Report - hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1

Report Overview

Visited public
2025-04-16 20:00:50
Tags
URL
hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Finishing URL
enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com#
IP / ASN
104.21.10.211
#13335 CLOUDFLARENET
Title
Click "Allow"

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2025-04-16	420 B	286 kB	151.101.130.137
avd-1.bestchainconnection.com	unknown	2024-03-06	2024-03-06	2025-04-13	760 B	50 kB	168.119.149.123
jy.satyrsretell.com	unknown	2025-02-21	2025-03-05	2025-03-27	429 B	1.5 kB	172.255.103.103
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-04-16	452 B	8.8 kB	151.101.65.229
pushtorm.net	unknown	2022-04-06	2022-04-08	2025-04-13	381 B	16 kB	142.132.255.57
hdplayerr.xyz	unknown	2024-08-24	2024-08-24	2025-03-05	1.6 kB	1.4 MB	188.114.97.1
listenedarsonproceedings.com	unknown	2025-02-28	2025-04-16	2025-04-16	914 B	52 kB	192.243.61.225
enhancechain-flow.com	unknown	2025-02-21	2025-04-14	2025-04-14	617 B	50 kB	104.21.32.1
aparttent.com	unknown	2024-05-28	2024-10-25	2025-04-10	408 B	2.0 kB	104.21.16.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-16	medium	listenedarsonproceedings.com	Sinkholed
2025-04-16	medium	listenedarsonproceedings.com	Sinkholed
2025-04-16	medium	satyrsretell.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (35)

	URL	From	Size	First Seen	Last Seen
	about:blank	ScriptElement	3.3 kB	2025-04-16	2025-04-16
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 55e1df4bf3e48766d5ad99e538c99e85 2a34b20e26b7b20a6bbe64809ebea1475e5ff4ac b5bb5c5537b40837555bdf0825b265202ae0b2f99b20e306b9c5b3724381a69d Loading...

	nannyirrationalacquainted.com/api/users?token=L3dhdGNoLjQ3Njg1Nzk2OTAwOD9kZXY9ZSZrZXk9OTk2OTI3YjM2NmI2NjE1N2E4OWUxYTk0M2IwMGY4NTUma3c9JTVCJTVEJnBzdD0xNzQ0ODMzNjkwJnJlZmVyPWh0dHBzJTNBJTJGJTJGaGRwbGF5ZXJyLnh5eiUyRnRvdHdhdGNoLnBocCUzRnZhbHVlJTNEYmJ0c3AxaHR0cHMlM0ElMkYlMkZoZHBsYXllcnIueHl6JTJGdG90d2F0Y2gucGhwJTNGdmFsdWUlM0RiYnRzcDEmcmVzPTE0LjMwOTUmcm10Yz10JnNodT1mMWY1ZjY0MjNmNjUzOTQzY2VhYTUxNDRlYzRhZjI5ODA1YmQ0NDhiYWE5MDdiZjIxYzA2YzMxNGI2MjQwZjYzMDE2NzhkOTk0ZjA5ZjEwNDZmYjIxZWI2ZjI5MjUxZDY0ZWVhMDQ0ZjFkMjI0MjgxMWJmNGYzOTM4YzJhZGY3NTIxNTA2YjMyYjUyNWNjMDU1NTFhYWRiMDIzN2FkYjA4MjQwZGE0NjEwOGJmMmMyZGQ5MzU5MCZ0ej0wJnBpaT0maW49JnV1aWQ9NzBkNWY2OTUtZWFmNS00N2I2LWEwYzktNTJkZmRhZDBmMzgwJTNBMyUzQTE	ScriptElement	29 B	2023-03-08	2025-05-06
Pretty URL nannyirrationalacquainted.com/api/users?token=L3dhdGNoLjQ3Njg1Nzk2OTAwOD9kZXY9ZSZrZXk9OTk2OTI3YjM2NmI2NjE1N2E4OWUxYTk0M2IwMGY4NTUma3c9JTVCJTVEJnBzdD0xNzQ0ODMzNjkwJnJlZmVyPWh0dHBzJTNBJTJGJTJGaGRwbGF5ZXJyLnh5eiUyRnRvdHdhdGNoLnBocCUzRnZhbHVlJTNEYmJ0c3AxaHR0cHMlM0ElMkYlMkZoZHBsYXllcnIueHl6JTJGdG90d2F0Y2gucGhwJTNGdmFsdWUlM0RiYnRzcDEmcmVzPTE0LjMwOTUmcm10Yz10JnNodT1mMWY1ZjY0MjNmNjUzOTQzY2VhYTUxNDRlYzRhZjI5ODA1YmQ0NDhiYWE5MDdiZjIxYzA2YzMxNGI2MjQwZjYzMDE2NzhkOTk0ZjA5ZjEwNDZmYjIxZWI2ZjI5MjUxZDY0ZWVhMDQ0ZjFkMjI0MjgxMWJmNGYzOTM4YzJhZGY3NTIxNTA2YjMyYjUyNWNjMDU1NTFhYWRiMDIzN2FkYjA4MjQwZGE0NjEwOGJmMmMyZGQ5MzU5MCZ0ej0wJnBpaT0maW49JnV1aWQ9NzBkNWY2OTUtZWFmNS00N2I2LWEwYzktNTJkZmRhZDBmMzgwJTNBMyUzQTE IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:23 Last Seen2025-05-06 08:36 Times Seen675 Hash 127ac839a41bdd9ab92ad47b7411cdaf c2f81b12778c909f055c3967caa638b643c4916a b2ebc210c5c379879d07a4a9e046a4ea803d56dcc91d533db817ec272cbcfaf4 Loading...

	enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com	ScriptElement	14 kB	2024-12-26	2025-04-25
Pretty URL enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com IP 104.21.32.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-26 19:38 Last Seen2025-04-25 05:18 Times Seen79 Hash b39da71adf35aba237f3b11559a0ddaa 24d6d81e16695ec9c8db4e396972cf008ba7ea1a d7b4c6344ce78e9ab8c2f05de56a05cdb1b9ed505ec998a3a5e74bd1de0215cd Loading...

	aparttent.com/footy.php?player=desktop&live=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	161 B	2025-04-07	2025-05-23
Pretty URL aparttent.com/footy.php?player=desktop&live=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-07 22:50 Last Seen2025-05-23 18:39 Times Seen16 Hash 394cb18c6d237357d97ed54760b53961 cd5cb994fcec5cc21dfba23968799885dcb1d136 efe7b20e748c56c27e7f064b335209c7188115086215d6fa62aabe3fc3e5d1f6 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	40 B	2025-02-22	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-02-22 02:56 Last Seen2025-04-16 20:00 Times Seen5 Hash 75cd7aecbe47abaed94126bafa3b13e4 941bc6f3443b27f33d42d4addc8d28fd3079f84f 44f07d3a0dd027ae7f9447b60663dd63f29970e5139e7a3819184de22044e606 Loading...

	about:blank	Eval	2.0 kB	2025-04-16	2025-04-16
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash cd362276ff6c277e903e72e5f472c93a 9847a8330d7d682889e646e7a46f097ab83e4efd 72c72ffb83538467ce985d822186206b1b91205fac15081d6a85ca771ec80691 Loading...

	enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com#	ScriptElement	14 kB	2024-12-26	2025-04-25
Pretty URL enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-26 19:38 Last Seen2025-04-25 05:18 Times Seen79 Hash b39da71adf35aba237f3b11559a0ddaa 24d6d81e16695ec9c8db4e396972cf008ba7ea1a d7b4c6344ce78e9ab8c2f05de56a05cdb1b9ed505ec998a3a5e74bd1de0215cd Loading...

	listenedarsonproceedings.com/98/ce/e9/98cee90e7abdb2497d590bee95507a68.js	ScriptElement	97 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/98/ce/e9/98cee90e7abdb2497d590bee95507a68.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 151d55a829e7a285c1a5d9c42a889637 b71c4551627736aca41fff1cff1e348645fdf1f5 3dce1dd4d9fe96925ef09781ebc9498dde7826d35ca862b63100b9378b7c7a9b Loading...

	aparttent.com/footy.php?player=desktop&live=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	873 B	2025-03-29	2025-05-23
Pretty URL aparttent.com/footy.php?player=desktop&live=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-29 17:52 Last Seen2025-05-23 18:39 Times Seen18 Hash 53bce2e2c731b2d9ece31848c4458f22 4074d4a7c985095c892c2dfa30063e46dbd66c8c c51408f00ddd00db560369e25d6695e158c4143cb2b4e1a517d7cac467ba7e68 Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2025-01-25	2025-05-24
Pretty URL recordedthereby.com/sfp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 09:25 Last Seen2025-05-24 04:39 Times Seen652 Hash 108625937affa4b38bb17cea65510d72 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0 Loading...

	invadedisheartentrail.com/api/users?token=L3dhdGNoLjE2MTQ1MDc3MTQ5MzQ_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	ScriptElement	2.0 kB	2025-04-16	2025-04-16
Pretty URL invadedisheartentrail.com/api/users?token=L3dhdGNoLjE2MTQ1MDc3MTQ5MzQ_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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 83ddd0a3e686066eee2f6888d3296016 fe2bfb4af6dcf2cb470be80054fd44c701c7f562 3496a2574c3fab0dd1f54d0ce51649d3b8d6071cb5d701f505eb98a4b8eed14f Loading...

	vbptgoyketwhv.global/script/ut.js?cb=1744833629528	ScriptElement	66 kB	2024-12-02	2025-04-23
Pretty URL vbptgoyketwhv.global/script/ut.js?cb=1744833629528 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-02 13:05 Last Seen2025-04-23 06:17 Times Seen1612 Hash 4afa2ac99f97331dc98263d49022a958 60bb7c7c45ff14e8df86ef9e0b9a7a55a7d2baca a4beaec54247a9a3cb97821ecdb68d39cacdcdcc62ae872c13c2cca2d3d88e32 Loading...

	code.jquery.com/jquery-3.7.1.js	ScriptElement	285 kB	2023-09-15	2025-05-23
Pretty URL code.jquery.com/jquery-3.7.1.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 16:51 Last Seen2025-05-23 09:02 Times Seen1968 Hash 12e87d2f3a4c8b347ab13a0764d420a3 4be715e11048c057fdf2ee0fbbfad4dbf3504c55 78a85aca2f0b110c29e0d2b137e09f0a1fb7a8e554b499f740d6744dc8962cfe Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	140 B	2024-09-01	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-01 17:28 Last Seen2025-04-16 20:00 Times Seen9 Hash 9ced0c57ae9cd47d6c46974a3f5cfe66 7af7753b7cbec72858067c23644d4325258e901b 0d3322733b61b84f1ae08d0e91abeb8c123d6a889ebca18a3240b93ee5bf75e0 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	139 B	2024-09-01	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-01 17:28 Last Seen2025-04-16 20:00 Times Seen9 Hash 381088a97002fd631511f91574be7063 9e77f8127ac8b907865070282565eaeeb93ab9cb 6487c6fdef797e6f0c7fdce4e06cfc7185e071bf500cff38cf150b773672a06d Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2025-01-25	2025-05-24
Pretty URL recordedthereby.com/sfp.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-25 09:25 Last Seen2025-05-24 04:39 Times Seen652 Hash 108625937affa4b38bb17cea65510d72 2c0f48e9efa3fb5554d1fa393b28d74d5339f9ee c84263fcf6b091998dd37f5f600b3bfea92ac1d31cbf9631bb87fa411124a9e0 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	94 B	2025-04-16	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash fa728eed623b2696afb100701b5892e6 1fa1598b9d25c97768cd92f0ac7c853646de8af8 bc1578f28e8190c5fd5575c8a73950e13313e2eefc56287dcdaf2eefd5170c82 Loading...

	listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js	ScriptElement	26 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 24b0cb1cc3de35bd85573842c5a7c168 6752e9eb3b1d1e6e1736a3b49032b799654d8ad5 01530f6b90e3b2bf4768c68c51e8abefe84cca652d8fe0cd095800af0d089862 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	140 B	2024-09-01	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-01 17:28 Last Seen2025-04-16 20:00 Times Seen9 Hash a19e86bdf7e1b9a22ea4e344e1fb89d5 d7f2e8389a48fbdcb88fb84db314fc73586bd3bf e4547bd6613b6307c62033829dd768b209eaf62d89bb9624c7cc302c2b0e5d66 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	140 B	2024-09-01	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-01 17:28 Last Seen2025-04-16 20:00 Times Seen9 Hash 9ced0c57ae9cd47d6c46974a3f5cfe66 7af7753b7cbec72858067c23644d4325258e901b 0d3322733b61b84f1ae08d0e91abeb8c123d6a889ebca18a3240b93ee5bf75e0 Loading...

