b86c:1:1; expires=Thu, 31 May 2035 02:35:46 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

javguard.club/assets/jwplayer/8.36.4/jwpsrv.js

104.21.48.1

200 OK

67 kB

URL GET
javguard.club/assets/jwplayer/8.36.4/jwpsrv.js
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
67 kB (67262 bytes)
Hash
31401fbc0ab6b12a6501bd594be3a8f3
f83a4ddd2d63bb4466fd6af488c54a262228e34a
9a14bfe6376ee1c040735882769d97f12b8eda3620f214e70c4053166d64fc9a

HTTP Headers

GET /assets/jwplayer/8.36.4/jwpsrv.js HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Cookie: pp_show_on_f2779c2b84f5bc3a945716675a808305=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bbc8niTUAJVd40rezoANSEYqHQHZDtuNEf8MiO%2BS2ZP6cEAv3lxCUL%2F2qxWZIIoll53Vf7jbQpv%2F%2FJCiM%2Fl4lqd3%2FFLr%2FdoaIhZ6T0t1f7fWdDrXcz3cd623dUez79Ra"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:34 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
age: 289901
cf-cache-status: HIT
cf-ray: 94938f30dcd67128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3517&min_rtt=1061&rtt_var=2839&sent=119&recv=42&lost=0&retrans=0&sent_bytes=106374&recv_bytes=3700&delivery_rate=16290486&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=851&x=80"

heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js

192.243.61.225

200 OK

104 kB

URL GET
heardaccumulatebeans.com/f2/77/9c/f2779c2b84f5bc3a945716675a808305.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerLet's Encrypt
Subjectheardaccumulatebeans.com
Fingerprint60:A4:85:FE:ED:FB:2D:49:D8:76:50:E9:74:C4:36:B5:68:DB:A1:50
ValidityTue, 20 May 2025 21:11:01 GMT - Mon, 18 Aug 2025 21:11:00 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
104 kB (104434 bytes)
Hash
785a918ec0b48a089d8cfc49b2091875
bc91405d859d18b51773510b697c83915543d7a1
8a7822e71258943334dcca2e1a37b8d8a71a271f55410e0e4ef06181d46971d6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f2/77/9c/f2779c2b84f5bc3a945716675a808305.js HTTP/1.1
Host: heardaccumulatebeans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Mon, 02 Jun 2025 02:35:46 GMT
Content-Type: application/javascript
Content-Length: 32742
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: heardaccumulatebeans.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f6a622c4ba5d8f12d670f35fe4ab7739
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

javguard.club/assets/jwplayer/8.36.4/provider.hlsjs.js

104.21.48.1

200 OK

461 kB

URL GET
javguard.club/assets/jwplayer/8.36.4/provider.hlsjs.js
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
461 kB (461172 bytes)
Hash
53f377cf2bb36a2da25d07fa1b4b2b84
35ab3e3f9b2cb94860fd594fa2310187f8115d82
2ba7e35f6c4c9654a8a80a8476509c69526c1bc52b65cea7e98558d600f2e231

HTTP Headers

GET /assets/jwplayer/8.36.4/provider.hlsjs.js HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Cookie: pp_show_on_f2779c2b84f5bc3a945716675a808305=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HexHombRcpRps9BRltiZrkYdSn%2ByAGi8yUD6DbBK5j57k%2FHaIZEPloh4HfizbZV8YQnBniL5n7ovp58AwmoN0cu%2BpYSmsY%2BIKFUbNfN3rI%2BSUcrllvpIGOtDRPwm21xn"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Tue, 18 Feb 2025 16:41:39 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 420606
cf-ray: 94938f313cd87128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3438&min_rtt=1061&rtt_var=2260&sent=214&recv=46&lost=0&retrans=0&sent_bytes=216687&recv_bytes=4428&delivery_rate=16290486&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=909&x=80"

javguard.club/assets/jwplayer/8.36.4/jwplayer.core.controls.js

104.21.48.1

200 OK

332 kB

URL GET
javguard.club/assets/jwplayer/8.36.4/jwplayer.core.controls.js
IP
104.21.48.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://javguard.club/e/eL2157M8veBErw4
Certificate
IssuerGoogle Trust Services
Subjectjavguard.club
Fingerprint6B:14:27:5B:1F:B5:E5:81:DE:7C:E1:D5:83:BC:74:78:D3:FB:A0:65
ValidityWed, 28 May 2025 00:45:56 GMT - Tue, 26 Aug 2025 01:44:31 GMT

File type
JavaScript source, ASCII text, with very long lines (65143)
Size
332 kB (331835 bytes)
Hash
aa76c7bf8a702f02c4ec0fc973d698d6
cd8bd98969dd7167c8d99a5abcec4a07df4e63a2
7220be9e6db902dabf6a18a260e3a1d14a877aa9aeb113380dd3711c908eba0f

HTTP Headers

GET /assets/jwplayer/8.36.4/jwplayer.core.controls.js HTTP/1.1
Host: javguard.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://javguard.club/e/eL2157M8veBErw4
Cookie: pp_show_on_f2779c2b84f5bc3a945716675a808305=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 02 Jun 2025 02:35:46 GMT
content-type: text/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=31yAcmWFgyxEjWb6h%2BP%2BmucOeMU0o3BuhNMt0wbO%2FeDx1Hsv4exwnELrHG5gvs%2BplWylLkEb3e5i9WREDI9kQLoEYZhPtqXdyd76ANdRge83gfJAdw968zh2lYP%2FpITu"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
last-modified: Mon, 17 Feb 2025 18:08:37 GMT
x-proxy-cache: HIT
cache-control: public, max-age=31536000
content-encoding: gzip
cf-cache-status: HIT
age: 420606
cf-ray: 94938f30fcd77128-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3282&min_rtt=1061&rtt_var=2599&sent=138&recv=44&lost=0&retrans=0&sent_bytes=127233&recv_bytes=4066&delivery_rate=16290486&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=96000&unsent_bytes=0&cid=c9c2e145cb21d61e&ts=872&x=80"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML