| detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=[%22redirect%22]&refer=https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8:1:1/ |  192.243.59.20 | 307 Temporary Redirect | 0 B |
URL User Request GET HTTP/1.1detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=[%22redirect%22]&refer=https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8:1:1/ IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectdetailedshuffleshadow.com Fingerprint8A:70:E6:97:1E:EE:EC:94:71:C4:7F:BA:63:78:4B:77:34:C3:D6:53 ValidityTue, 26 Mar 2024 12:24:11 GMT - Mon, 24 Jun 2024 12:24:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=[%22redirect%22]&refer=https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8:1:1/ HTTP/1.1
Host: detailedshuffleshadow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 29 Mar 2024 06:17:16 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn
Access-Control-Allow-Origin: https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn
Access-Control-Allow-Credentials: true
Location: https://detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F
Set-Cookie: u_pl=17687299; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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_dXJsPWFIUjBjSE02THk5dFpXZGhMbTU2TDJadmJHUmxjaTh3WVhSNVVXRkJXU00zU1RCb1RWOWhaRmh3Umswd1IzQjJSME5tT1dObiIsImFyIjpbXX19.UC0UocEhMvmQSoiI7M4uN4Tppq4-PoBZ8tiCDH61hTE; expires=Fri, 29 Mar 2024 06:18:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a3be55370ca2bd32a4bc383cfa6015e4
Strict-Transport-Security: max-age=0; includeSubdomains
|
| detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F | 192.243.59.20 | 200 OK | 2.0 kB |
URL User Request GET HTTP/1.1detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectdetailedshuffleshadow.com Fingerprint8A:70:E6:97:1E:EE:EC:94:71:C4:7F:BA:63:78:4B:77:34:C3:D6:53 ValidityTue, 26 Mar 2024 12:24:11 GMT - Mon, 24 Jun 2024 12:24:10 GMT
File typeJavaScript source, ASCII text, with very long lines (2538) Hash11733855eaa58774882d0acf7e60fca1 996bad2bf1d1fba1f8729f11c2663dc2b9c0dd7f e207f2088dc090a378f2a46729648972fedc05c421261e7cf23ad62969422bea
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F HTTP/1.1
Host: detailedshuffleshadow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=17687299; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzY4NzI5OSwiayI6IjY3YzNjZjdlNmY1YzQ0ZGE2YjM0NGQ1YTZjNzdiNjg0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODUwMzE4LCJwaWQiOjQyMzEwMiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyNSwicHQiOjQsInBrIjoicWpwMXpuMWg0IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2NvbW9ob3kuY29tL3ZpZXcvb3V0Lmh0bWw_dXJsPWFIUjBjSE02THk5dFpXZGhMbTU2TDJadmJHUmxjaTh3WVhSNVVXRkJXU00zU1RCb1RWOWhaRmh3Umswd1IzQjJSME5tT1dObiIsImFyIjpbXX19.UC0UocEhMvmQSoiI7M4uN4Tppq4-PoBZ8tiCDH61hTE
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 29 Mar 2024 06:17:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn
Access-Control-Allow-Origin: https://comohoy.com/view/out.html?url=aHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6872cb05-d76b-4068-82e4-5aaf26f186e8:1:1; expires=Fri, 05 Apr 2024 06:17:16 GMT; secure; SameSite=None
iprc1b478e16f421c32cfe44cac8d9b5cbdf=4471813; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
uncs=1; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
pdhtkv25=true; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
uncs25=1; expires=Sat, 30 Mar 2024 06:17:16 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d39acf760cdf400366b71642d1a2772e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
| detailedshuffleshadow.com/favicon.ico | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1detailedshuffleshadow.com/favicon.ico IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F CertificateIssuerLet's Encrypt Subjectdetailedshuffleshadow.com Fingerprint8A:70:E6:97:1E:EE:EC:94:71:C4:7F:BA:63:78:4B:77:34:C3:D6:53 ValidityTue, 26 Mar 2024 12:24:11 GMT - Mon, 24 Jun 2024 12:24:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: detailedshuffleshadow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F
Cookie: u_pl=17687299; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzY4NzI5OSwiayI6IjY3YzNjZjdlNmY1YzQ0ZGE2YjM0NGQ1YTZjNzdiNjg0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODUwMzE4LCJwaWQiOjQyMzEwMiwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyNSwicHQiOjQsInBrIjoicWpwMXpuMWg0IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2NvbW9ob3kuY29tL3ZpZXcvb3V0Lmh0bWw_dXJsPWFIUjBjSE02THk5dFpXZGhMbTU2TDJadmJHUmxjaTh3WVhSNVVXRkJXU00zU1RCb1RWOWhaRmh3Umswd1IzQjJSME5tT1dObiIsImFyIjpbXX19.UC0UocEhMvmQSoiI7M4uN4Tppq4-PoBZ8tiCDH61hTE; uid_id2=6872cb05-d76b-4068-82e4-5aaf26f186e8:1:1; iprc1b478e16f421c32cfe44cac8d9b5cbdf=4471813; pdhtkv=true; uncs=1; pdhtkv25=true; uncs25=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 29 Mar 2024 06:17:16 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 84c07bb82a38048ab516384f199915f2
Strict-Transport-Security: max-age=0; includeSubdomains
|
| cdn.cloudimagesb.com/cti/e5/68/2e/e5682e495977abeb3e3739a45eb697bd/1711619329.mp4 | 45.133.44.9 | 200 OK | 33 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/e5/68/2e/e5682e495977abeb3e3739a45eb697bd/1711619329.mp4 IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://detailedshuffleshadow.com/watch.722504877350.js?dev=r&key=67c3cf7e6f5c44da6b344d5a6c77b684&kw=%5B%22redirect%22%5D&pst=1711693096&refer=https%3A%2F%2Fcomohoy.com%2Fview%2Fout.html%3Furl%3DaHR0cHM6Ly9tZWdhLm56L2ZvbGRlci8wYXR5UWFBWSM3STBoTV9hZFhwRk0wR3B2R0NmOWNn&res=14.31&rmtc=t&shu=d25c864247be1674469cd10b275bd0c2e22b90a0b75e94635530c79d6e1813700e487495702fd3ea214412265ffe26a1d558dbbba50ed5cff35e241d510d73ca9d51cef3b7cd646c195ec92a16b49f16e833076371d11a217802630ccf14e0&tz=-4&uuid=6872cb05-d76b-4068-82e4-5aaf26f186e8%3A1%3A1%2F CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Hashdd9d3f282a072a2f179f86e5658083af 7a3495703c62e360378044c05a570819ea71dcac 1e0ea11f6da52b7795c17c99b7f5af2c58581a787481934b05977c754ac183a2
GET /cti/e5/68/2e/e5682e495977abeb3e3739a45eb697bd/1711619329.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://detailedshuffleshadow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:17:16 GMT
content-type: video/mp4
content-length: 541978
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 09:48:57 GMT
etag: "66053d09-8451a"
expires: Sun, 31 Mar 2024 06:17:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|