	hdplayerr.xyz/aclib.js?v=11	ScriptElement	182 kB	2025-04-16	2025-04-16
Pretty URL hdplayerr.xyz/aclib.js?v=11 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 9beb27b3c002fa40eb81338ca71cf49c 1e7ecd1a3e949136dd5edb3c4aad65723a28a1ed 22a0f0a2a5a042ce74cee3bc3c550851f74bb0301e053b0c7ebfde686dbb34fe Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	424 B	2024-07-05	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-05 23:39 Last Seen2025-04-16 20:00 Times Seen10 Hash 7fbfb6c45c0eb14f38655456b5354e38 6382339e36df8a2162724f12a6e695fb67273b6e e4fb9d1a8e867b5737ef328d1eeadb8992b368e1e050b367ece3764115f27537 Loading...

	aparttent.com/footy.js	ScriptElement	1.2 kB	2024-12-22	2025-04-16
Pretty URL aparttent.com/footy.js IP 104.21.16.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-22 13:28 Last Seen2025-04-16 20:00 Times Seen3 Hash c5920a649ffeae5012c6ac9c11d0f254 89f297324a54098ca2bfbc5f3e63094065c6e422 e81f2835e8ec56afec3fedd7aa20b00f6cdc5ebaae78dd4c300cd887adb86b02 Loading...

	aparttent.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-05-24
Pretty URL aparttent.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-24 04:32 Times Seen69998 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js	ScriptElement	26 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 145770d15cdfcf9da21ecc249e25902f d2744f0beb6354d122d7ca7cb473ce18233b77e4 cac4a5890cbf6b8b241af31cf2d62da0c9a72d4d894f824b97a0c45b0f4020c4 Loading...

	nannyirrationalacquainted.com/api/users?token=L3dhdGNoLjQ3Njg1Nzk2OTAwOD9kZXY9ZSZrZXk9OTk2OTI3YjM2NmI2NjE1N2E4OWUxYTk0M2IwMGY4NTUma3c9JTVCJTVEJnBzdD0xNzQ0ODMzNjkwJnJlZmVyPWh0dHBzJTNBJTJGJTJGaGRwbGF5ZXJyLnh5eiUyRnRvdHdhdGNoLnBocCUzRnZhbHVlJTNEYmJ0c3AxaHR0cHMlM0ElMkYlMkZoZHBsYXllcnIueHl6JTJGdG90d2F0Y2gucGhwJTNGdmFsdWUlM0RiYnRzcDEmcmVzPTE0LjMwOTUmcm10Yz10JnNodT1mMWY1ZjY0MjNmNjUzOTQzY2VhYTUxNDRlYzRhZjI5ODA1YmQ0NDhiYWE5MDdiZjIxYzA2YzMxNGI2MjQwZjYzMDE2NzhkOTk0ZjA5ZjEwNDZmYjIxZWI2ZjI5MjUxZDY0ZWVhMDQ0ZjFkMjI0MjgxMWJmNGYzOTM4YzJhZGY3NTIxNTA2YjMyYjUyNWNjMDU1NTFhYWRiMDIzN2FkYjA4MjQwZGE0NjEwOGJmMmMyZGQ5MzU5MCZ0ej0wJnBpaT0maW49JnV1aWQ9NzBkNWY2OTUtZWFmNS00N2I2LWEwYzktNTJkZmRhZDBmMzgwJTNBMyUzQTE	ScriptElement	785 B	2025-04-16	2025-04-16
Pretty URL nannyirrationalacquainted.com/api/users?token=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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash e67c40702210542cdfb7bdbb64ec80c2 eb96d17023ac7002fd8add1fb278d7874c827d09 79207304d7d2356f1f489ea37c0b5d5b2d71e4647482f9846bba5e7c83f32000 Loading...

	hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1	ScriptElement	309 B	2024-07-05	2025-04-16
Pretty URL hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-05 23:39 Last Seen2025-04-16 20:00 Times Seen13 Hash 9df35ff1d92c7f0c81ffbf26159c8333 1ab684b648963687f11a8ae958d16757cfa8bd8a f56dbba700a22c68aec81347ebfbd8a14001e4510b9fe107dbb4686f1b67cd3f Loading...

	cdn.jsdelivr.net/gh/vli-platform/adb-analytics@29f6e17/v1.0.min.js	ScriptElement	8.0 kB	2025-04-16	2025-05-10
Pretty URL cdn.jsdelivr.net/gh/vli-platform/adb-analytics@29f6e17/v1.0.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-05-10 10:57 Times Seen2 Hash 1b66e4eec1fdff6d8653e72250aa31e1 7cea63f6b05fb2ea11e6571d1b64fbfdb5374d0c 16cf995fda75815bf2a9f10d01b8be5dedb59ca828f8c61144aed16ddb95c68d Loading...

	about:blank	ScriptElement	145 B	2024-09-01	2025-04-16
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-01 17:28 Last Seen2025-04-16 20:00 Times Seen5 Hash ec120cf4575448bee03c73d0b0a2c835 1e1fecdfb74eca52af461f0a1dca6ea0af0c370b 4a6e882aa7b6d95a746789299ed637ff70417a49263806a2830a774814794c71 Loading...

	pushtorm.net/subscription.js	ScriptElement	15 kB	2024-10-22	2025-04-25
Pretty URL pushtorm.net/subscription.js IP 142.132.255.57 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-22 13:31 Last Seen2025-04-25 05:18 Times Seen85 Hash 4ed509cc4dfda85c155722fee5df972d e3be86f68f71d1f97a7d30998c527a131ebbd678 3a4c430db4bb2260d2f2156228f7cab59f4c51b711e299c940b8fa3c4bb187cd Loading...

	listenedarsonproceedings.com/94/cd/81/94cd811561914e844d498488a1992981.js	ScriptElement	33 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/94/cd/81/94cd811561914e844d498488a1992981.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 98891476ae2cdb0bf631b559c0b33e13 709862130124e37fedeb23ea7272330dd6c86f36 74369a8154c82f32bb8fc9c7b2c0db56645cd53b8f5256b3703d1f837c0d2b33 Loading...

	listenedarsonproceedings.com/3e8fa9705202b1d92f7f9b8f9dee537b/invoke.js	ScriptElement	25 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/3e8fa9705202b1d92f7f9b8f9dee537b/invoke.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 8ff9e08495e7c1c591e441a3af82b627 f78a36e261c917a974d45b73c94191fdcb7e8e26 089b1ccc95ee081c7ac9c6a51cc07d8927f59259807ea966bc49e242a8523e08 Loading...

	jy.satyrsretell.com/tWNg6XBIYMmzrkL6/118368	ScriptElement	5 B	2023-03-07	2025-05-24
Pretty URL jy.satyrsretell.com/tWNg6XBIYMmzrkL6/118368 IP 172.255.103.103 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-24 03:49 Times Seen6070 Hash f7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a Loading...

	listenedarsonproceedings.com/7e3e69df31844ff786c27d8e3da1ac31/invoke.js	ScriptElement	26 kB	2025-04-16	2025-04-16
Pretty URL listenedarsonproceedings.com/7e3e69df31844ff786c27d8e3da1ac31/invoke.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash 7a90e94afc52aefcd719eb664d8e63b8 0a1e007bac8331ec71d6891650e6e4ac87729fed 9a2a829269b5432addf2c47e9360c88d432bc17e69495fac8c9b66b11d570651 Loading...

		Size	First Seen	Last Seen
	#1 Write - fbf002bb03bf28b4ef944944e59a3967	298 B	2025-04-16 20:00	2025-04-16 20:00
Pretty Observations First Seen2025-04-16 20:00 Last Seen2025-04-16 20:00 Times Seen1 Hash fbf002bb03bf28b4ef944944e59a3967 e0cd8960c3118651d135b8c33542386f9ad5e0d3 29e8d4b9fe46fbb3ab167546c8921b5cf093b6dfb9c10f6d5634c89f97f15378 Loading...

HTTP Transactions (12)

URL IP Response Size

cdn.jsdelivr.net/gh/vli-platform/adb-analytics@29f6e17/v1.0.min.js

151.101.65.229

200 OK

8.0 kB

URL GET
cdn.jsdelivr.net/gh/vli-platform/adb-analytics@29f6e17/v1.0.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (7690)
Size
8.0 kB (8030 bytes)
Hash
1b66e4eec1fdff6d8653e72250aa31e1
7cea63f6b05fb2ea11e6571d1b64fbfdb5374d0c
16cf995fda75815bf2a9f10d01b8be5dedb59ca828f8c61144aed16ddb95c68d

HTTP Headers

GET /gh/vli-platform/adb-analytics@29f6e17/v1.0.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 29f6e17
x-jsd-version-type: branch
etag: W/"1f5e-fOpj9rBfsuoR5lcdG2T7/bU3TQw"
content-encoding: br
accept-ranges: bytes
date: Wed, 16 Apr 2025 20:00:28 GMT
age: 5226
x-served-by: cache-fra-eddf8230054-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3521
X-Firefox-Spdy: h2

listenedarsonproceedings.com/3e8fa9705202b1d92f7f9b8f9dee537b/invoke.js

192.243.61.225

200 OK

25 kB

URL GET
listenedarsonproceedings.com/3e8fa9705202b1d92f7f9b8f9dee537b/invoke.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1

File type
JavaScript source, ASCII text, with very long lines (25203), with no line terminators
Size
25 kB (25203 bytes)
Hash
8ff9e08495e7c1c591e441a3af82b627
f78a36e261c917a974d45b73c94191fdcb7e8e26
089b1ccc95ee081c7ac9c6a51cc07d8927f59259807ea966bc49e242a8523e08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /3e8fa9705202b1d92f7f9b8f9dee537b/invoke.js HTTP/1.1
Host: listenedarsonproceedings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 16 Apr 2025 20:00:28 GMT
Content-Type: application/javascript
Content-Length: 10623
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: listenedarsonproceedings.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: edf73330be37c3131288ab10a23b83d7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

pushtorm.net/subscription.js

142.132.255.57

200 OK

15 kB

URL GET
pushtorm.net/subscription.js
IP
142.132.255.57:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com
Certificate
IssuerLet's Encrypt
Subjectpushtorm.net
Fingerprint34:0C:F7:D2:B7:7B:34:30:29:8D:DF:A1:37:3E:8C:C4:D0:33:0C:CD
ValidityMon, 07 Apr 2025 16:11:59 GMT - Sun, 06 Jul 2025 16:11:58 GMT

File type
JavaScript source, ASCII text
Size
15 kB (15295 bytes)
Hash
4ed509cc4dfda85c155722fee5df972d
e3be86f68f71d1f97a7d30998c527a131ebbd678
3a4c430db4bb2260d2f2156228f7cab59f4c51b711e299c940b8fa3c4bb187cd

HTTP Headers

GET /subscription.js HTTP/1.1
Host: pushtorm.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Wed, 16 Apr 2025 20:00:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: br
Last-Modified: Thu, 03 Oct 2024 16:16:16 GMT
Accept-Ranges: bytes
ETag: "1db15af929133bf"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000

hdplayerr.xyz/aclib.js?v=11

188.114.97.1

200 OK

182 kB

URL GET
hdplayerr.xyz/aclib.js?v=11
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerGoogle Trust Services
Subjecthdplayerr.xyz
Fingerprint0E:F3:78:85:67:51:55:E9:F8:70:B2:87:DC:8C:93:82:95:C7:86:C1
ValidityMon, 17 Feb 2025 15:42:24 GMT - Sun, 18 May 2025 16:40:55 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (46404), with NEL line terminators
Size
182 kB (181812 bytes)
Hash
9beb27b3c002fa40eb81338ca71cf49c
1e7ecd1a3e949136dd5edb3c4aad65723a28a1ed
22a0f0a2a5a042ce74cee3bc3c550851f74bb0301e053b0c7ebfde686dbb34fe

HTTP Headers

GET /aclib.js?v=11 HTTP/1.1
Host: hdplayerr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Apr 2025 20:00:28 GMT
content-type: application/javascript
server: cloudflare
last-modified: Wed, 16 Apr 2025 20:00:01 GMT
vary: Accept-Encoding
etag: W/"68000c41-2c634"
expires: Thu, 17 Apr 2025 08:00:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
priority: u=2,i=?0
cf-ray: 931644e22ce48d71-HEL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js

192.243.61.225

200 OK

26 kB

URL GET
listenedarsonproceedings.com/996927b366b66157a89e1a943b00f855/invoke.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerLet's Encrypt
Subjectlistenedarsonproceedings.com
Fingerprint7E:95:6C:AB:69:C4:4F:51:A8:0B:31:85:F6:2D:4B:BA:62:56:6C:A9
ValidityFri, 28 Feb 2025 12:20:42 GMT - Thu, 29 May 2025 12:20:41 GMT

File type
JavaScript source, ASCII text, with very long lines (25473), with no line terminators
Size
26 kB (25473 bytes)
Hash
24b0cb1cc3de35bd85573842c5a7c168
6752e9eb3b1d1e6e1736a3b49032b799654d8ad5
01530f6b90e3b2bf4768c68c51e8abefe84cca652d8fe0cd095800af0d089862

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /996927b366b66157a89e1a943b00f855/invoke.js HTTP/1.1
Host: listenedarsonproceedings.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 16 Apr 2025 20:00:28 GMT
Content-Type: application/javascript
Content-Length: 10613
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: listenedarsonproceedings.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: de40060c35f7a2b91905aacc794c768f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1

188.114.97.1

200 OK

12 kB

URL User Request GET
hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecthdplayerr.xyz
Fingerprint0E:F3:78:85:67:51:55:E9:F8:70:B2:87:DC:8C:93:82:95:C7:86:C1
ValidityMon, 17 Feb 2025 15:42:24 GMT - Sun, 18 May 2025 16:40:55 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2144)
Size
12 kB (12207 bytes)
Hash
b5d6b6a0003e97aa65512561b2d38649
1240bb2e2a3141cddd57c5c59a2e2639274c90ca
e1c560ddd00ae08bf519812bbef3aa87d51b2121ca530ab4f5e2224e37692f23

HTTP Headers

GET /totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1 HTTP/1.1
Host: hdplayerr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Apr 2025 20:00:28 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 931644e02cbbfeb3-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com

104.21.32.1

200 OK

49 kB

URL User Request GET
enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectenhancechain-flow.com
FingerprintE3:02:04:1F:38:F7:CF:91:1A:A3:E0:A7:DC:15:03:28:C2:5E:DB:BE
ValidityFri, 21 Feb 2025 07:37:06 GMT - Thu, 22 May 2025 08:35:45 GMT

File type
HTML document, ASCII text, with very long lines (20242)
Size
49 kB (49289 bytes)
Hash
517397ba66f1825430ccb6f7344822e4
4069bb95c89d8ede7c3b9ad51b5c0ce9fbf7c9dc
d78df8e9be4c0b34f57624f069846b0c114968b683e1ea884dfcb83d16e5ce6b

HTTP Headers

GET /robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com HTTP/1.1
Host: enhancechain-flow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nannyirrationalacquainted.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Apr 2025 20:00:31 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
vary: Accept-Encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 931644f6dc0cad9f-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.7.1.js

151.101.130.137

200 OK

285 kB

URL GET
code.jquery.com/jquery-3.7.1.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
285 kB (285314 bytes)
Hash
12e87d2f3a4c8b347ab13a0764d420a3
4be715e11048c057fdf2ee0fbbfad4dbf3504c55
78a85aca2f0b110c29e0d2b137e09f0a1fb7a8e554b499f740d6744dc8962cfe

HTTP Headers

GET /jquery-3.7.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://enhancechain-flow.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-45a82"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 16 Apr 2025 20:00:32 GMT
age: 4623058
x-served-by: cache-lga21929-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 14, 18720
x-timer: S1744833632.272924,VS0,VE0
vary: Accept-Encoding
content-length: 83619
X-Firefox-Spdy: h2

hdplayerr.xyz/css/style.css?ver=1.1.6

188.114.97.1

200 OK

1.2 MB

URL GET
hdplayerr.xyz/css/style.css?ver=1.1.6
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerGoogle Trust Services
Subjecthdplayerr.xyz
Fingerprint0E:F3:78:85:67:51:55:E9:F8:70:B2:87:DC:8C:93:82:95:C7:86:C1
ValidityMon, 17 Feb 2025 15:42:24 GMT - Sun, 18 May 2025 16:40:55 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
1.2 MB (1217905 bytes)
Hash
f60b6e4883cb6409a11fa27ea3e47701
db12aaa13c2da914691a4ba4d896b84b210fb4d9
a3d4bbfe9292507daae7625527174c0fb6e38261a99348f4ed4016e984ea95f5

HTTP Headers

GET /css/style.css?ver=1.1.6 HTTP/1.1
Host: hdplayerr.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 16 Apr 2025 20:00:28 GMT
content-type: text/css
server: cloudflare
last-modified: Wed, 25 Sep 2024 15:56:44 GMT
vary: Accept-Encoding
etag: W/"66f432bc-129571"
expires: Thu, 17 Apr 2025 08:00:28 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
priority: u=2,i=?0
cf-ray: 931644e22cdb8d71-HEL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

aparttent.com/footy.js

104.21.16.1

200 OK

1.2 kB

URL GET
aparttent.com/footy.js
IP
104.21.16.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerGoogle Trust Services
Subjectaparttent.com
Fingerprint75:C4:D6:08:C5:77:3E:52:CF:60:CF:E0:06:5E:CE:94:BE:E8:52:41
ValidityThu, 20 Feb 2025 06:12:11 GMT - Wed, 21 May 2025 07:08:22 GMT

File type
ASCII text, with very long lines (320)
Size
1.2 kB (1247 bytes)
Hash
c5920a649ffeae5012c6ac9c11d0f254
89f297324a54098ca2bfbc5f3e63094065c6e422
e81f2835e8ec56afec3fedd7aa20b00f6cdc5ebaae78dd4c300cd887adb86b02

HTTP Headers

GET /footy.js HTTP/1.1
Host: aparttent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 16 Apr 2025 20:00:28 GMT
content-type: application/javascript
server: cloudflare
x-frame-options: ALLOW-FROM https://aparttent.com/
last-modified: Fri, 25 Oct 2024 07:00:00 GMT
vary: Accept-Encoding
etag: W/"671b41f0-4df"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 6655
access-control-allow-origin: https://aparttent.com/
content-security-policy: frame-ancestors *;
cross-origin-resource-policy: cross-origin
permissions-policy: geolocation=(), microphone=(), camera=()
referrer-policy: same-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
cf-ray: 931644e2d941fffd-AMS
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

avd-1.bestchainconnection.com/index?cid=632d523b3f24aab6a440&extclickid=4f4cec88ff88cf1d9c27d3890dec7f7e&t1=23387097&t2=3262419&type=default&publisher=474644&advertiser=514634&campaign_id=1189391&zoneid=3899983&category=Streaming&cost=0.200000

168.119.149.123

307 Temporary Redirect

49 kB

URL User Request GET
avd-1.bestchainconnection.com/index?cid=632d523b3f24aab6a440&extclickid=4f4cec88ff88cf1d9c27d3890dec7f7e&t1=23387097&t2=3262419&type=default&publisher=474644&advertiser=514634&campaign_id=1189391&zoneid=3899983&category=Streaming&cost=0.200000
IP
168.119.149.123:443
ASN
#24940 Hetzner Online GmbH

Certificate
IssuerLet's Encrypt
Subjectavd-1.bestchainconnection.com
Fingerprint08:0D:A1:08:9F:E8:BC:2A:CA:52:06:1D:66:C7:02:17:99:E3:EE:1A
ValiditySat, 01 Mar 2025 14:55:13 GMT - Fri, 30 May 2025 14:55:12 GMT

File type

Size
49 kB (49289 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /index?cid=632d523b3f24aab6a440&extclickid=4f4cec88ff88cf1d9c27d3890dec7f7e&t1=23387097&t2=3262419&type=default&publisher=474644&advertiser=514634&campaign_id=1189391&zoneid=3899983&category=Streaming&cost=0.200000 HTTP/1.1
Host: avd-1.bestchainconnection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nannyirrationalacquainted.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
date: Wed, 16 Apr 2025 20:00:31 GMT
location: https://enhancechain-flow.com/robot-check/?clickid=d000onu071bc73asp7ng&domain=avd-1.bestchainconnection.com
server: Caddy
set-cookie: uclick=kOvbk15ebN8117CnbGCYsFJZQ7HLq6CPWaBpyrx6YMJwWtu6NhVcsZh964r4BTXCsIs8MhRRVA==; Max-Age=31536000; SameSite=Lax
bcid=d000onu071bc73asp7ng; Max-Age=31536000; SameSite=Lax
x-request-id: 963cf886-80ed-4c46-b676-ee114a0b135f
content-length: 0
X-Firefox-Spdy: h2

jy.satyrsretell.com/tWNg6XBIYMmzrkL6/118368

172.255.103.103

200 OK

5 B

URL GET
jy.satyrsretell.com/tWNg6XBIYMmzrkL6/118368
IP
172.255.103.103:443
ASN
#7979 SERVERS-COM

Requested by
https://hdplayerr.xyz/totwatch.php?value=bbtsp1https://hdplayerr.xyz/totwatch.php?value=bbtsp1
Certificate
IssuerLet's Encrypt
Subjectjy.satyrsretell.com
Fingerprint66:D4:F2:8F:BD:D3:EE:49:49:18:5B:A2:43:65:13:B8:A6:9F:8E:E2
ValidityFri, 21 Feb 2025 04:02:32 GMT - Thu, 22 May 2025 04:02:31 GMT

File type
ASCII text, with no line terminators
Size
5 B (5 bytes)
Hash
f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tWNg6XBIYMmzrkL6/118368 HTTP/1.1
Host: jy.satyrsretell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hdplayerr.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 16 Apr 2025 20:00:28 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://hdplayerr.xyz
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Thu, 17-Apr-2025 20:00:28 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 17-Apr-2025 20:00:28 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML