Report - www.hydrahd.sh

Report Overview

Visited public
2025-04-30 20:00:02
Tags
URL
www.hydrahd.sh
Finishing URL
hydrahd.sh/
IP / ASN
104.21.66.45
#13335 CLOUDFLARENET
Title
HydraHD - Watch Movies and Series in High Definition

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
hydrahd.sh	unknown	2025-03-18	2025-04-24	2025-04-24	6.4 kB	415 kB	172.67.201.25
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-04-30	401 B	324 kB	142.250.74.168
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2025-04-30	823 B	174 kB	151.101.193.229
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-04-30	409 B	91 kB	142.250.74.42
image.tmdb.org	17757	2009-09-15	2021-01-09	2025-04-30	7.7 kB	5.9 MB	169.150.247.34
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-04-30	1.4 kB	251 kB	104.17.24.14
x3os.com	unknown	2021-03-18	2025-04-24	2025-04-24	523 B	805 B	139.45.196.64
paupsoborofoow.net	unknown	2024-12-03	2025-03-19	2025-04-23	382 B	104 kB	188.114.97.1
www.hydrahd.sh	unknown	2025-03-18	2025-04-30	2025-04-30	483 B	245 kB	172.67.201.25

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-30	medium	paupsoborofoow.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3	ScriptElement	324 kB	2025-04-30	2025-04-30
Pretty URL www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 20:00 Last Seen2025-04-30 20:00 Times Seen1 Hash 65bb2415f5c9d96d7a1d73afc74ef180 4294a7567e6620172a6b6219bfa7e1e5e0ed0fb4 15df9d13a786d0c93701a37cf03ddc0a7d665bca460dc456e2a68c9cc8143f0d Loading...

	about:blank	ScriptElement	236 B	2025-04-30	2025-04-30
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 20:00 Last Seen2025-04-30 20:00 Times Seen1 Hash b08d2a2e026109a599ee9748f4a08be4 c2a39a7902d2e0163e53eb1e687cb24e722ba8dc cffec37700ae4dbb9cfd4d35791a3e5f538f73ce78564571f3b9f76a5b75f661 Loading...

	paupsoborofoow.net/tag.min.js	ScriptElement	103 kB	2025-04-30	2025-05-02
Pretty URL paupsoborofoow.net/tag.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 16:01 Last Seen2025-05-02 03:19 Times Seen11 Hash df6e62fec21bb9e94f2202e3fc06e1c8 8cf4f31bbe9a7f80b28465c9d19f1a2b28b8659c 64054bdfadffa59ac5dc7bd654623416c132ee69732be2cd7cc38d70c731e68a Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js	ScriptElement	90 kB	2023-03-26	2025-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:59 Last Seen2025-05-10 22:55 Times Seen7490 Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af Loading...

	cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js	ScriptElement	140 kB	2023-03-07	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:40 Last Seen2025-05-10 22:55 Times Seen127 Hash 6f58af87fc5b0cbd1565f351e2100baa 7e4298d37286d378590b16260baf31fe845158da 9134d7339572e8528974863492e41962d0eb10362053f83305e49bb4a7e8f280 Loading...

	hydrahd.sh/	ScriptElement	3.7 kB	2025-03-09	2025-05-10
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-09 17:21 Last Seen2025-05-10 22:55 Times Seen15 Hash 4032f04d97b3136c42c9d71c16e041fa 57e199ebc927beb0540fc8f5092c47b10cbac9b9 85b1b6b31c8be6bfb645edf9dfc0127e3a21755639b3a1a833b825284b151b09 Loading...

	hydrahd.sh/	ScriptElement	850 B	2024-12-18	2025-05-10
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-18 18:31 Last Seen2025-05-10 22:55 Times Seen19 Hash f65efffefb2f67a493f292c369a76cdb f3a8c0e2952767315587be58f32e3f36341666da 00d656dd1a2705dded13c9f474b930ea287429c581669eec91a9e456f8ebd98f Loading...

	hydrahd.sh/	ScriptElement	153 B	2025-04-29	2025-05-10
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-29 21:14 Last Seen2025-05-10 22:55 Times Seen13 Hash 35e8f51b6c2ea88d8d8c16fc8a10d46f 6139c70485cc7f6ae065bd34b1ba8d8ef9ef917a 57edcf165aeb6185766ff3916656b94d1b724ee835a539ae63f2e7d1ab23382a Loading...

	hydrahd.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.4 kB	2025-04-30	2025-04-30
Pretty URL hydrahd.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-30 20:00 Last Seen2025-04-30 20:07 Times Seen2 Hash 5996c1632ef673cab1ceb3969fdd4835 3bd0110ff33796be2925657923425c516f0eebef 3fa3bf27ffe8efbbbc0d428f49ef6e6efec9cd364eeb963ec4477cca1b6a74c2 Loading...

	hydrahd.sh/assets/all.js?v=1.2.5	ScriptElement	7.0 kB	2025-04-29	2025-05-10
Pretty URL hydrahd.sh/assets/all.js?v=1.2.5 IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-29 21:14 Last Seen2025-05-10 22:55 Times Seen13 Hash cb51242b7afb80164f884354d5ef0308 d35a904a5629f44ae666136de9eb5bc24b87c859 c5e34b1fb2b41fe91cf5697be2c19a6805c0294a8508b6b0f640c68568bc228b Loading...

	cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js	ScriptElement	154 kB	2025-03-20	2025-05-10
Pretty URL cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 00:24 Last Seen2025-05-10 22:55 Times Seen476 Hash 750b7e1509868702d0abedc196e7884c 75754999460b5d7130bc6d77248b9e15cfdfad6b 517e6bfba591ce6dd983f04b92e80ccb1d29f50e769f47d1aa07bf659ab31419 Loading...

	hydrahd.sh/	ScriptElement	564 B	2024-04-30	2025-05-10
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-30 22:42 Last Seen2025-05-10 22:55 Times Seen36 Hash 887c6876783164da80633a5870003ed8 0dfd9c1bce41c94c4e46dd407faed7d694c0d20e c979701eb5c1a24e0cd26f86ca2f17772c15645c1a9beef6c99d7aaadee48b24 Loading...

	hydrahd.sh/	ScriptElement	198 B	2025-04-29	2025-05-10
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-29 21:14 Last Seen2025-05-10 22:55 Times Seen13 Hash 7af1cb2bb3a4996be028b0e4f5b79bc8 05ace771c5a969e77970959137d1a3e9c97f1c24 0132f000901200c50a24950fd931de5a82947a64c1e5375295253dcb9cf33cb1 Loading...

	hydrahd.sh/	ScriptElement	921 B	2025-04-30	2025-04-30
Pretty URL hydrahd.sh/ IP 172.67.201.25 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-30 20:00 Last Seen2025-04-30 20:00 Times Seen1 Hash 007a24f2a7c72db44fcdebcaacd33722 a643f6f8054861db1310dfaac9783ad0596507b4 9143e25233a07c7de35e7d487ea28f8734c2706d185f9fedf75a88602da39f25 Loading...

HTTP Transactions (41)

URL IP Response Size

image.tmdb.org/t/p/w342/qkTKtOHK9JEEOHgPQZ0dFtzs5ML.jpg

169.150.247.34

200 OK

31 kB

URL GET
image.tmdb.org/t/p/w342/qkTKtOHK9JEEOHgPQZ0dFtzs5ML.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x507, Scaling: [none]x[none], YUV color, decoders should clamp
Size
31 kB (30572 bytes)
Hash
a44851fc75c45eb11dac218ca5e887a0
348f0370cac87b9c04dd3f39c5e511bc74c666d6
a8a16174eaed93ac2512e7a49d7e6879f6798149f9c4c2774e3a3f657ccd59f5

HTTP Headers

GET /t/p/w342/qkTKtOHK9JEEOHgPQZ0dFtzs5ML.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 30572
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Tue, 15 Apr 2025 13:03:11 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 44440
x-bo-origindownloadtime: 476
x-bo-compressionratio: 31.21%
x-bo-processingtime: 15
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/15/2025 13:03:11
cdn-edgestorageid: 1075
cdn-requestid: bf247eed3a85ebe66dc14e4fcd0c76e2
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/qCBgsC4rM1szdtRt2AoB07KoGpA.png

169.150.247.34

200 OK

4.4 kB

URL GET
image.tmdb.org/t/p/w342/qCBgsC4rM1szdtRt2AoB07KoGpA.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
PNG image data, 342 x 61, 8-bit gray+alpha, non-interlaced
Size
4.4 kB (4385 bytes)
Hash
4ce8e82e9aaabb0db0761f7f7c861273
a471bae98fc875b8d63a5d67ba5983e812b8538c
d056e2bf8283bba44229158565c9419c4e7872f4df9a6df605664f72536460f0

HTTP Headers

GET /t/p/w342/qCBgsC4rM1szdtRt2AoB07KoGpA.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:55 GMT
content-type: image/webp
content-length: 4385
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Thu, 24 Apr 2025 15:07:59 GMT
perma-cache: MISS
x-bo-server: LA-289
x-downloadsize: 4385
x-bo-origindownloadtime: 661
x-bo-compressionratio: 0%
x-bo-processingtime: 2
x-bo-version: 1.0.26
x-bo-processing-error: 104
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2025 15:08:00
cdn-edgestorageid: 723
cdn-requestid: c31ff3341bbf5a2e75eafe6f0ebbe1fa
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

hydrahd.sh/assets/main.css?v=2.3

172.67.201.25

200 OK

7.5 kB

URL GET
hydrahd.sh/assets/main.css?v=2.3
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
ASCII text, with very long lines (599)
Size
7.5 kB (7547 bytes)
Hash
73f328146d8b7df53955188e776cc1d3
2679357ce89197758a6f21c6950bcee14f374a93
0154c97ba6bc99697b94caff9d621ac9385b7d0dc4cf76cf78b6d94daa781771

HTTP Headers

GET /assets/main.css?v=2.3 HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: text/css
referrer-policy: same-origin
x-content-type-options: nosniff
last-modified: Fri, 06 Dec 2024 22:04:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2281
content-encoding: br
cf-ray: 93899eaa4a3e712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WVNaMizL%2BCHRxFLkcOObNMp%2FPH9T1aDDKatzeV80AYnpvsaFmwruFRJkneOfq3sAfd%2FlDq%2FqahoLyebZ4%2BWIiKw2Oeq%2BnJMrvFRaPpE9HsDvO8H4jF5izhKg5iiR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4580&min_rtt=1498&rtt_var=2535&sent=36&recv=34&lost=0&retrans=0&sent_bytes=13134&recv_bytes=4089&delivery_rate=2231&cwnd=12000&unsent_bytes=0&cid=390dac065012276b&ts=554&x=16"

image.tmdb.org/t/p/original/9KSGUPHZpqhqkRXE2eebu701ONU.jpg

169.150.247.34

200 OK

1.4 MB

URL GET
image.tmdb.org/t/p/original/9KSGUPHZpqhqkRXE2eebu701ONU.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.4 MB (1434864 bytes)
Hash
79638237852f6f2c078b307d281511b6
721c30e35accf072e02b503d9d514456a0932cf9
747502ce6369a57092acda2f0a5cff9cbee636da32e9c43e12e0be2dfbe710ec

HTTP Headers

GET /t/p/original/9KSGUPHZpqhqkRXE2eebu701ONU.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:55 GMT
content-type: image/webp
content-length: 1434864
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Tue, 22 Apr 2025 11:41:49 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 1792344
x-bo-origindownloadtime: 1092
x-bo-compressionratio: 19.94%
x-bo-processingtime: 837
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/22/2025 11:41:51
cdn-edgestorageid: 1053
cdn-requestid: bca9bb7c8a7e423293f6c20a4ad96371
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

hydrahd.sh/cdn-cgi/challenge-platform/h/b/scripts/jsd/a51d7b3d53cb/main.js?

172.67.201.25

200 OK

8.4 kB

URL GET
hydrahd.sh/cdn-cgi/challenge-platform/h/b/scripts/jsd/a51d7b3d53cb/main.js?
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
JavaScript source, ASCII text, with very long lines (8408), with no line terminators
Size
8.4 kB (8408 bytes)
Hash
5996c1632ef673cab1ceb3969fdd4835
3bd0110ff33796be2925657923425c516f0eebef
3fa3bf27ffe8efbbbc0d428f49ef6e6efec9cd364eeb963ec4477cca1b6a74c2

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/a51d7b3d53cb/main.js? HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: application/javascript; charset=UTF-8
referrer-policy: same-origin
x-content-type-options: nosniff
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
content-encoding: br
cf-ray: 93899eaffaa8712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lS%2BPXyawDhUJVSr30USopXHZgZiyt6Xah0y8zp9wZ8yqAWgwRKvJ6CX%2BSfDIDAHBdA0gll8P%2BD29EJWCB85yCwRNkOGEzbCAYLMfRVnh53cjA8wEtfNBEBJHtbrj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4165&min_rtt=1498&rtt_var=3182&sent=85&recv=45&lost=0&retrans=0&sent_bytes=59859&recv_bytes=5580&delivery_rate=3533620&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=1441&x=16"

hydrahd.sh/assets/old.css

172.67.201.25

200 OK

98 kB

URL GET
hydrahd.sh/assets/old.css
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
ASCII text, with very long lines (65308), with CRLF line terminators
Size
98 kB (98311 bytes)
Hash
e366ad4733d952d96d422bebe2e80c1a
de141a84cd9af48e93a25654a5506ed6ea0f6c53
5e5937b2ceed6be25a8db4efad440b4fdb05a36c245f8a32addfe882d1853c77

HTTP Headers

GET /assets/old.css HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: text/css
referrer-policy: same-origin
x-content-type-options: nosniff
last-modified: Mon, 26 Feb 2024 15:01:15 GMT
age: 2281
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 93899eaa5a3f712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EKyCb%2BUXSJuA1PTZbIoot3DiWB80VV6Jy1nfbho7l9uWdvmm3CjoS6VMFh5ejZB1Xk9c0YWuQr%2FG7mRZyAQHbkg4hah1%2FdmwtNi%2FjExyraiYX2r0ZcYJIptc2AKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4580&min_rtt=1498&rtt_var=2535&sent=35&recv=34&lost=0&retrans=0&sent_bytes=12467&recv_bytes=4089&delivery_rate=2231&cwnd=12000&unsent_bytes=0&cid=390dac065012276b&ts=553&x=16"

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

31 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 74091
expires: Mon, 20 Apr 2026 19:59:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bfU6qbAK6PJOiAkO8%2B8ppkraBMxKhJC649vREn9vWn6qJQN8GR0JNli25oN7dKd5zlP5r35qMv1axhkFQbrc%2FJ%2BPQC%2Bln3kpcc%2Fofoc02mlMJjQSBbKPFgZdSlmEzllplVcCCN7B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 93899eaa8bc31c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hydrahd.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.201.25

302 Found

8.4 kB

URL GET
hydrahd.sh/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type

Size
8.4 kB (8408 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Wed, 30 Apr 2025 19:59:29 GMT
content-length: 0
referrer-policy: same-origin
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/a51d7b3d53cb/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 93899eae8a94712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7NiDJ%2Bf6p3pppdVslI3iB7qGv%2BXb%2BpFAA1uT%2FYGgF%2BEmdK94WhpC5BcnxyS0hu9QwEKdvyJ1o75XFuTZZn2Mkfz24oIY9%2BvUxeM51ZOcOU7oUfz4XH6Z9JU5bW7h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5314&min_rtt=1498&rtt_var=3327&sent=70&recv=41&lost=0&retrans=0&sent_bytes=44023&recv_bytes=5151&delivery_rate=1548493&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=1214&x=16"

hydrahd.sh/cdn-cgi/challenge-platform/h/b/jsd/r/0.7430477597774467:1746041160:tMRoWl13WSFw0sUMVDmiZWKB0Efnb-sfqpkoAhqsnJc/93899ea71bc05690

172.67.201.25

200 OK

0 B

URL POST
hydrahd.sh/cdn-cgi/challenge-platform/h/b/jsd/r/0.7430477597774467:1746041160:tMRoWl13WSFw0sUMVDmiZWKB0Efnb-sfqpkoAhqsnJc/93899ea71bc05690
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/0.7430477597774467:1746041160:tMRoWl13WSFw0sUMVDmiZWKB0Efnb-sfqpkoAhqsnJc/93899ea71bc05690 HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12064
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Referer: https://hydrahd.sh/
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3; _ga_FSSR5RWVV3=GS1.1.1746043169.1.0.1746043169.0.0.0; _ga=GA1.1.1714874600.1746043169
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
referrer-policy: same-origin
set-cookie: cf_clearance=lTomHfDHgO9zRm3ee66_FNNVGVofS7XA.b01j8oXHvk-1746043169-1.2.1.1-9kRQk95MSdmYuiuxyzP8IoUUIIVdvCiFzC2qExklxqK8L0pyEDGJWC4R8O1.MBtOS3zUS2yn8Ll8mSjIRP8zYsHlW_VRvZO5ATRau7.0XW5.DvaLiMrPH6anO8pGvRZ8fYiBVHzcLNTO.2ghmbCOwsfFMI1DH3kbWuPr79aBhOVpYzja4Dt5tMgJhMSWF7P3XDBRfbfWFBXzLZNTmW8cCCUMJcOdhBAufRAhu7KvNGNj7d8ZNqC_ooXt.ajqTuAdsQixXFa9ACaGvUq4.nUYYcVakhN8YLozFLGqzU8yFrtkJ0eNWkXTwINiBom1HiKO03xXHHSM3Gg1VC.lY5qWJyxibxTZI2M9FQF.u7O4AQc; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=hydrahd.sh; Expires=Thu, 30 Apr 2026 19:59:29 GMT
cf-ray: 93899eb20ad4712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d4aWneh3LWYqdVWhZJg57Yp5SIAlKb2lrIMLK0m7kWbFlXgGSVup5e4kFUfugBDjZguXbivaJiroAfd0OU0dVkRkbgQZnMoh0DmcYwpS%2FvpT2BPOGDxfh%2F5r7BV7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3862&min_rtt=1498&rtt_var=2993&sent=97&recv=56&lost=0&retrans=0&sent_bytes=64722&recv_bytes=18533&delivery_rate=412605&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=1782&x=16"

image.tmdb.org/t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png

169.150.247.34

200 OK

14 kB

URL GET
image.tmdb.org/t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
14 kB (13506 bytes)
Hash
671a404ae515d5a9eacaec186d3d1477
28e50f6d79824cd06342e53a4579d1d6dd0329fd
e4a73d5afa33d184f95de82646f5987ada3062a6c77bd0fc1423efd95f092a3e

HTTP Headers

GET /t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:45 GMT
content-type: image/webp
content-length: 13506
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Mon, 21 Apr 2025 18:46:50 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 13815
x-bo-origindownloadtime: 2372
x-bo-compressionratio: 2.24%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/21/2025 18:46:52
cdn-edgestorageid: 1047
cdn-requestid: 45837350bcd1639dd06d6f103cd86b88
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js

104.17.24.14

200 OK

140 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65279)
Size
140 kB (139826 bytes)
Hash
6f58af87fc5b0cbd1565f351e2100baa
7e4298d37286d378590b16260baf31fe845158da
9134d7339572e8528974863492e41962d0eb10362053f83305e49bb4a7e8f280

HTTP Headers

GET /ajax/libs/Swiper/6.4.5/swiper-bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 31990
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fdcfa8c-22232"
last-modified: Fri, 18 Dec 2020 18:53:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 88899
expires: Mon, 20 Apr 2026 19:59:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O0ueQYfxtxyY1%2Bmw7%2BbfO4nDnyiu8ADlBNYJm1AEXmm81IFCdMOP4N%2B3Y%2F6eWhSzWVZTWti6oT42Cb3DP%2FNvDedeNM37uPJJRdS%2BrlDsDTr8ijcV1z2ZXoaiYeeN8Ie0Ckr108mN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 93899eaab9d556bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3

142.250.74.168

200 OK

324 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintE4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (6129)
Size
324 kB (323519 bytes)
Hash
65bb2415f5c9d96d7a1d73afc74ef180
4294a7567e6620172a6b6219bfa7e1e5e0ed0fb4
15df9d13a786d0c93701a37cf03ddc0a7d665bca460dc456e2a68c9cc8143f0d

HTTP Headers

GET /gtag/js?id=G-FSSR5RWVV3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Apr 2025 19:59:28 GMT
expires: Wed, 30 Apr 2025 19:59:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0
report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],}
server: Google Tag Manager
content-length: 113319
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css

151.101.193.229

200 OK

18 kB

URL GET
cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://hydrahd.sh/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
ASCII text, with very long lines (18199)
Size
18 kB (18454 bytes)
Hash
2a1dc9ac6fde65e0796bef83a8e57dfd
4210c1743d816399f7c0b9f8365fabbb2e991009
ef7ee2f59686b2f281d608185071fe95f5fd27f252842e628113877e15b7d24a

HTTP Headers

GET /npm/swiper@11/swiper-bundle.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 11.2.6
x-jsd-version-type: version
etag: W/"4816-QhDBdD2BY5n3wLn4Nl+ruy6ZEAk"
content-encoding: br
accept-ranges: bytes
date: Wed, 30 Apr 2025 19:59:28 GMT
age: 32732
x-served-by: cache-fra-eddf8230090-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4472
X-Firefox-Spdy: h2

hydrahd.sh/themes/placeholder.jpg

172.67.201.25

200 OK

1.5 kB

URL GET
hydrahd.sh/themes/placeholder.jpg
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 180x273, components 3
Size
1.5 kB (1491 bytes)
Hash
929d612a7d53a95fa1256bbd9e496b02
53ddb5054c7d169f411152b3b768a65bf948d483
bc5a2f8848ab097f58bf715501e73888c21fd72356ad39cb26b1878745905559

HTTP Headers

GET /themes/placeholder.jpg HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: image/jpeg
content-length: 1491
referrer-policy: same-origin
last-modified: Fri, 22 Dec 2023 14:11:55 GMT
accept-ranges: bytes
cache-control: public, max-age=1209600
age: 537943
cf-cache-status: HIT
cf-ray: 93899eaa6a45712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F2VCSTdaMegnfNd5h6pcE%2FWBV0HAuHaxD51DQQHpSkOMCc%2BFaCw%2BHpbblHKy2gOx3yFyMJvctcQ93v%2F6%2BcEPqTRL%2B3aQRhkh05ubjJM28v4TwDv0iqSljaswTkWe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4226&min_rtt=1498&rtt_var=2116&sent=62&recv=36&lost=0&retrans=0&sent_bytes=39826&recv_bytes=4177&delivery_rate=6048221&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=562&x=16"

image.tmdb.org/t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png

169.150.247.34

200 OK

34 kB

URL GET
image.tmdb.org/t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
34 kB (34436 bytes)
Hash
be4fa4b4931fde1e78ddb191568d6425
efb99f75fa7a6212d9b890ee5eeb4e3f5a4d84ac
acd1efbb76923ca0d690252f12354f0d8053e3c258d745a6b12fbde4bd6b188e

HTTP Headers

GET /t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 34436
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "680c8374-8684"
last-modified: Sat, 26 Apr 2025 06:55:48 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 916
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/26/2025 06:55:56
cdn-edgestorageid: 865
cdn-requestid: 3046f59ee1d0bc2fa071cf2c6d49c98e
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

x3os.com/5/9258380/?oo=1&js_build=iclick-v1.1131.0&dmn=paupsoborofoow.net&tt=2&ix=0

139.45.196.64

204 No Content

0 B

URL POST
x3os.com/5/9258380/?oo=1&js_build=iclick-v1.1131.0&dmn=paupsoborofoow.net&tt=2&ix=0
IP
139.45.196.64:443
ASN
#9002 RETN Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectx3os.com
Fingerprint50:C0:EA:5D:F8:E5:56:73:E2:8F:35:76:0A:C7:E0:08:49:F5:FD:AB
ValidityTue, 22 Apr 2025 14:19:12 GMT - Mon, 21 Jul 2025 14:19:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /5/9258380/?oo=1&js_build=iclick-v1.1131.0&dmn=paupsoborofoow.net&tt=2&ix=0 HTTP/1.1
Host: x3os.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2511
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Wed, 30 Apr 2025 19:59:30 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://hydrahd.sh
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/VeNCc4i7LbRQpwC1mYl5jtBzFM.png

169.150.247.34

200 OK

10 kB

URL GET
image.tmdb.org/t/p/w342/VeNCc4i7LbRQpwC1mYl5jtBzFM.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
PNG image data, 342 x 109, 8-bit gray+alpha, non-interlaced
Size
10 kB (10094 bytes)
Hash
33eddad5810285a4fb7a6a32f2b95f8f
518c22e334954582bd6e62e420ccff661ca70b77
803a683496421cc13186ffd32c8993bc1d70f61e4d8f21223588e29be5d296c7

HTTP Headers

GET /t/p/w342/VeNCc4i7LbRQpwC1mYl5jtBzFM.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:50 GMT
content-type: image/webp
content-length: 10094
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 11 Apr 2025 09:54:50 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 10094
x-bo-origindownloadtime: 532
x-bo-compressionratio: 0%
x-bo-processingtime: 7
x-bo-version: 1.0.26
x-bo-processing-error: 104
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/11/2025 09:54:51
cdn-edgestorageid: 1053
cdn-requestid: bee4eed989da7882d4ebeafad41320be
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.24.14

200 OK

77 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 536522
expires: Mon, 20 Apr 2026 19:59:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z9HlHWdg51lKobXnz%2BCOYvS%2B7nrwCe2bX5PrWk8l81qHAhw2GgyNsEPe9c5rpM9NOkmtgrLVbsNmTzHrOaIsoayFkZOxdHcOeDyMg2mXoJfL7PNluu6OxIW0tJLPNCjwN7WmmeLD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 93899eacdeaa1c12-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

paupsoborofoow.net/tag.min.js

188.114.97.1

200 OK

103 kB

URL GET
paupsoborofoow.net/tag.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectpaupsoborofoow.net
FingerprintBB:AB:82:1F:E9:CA:54:E5:11:30:EC:4D:A7:12:04:8F:33:BE:0C:B5
ValidityMon, 31 Mar 2025 22:57:38 GMT - Sun, 29 Jun 2025 23:55:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (102563 bytes)
Hash
df6e62fec21bb9e94f2202e3fc06e1c8
8cf4f31bbe9a7f80b28465c9d19f1a2b28b8659c
64054bdfadffa59ac5dc7bd654623416c132ee69732be2cd7cc38d70c731e68a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: paupsoborofoow.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: application/javascript
x-trace-id: d407edd66b2986a29d164ca29f65fc82
cache-control: public, max-age=600, s-maxage=1800
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
age: 949
cf-cache-status: HIT
last-modified: Wed, 30 Apr 2025 19:43:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3EY%2BPrfX1r0Ka4LMe6uM%2FRKLSuBOTaXR1D8CrKdaQ9rqPpRYIFmZKNpJI9ODroSo1DsQgZ1cZ%2B2f0nvy9Hrzym5mpkd5yU7BFdV3qRdeM3ei3LEe3S5XmsMRm2cl6edC7VxcHtE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 93899eae0bcd5697-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=520&min_rtt=443&rtt_var=160&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3295&recv_bytes=1179&delivery_rate=7647887&cwnd=254&unsent_bytes=0&cid=a548fbbf85b6f33b&ts=51&x=0"
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/e92qfYRVYUL602ztyEoujUtXlS1.jpg

169.150.247.34

200 OK

164 kB

URL GET
image.tmdb.org/t/p/original/e92qfYRVYUL602ztyEoujUtXlS1.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1080, Scaling: [none]x[none], YUV color, decoders should clamp
Size
164 kB (163586 bytes)
Hash
d263628bc99c69e734d5ecd8c06e2ef6
e54e2c2ef55360b2bc27287b3fcf6143ef330725
66a138ff8c98b5b5a4946f0dc3bac1563acc7fa15dd2ed61477de27d228788e5

HTTP Headers

GET /t/p/original/e92qfYRVYUL602ztyEoujUtXlS1.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:50 GMT
content-type: image/webp
content-length: 163586
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 05:27:35 GMT
perma-cache: MISS
x-bo-server: LA-289
x-downloadsize: 228754
x-bo-origindownloadtime: 433
x-bo-compressionratio: 28.49%
x-bo-processingtime: 173
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 05:27:36
cdn-edgestorageid: 1078
cdn-requestid: 72766616592ff86015f3b997484984f3
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

hydrahd.sh/themes/logoholder.png

172.67.201.25

200 OK

754 B

URL GET
hydrahd.sh/themes/logoholder.png
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 342 x 134, 8-bit/color RGBA, non-interlaced
Size
754 B (754 bytes)
Hash
1af949c7e7d9f612e79902e7fcb9ece4
9e10cb9cf890db4d65e82af5866e4fc8d6f16e45
3549b22743cb2f2b5e9553bc8361b067efbdb5dc23f65e9a0356d0e167500bcb

HTTP Headers

GET /themes/logoholder.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: image/png
content-length: 754
referrer-policy: same-origin
last-modified: Mon, 09 Dec 2024 17:27:39 GMT
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 537944
accept-ranges: bytes
cf-ray: 93899eaa6a46712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dPr0j9g0%2BtHGdZL4m859niHqzKXRZAg9IMnl%2FCssI0o2pEgyY8R7hAR9V%2BGQe1hWhAkbWZxBfWqTAYn80Ixt7kx3PTVbTbrfr2ImY%2FiJtcOiogL%2Fx4l08UjLsSr1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4545&min_rtt=1498&rtt_var=1972&sent=55&recv=35&lost=0&retrans=0&sent_bytes=34178&recv_bytes=4133&delivery_rate=413881&cwnd=17700&unsent_bytes=0&cid=390dac065012276b&ts=559&x=16"

image.tmdb.org/t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg

169.150.247.34

200 OK

795 kB

URL GET
image.tmdb.org/t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
795 kB (794746 bytes)
Hash
bb3d8917410723fa05f5d3c60d73e729
e0c654bea9cd472fe8e0e4bc02de1f0cd00cabee
bcdce6d130873c356044fd994488d9e4653f69c20f824648339a7933e5cf5392

HTTP Headers

GET /t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:39 GMT
content-type: image/webp
content-length: 794746
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 04:35:29 GMT
perma-cache: MISS
x-bo-server: LA-291
x-downloadsize: 921331
x-bo-origindownloadtime: 14915
x-bo-compressionratio: 13.74%
x-bo-processingtime: 1208
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 04:35:45
cdn-edgestorageid: 860
cdn-requestid: 329c94222bcc90699c50fb4ab26e34d0
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js

151.101.193.229

200 OK

154 kB

URL GET
cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://hydrahd.sh/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65281)
Size
154 kB (154008 bytes)
Hash
750b7e1509868702d0abedc196e7884c
75754999460b5d7130bc6d77248b9e15cfdfad6b
517e6bfba591ce6dd983f04b92e80ccb1d29f50e769f47d1aa07bf659ab31419

HTTP Headers

GET /npm/swiper@11/swiper-bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.2.6
x-jsd-version-type: version
etag: W/"25998-dXVJmUYLXXEwvG13JIueFc/frWs"
content-encoding: br
accept-ranges: bytes
date: Wed, 30 Apr 2025 19:59:28 GMT
age: 20734
x-served-by: cache-fra-etou8220075-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 43827
X-Firefox-Spdy: h2

hydrahd.sh/fav-180.png

172.67.201.25

200 OK

6.3 kB

URL GET
hydrahd.sh/fav-180.png
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6330 bytes)
Hash
d92cdcd83eb9f173267db3450f79f149
8c56dac3280e625fa11b5fbe06284c7d9aa185b5
5291bd1f2e5eb6cc29007a2080a92fe58836c5ed5a558a478d3bd430eff671d5

HTTP Headers

GET /fav-180.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/png
content-length: 6330
referrer-policy: same-origin
last-modified: Tue, 27 Feb 2024 08:28:27 GMT
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 537944
accept-ranges: bytes
cf-ray: 93899eae8a91712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6C050l5mZZZWITf95pY4kXoqC3De%2FjJXQg9%2FKxXb6P0qoqhW406oiO0YritZl7dZDVAHXUg9MFPPN5oW42yBy6rU%2BQ8PRzw7U3k3BbWmCUfhMfs8fcJvhYbIjnE2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4960&min_rtt=1498&rtt_var=3203&sent=71&recv=42&lost=0&retrans=0&sent_bytes=44742&recv_bytes=5196&delivery_rate=21622&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=1243&x=16"

image.tmdb.org/t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg

169.150.247.34

200 OK

26 kB

URL GET
image.tmdb.org/t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
26 kB (25638 bytes)
Hash
4497bfa42f6a77c30fe5a70029f9cc78
b441aa267a87bd446a51d1c5a82d83cf5c3b8698
50df3e2e3c8cdcc0aff36f434486941844aa047e2c00d13ecc6189f9b653bc45

HTTP Headers

GET /t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 25638
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6801a997-6426"
last-modified: Fri, 18 Apr 2025 01:23:35 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 792
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2025 05:43:30
cdn-edgestorageid: 874
cdn-requestid: ea7e69e25be1227cf3eef57424990d41
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg

169.150.247.34

200 OK

39 kB

URL GET
image.tmdb.org/t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
39 kB (38594 bytes)
Hash
f6b3149823d7aeca772f0696ac84898e
6a3cd3c9fdc1a986a8865d81a709a19351a6125a
4c7a1a7a32a5b9c442e3adef68aa63882534eb142522d424840699dd0d8fd377

HTTP Headers

GET /t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 38594
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 08:25:05 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 45533
x-bo-origindownloadtime: 342
x-bo-compressionratio: 15.24%
x-bo-processingtime: 19
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 08:25:05
cdn-edgestorageid: 864
cdn-requestid: 7f40a494c5bf1cb18d2add4cb5093bb1
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg

169.150.247.34

200 OK

34 kB

URL GET
image.tmdb.org/t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
34 kB (33770 bytes)
Hash
9f1c672b3dc8ad7bb5d9a49f06877d98
992905cdf26ce741951d2594c5a12f6b59d6c462
753001ef3b6413a204b9706e89d07c32251baff376ac79279a0feb068bb389b4

HTTP Headers

GET /t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 33770
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 00:25:20 GMT
perma-cache: MISS
x-bo-server: NY-312
x-downloadsize: 38918
x-bo-origindownloadtime: 1207
x-bo-compressionratio: 13.23%
x-bo-processingtime: 12
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 00:25:21
cdn-edgestorageid: 1048
cdn-requestid: 695a4a305ebc054abe4504527cac16fd
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg

169.150.247.34

200 OK

1.3 MB

URL GET
image.tmdb.org/t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.3 MB (1270394 bytes)
Hash
dcb003d748a1b77915c69b7377850450
1d3a5a924dad0a76481fc71155ac4369557c3d0f
e632aa017875074f4e9c95115d3cbf6546f38f2f2f123dd0525d176eee30cd4a

HTTP Headers

GET /t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:45 GMT
content-type: image/webp
content-length: 1270394
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sat, 19 Apr 2025 22:42:29 GMT
perma-cache: MISS
x-bo-server: LA-293
x-downloadsize: 1744178
x-bo-origindownloadtime: 485
x-bo-compressionratio: 27.16%
x-bo-processingtime: 722
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/19/2025 22:42:30
cdn-edgestorageid: 865
cdn-requestid: 285d054682344f175c4b1f70d1d94800
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

www.hydrahd.sh/

172.67.201.25

301 Moved Permanently

244 kB

URL User Request GET
www.hydrahd.sh/
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type

Size
244 kB (244239 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 30 Apr 2025 19:59:27 GMT
content-type: text/html; charset=iso-8859-1
location: https://hydrahd.sh/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NyFs5zYN6YJHOgp%2FnryxREzDUhaizoyhZULUalYlLZtVJKQpe693M2qv1ghVyTltJftO2gH%2BCmH8ZHpXv4urqlLnI2SP2RzLMKTHRBXY3bqQ2uqchIHpLP8MYyoct%2Fqz6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 93899ea609915690-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6390&min_rtt=476&rtt_var=11840&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3193&recv_bytes=1125&delivery_rate=7515570&cwnd=254&unsent_bytes=0&cid=4652c1eda25a998d&ts=170&x=0"
X-Firefox-Spdy: h2

hydrahd.sh/fav-192.png

172.67.201.25

200 OK

7.1 kB

URL GET
hydrahd.sh/fav-192.png
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7095 bytes)
Hash
f30e09b86e182e263667a5d867894879
7acc08f6449133e0a26cae18b97c8049633d25fd
e2439ea059b8875a870c946b48c3164434bc4c308331a36e9f32f35de6ecf5a8

HTTP Headers

GET /fav-192.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/png
content-length: 7095
referrer-policy: same-origin
last-modified: Tue, 27 Feb 2024 08:28:31 GMT
accept-ranges: bytes
cache-control: public, max-age=1209600
age: 537944
cf-cache-status: HIT
cf-ray: 93899eae8a92712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aurMVcj0QHHK5FEStTxZRIOC%2BW8OViM75zOWY1UVc5EfGqQhMQAFle0OGqzmbDYtYAkOzOLk%2BiAs8McUi3k59GxtRZLj9Qhx38UjEtW3fuI5wO0lp1YD2IHlRDZV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4544&min_rtt=1498&rtt_var=3235&sent=77&recv=43&lost=0&retrans=0&sent_bytes=51891&recv_bytes=5241&delivery_rate=2429288&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=1249&x=16"

hydrahd.sh/themes/bigholder.png

172.67.201.25

200 OK

4.3 kB

URL GET
hydrahd.sh/themes/bigholder.png
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 1280 x 720, 8-bit/color RGB, non-interlaced
Size
4.3 kB (4271 bytes)
Hash
67a1805382bc8f356a57bb67b0edecc7
6a8fff61c2c63ff6249a9238f932b7fa24d41fa0
dc3d628349e53ebec5fa01a0315ded89bce87b3b68ba6197c7f218b9595d618d

HTTP Headers

GET /themes/bigholder.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: image/png
content-length: 4271
referrer-policy: same-origin
last-modified: Mon, 04 Mar 2024 17:21:20 GMT
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 537944
accept-ranges: bytes
cf-ray: 93899eaa5a42712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F9u1zsvLLrEANMFi%2BjPA2BhE41eGyspCLc%2BRo3wmOjHAL05btGQXc0s59TwWqnv1wRjHjIvpOyY5D8jbM2Ncs09juuEj6uZsndXVtk81gwXlEAhyvKBUS02GtZhY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4580&min_rtt=1498&rtt_var=2535&sent=39&recv=34&lost=0&retrans=0&sent_bytes=16490&recv_bytes=4089&delivery_rate=2231&cwnd=12000&unsent_bytes=0&cid=390dac065012276b&ts=557&x=16"

hydrahd.sh/assets/all.js?v=1.2.5

172.67.201.25

200 OK

7.0 kB

URL GET
hydrahd.sh/assets/all.js?v=1.2.5
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
7.0 kB (7010 bytes)
Hash
cb51242b7afb80164f884354d5ef0308
d35a904a5629f44ae666136de9eb5bc24b87c859
c5e34b1fb2b41fe91cf5697be2c19a6805c0294a8508b6b0f640c68568bc228b

HTTP Headers

GET /assets/all.js?v=1.2.5 HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: text/javascript
referrer-policy: same-origin
x-content-type-options: nosniff
last-modified: Wed, 23 Apr 2025 13:08:31 GMT
age: 2530
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 93899eaa6a47712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O5AYwnZ84nnWu3YcCy7UNGW%2BNoCLyKe0sf4fUxNgfkt7feluNoZAiDy2XGDv5cx1jwZv3ShkRkCs91dt%2B9J1wZeAseaIhowktuRT5kdNPQsgRXCCWwfJcp1dVBEH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4226&min_rtt=1498&rtt_var=2116&sent=64&recv=36&lost=0&retrans=0&sent_bytes=42034&recv_bytes=4177&delivery_rate=6048221&cwnd=29400&unsent_bytes=0&cid=390dac065012276b&ts=565&x=16"

image.tmdb.org/t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg

169.150.247.34

200 OK

382 kB

URL GET
image.tmdb.org/t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
382 kB (381974 bytes)
Hash
7275fb09b0da02ec5a786a44652579a6
0e022990e468e6b808de8f9a9def9f8d84303b52
bc2f40ba43049562e8dcd256a1f1176d33945687718d455caa9bf6ce39aaf905

HTTP Headers

GET /t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 381974
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 25 Apr 2025 06:32:32 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 962315
x-bo-origindownloadtime: 681
x-bo-compressionratio: 60.31%
x-bo-processingtime: 369
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/25/2025 06:32:34
cdn-edgestorageid: 865
cdn-requestid: a491268015ac1c2fa072da16551871fe
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/bkbmInoAnEaMH4oxpXAXWwKr8Kd.jpg

169.150.247.34

200 OK

27 kB

URL GET
image.tmdb.org/t/p/w342/bkbmInoAnEaMH4oxpXAXWwKr8Kd.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
27 kB (27334 bytes)
Hash
9d76b21edf04ceb574f4d22577e384e4
6406ecafc8770521b86724a4bb79a3a1c7dc071b
5ff47db0175b8bf6ca25c52d6b765a851013795b8cf48499cc8c1e57d724fbaf

HTTP Headers

GET /t/p/w342/bkbmInoAnEaMH4oxpXAXWwKr8Kd.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 27334
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Tue, 01 Apr 2025 23:36:44 GMT
perma-cache: MISS
x-bo-server: LA-289
x-downloadsize: 32116
x-bo-origindownloadtime: 409
x-bo-compressionratio: 14.89%
x-bo-processingtime: 11
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/01/2025 23:36:44
cdn-edgestorageid: 1047
cdn-requestid: 3e126d9373ddd7ba549df6b2b4f9ed74
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg

169.150.247.34

200 OK

1.5 MB

URL GET
image.tmdb.org/t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3000x1688, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.5 MB (1494828 bytes)
Hash
060657f27f211d873f8ba28e966a2ba3
b9c506f08a0ad7176dc1fe59b70ad7080c2f7534
ba183d53da80f60bd4e3f411961063a245f2c177eaee51c5cba89858c7db770f

HTTP Headers

GET /t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:33 GMT
content-type: image/webp
content-length: 1494828
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 03:35:50 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 1582037
x-bo-origindownloadtime: 15786
x-bo-compressionratio: 5.51%
x-bo-processingtime: 1218
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 03:36:07
cdn-edgestorageid: 864
cdn-requestid: bfc6100dcae32702dee3c49969c9f680
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png

169.150.247.34

200 OK

38 kB

URL GET
image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
38 kB (37970 bytes)
Hash
b7b3c852f5be46c8bde74f42376f4552
766a0460078cf43c3502aa0c280e1c3c4e186a2b
a56322df47bf984ae2792a530087eeb840eda9c1e68d4f8b85da5a389ae1ad5f

HTTP Headers

GET /t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:33 GMT
content-type: image/webp
content-length: 37970
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 06:58:56 GMT
perma-cache: MISS
x-bo-server: LA-289
x-downloadsize: 51755
x-bo-origindownloadtime: 337
x-bo-compressionratio: 26.64%
x-bo-processingtime: 13
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 06:58:57
cdn-edgestorageid: 1047
cdn-requestid: fad3d2a27a4988407f652ff0b17ef4f9
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png

169.150.247.34

200 OK

7.4 kB

URL GET
image.tmdb.org/t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
PNG image data, 342 x 72, 8-bit gray+alpha, non-interlaced
Size
7.4 kB (7426 bytes)
Hash
837b8c35e9338bc68181805677c98cdf
a98199bb93f0a62f043d621843b931937b17cb90
f35312655df8fbe57b2cda8a7ab43d4f4f2ce68db8e6ec80e31171dbc138db96

HTTP Headers

GET /t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:39 GMT
content-type: image/webp
content-length: 7426
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 04:11:06 GMT
perma-cache: MISS
x-bo-server: LA-291
x-downloadsize: 7426
x-bo-origindownloadtime: 487
x-bo-compressionratio: 0%
x-bo-processingtime: 27
x-bo-version: 1.0.26
x-bo-processing-error: 104
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 04:11:06
cdn-edgestorageid: 1047
cdn-requestid: 21c9d011b884102eccaceb94738825ca
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js

142.250.74.42

200 OK

90 kB

URL GET
ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89795 bytes)
Hash
641dd14370106e992d352166f5a07e99
eda46747c71d38a880bee44f9a439c3858bb8f99
a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af

HTTP Headers

GET /ajax/libs/jquery/3.6.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31154
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 14:48:28 GMT
expires: Fri, 24 Apr 2026 14:48:28 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 04 Apr 2023 03:27:01 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 537060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/eujLbO0kf1eqWC8XpHUJdtAVW2J.jpg

169.150.247.34

200 OK

36 kB

URL GET
image.tmdb.org/t/p/w342/eujLbO0kf1eqWC8XpHUJdtAVW2J.jpg
IP
169.150.247.34:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
36 kB (36514 bytes)
Hash
7c3fb1794488e416d7f8ef3f749e036f
3befa03f34cc2a4315a9a1ac62719003d6bcc678
d0618fea5a33c3ffccb0c9981c5fcb92b0b248ffc620b283d280cbfa7d0bc7cd

HTTP Headers

GET /t/p/w342/eujLbO0kf1eqWC8XpHUJdtAVW2J.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:29 GMT
content-type: image/webp
content-length: 36514
server: BunnyCDN-DE1-1077
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sat, 12 Apr 2025 05:36:48 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 39578
x-bo-origindownloadtime: 381
x-bo-compressionratio: 7.74%
x-bo-processingtime: 12
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/12/2025 05:36:48
cdn-edgestorageid: 1054
cdn-requestid: fe029fc3badfb670b712de70c8fe51fb
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

hydrahd.sh/

172.67.201.25

200 OK

244 kB

URL User Request GET
hydrahd.sh/
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
HTML document, ASCII text, with very long lines (759), with CRLF line terminators
Size
244 kB (244239 bytes)
Hash
9e469b35aede8f35310af77ab8b4fb5b
a28b0477598aac8fad48acfe93c24b9d2c01ed6d
1a37933964fbe7c4b5e385cd6fd5c4d767d5a94c428503fab9a8380101856319

HTTP Headers

GET / HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3; path=/; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KaUkujnfVteEgvtcI6XZzrjpr7SLugK50yCXrBdZe%2FV2kWEe6D7rp4qPPAD%2BzAD709rACO39nnp56wyqkOy%2F%2FahAcycid896LiYEQjC2CC1i0PB%2BNSbNW6xxStjj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
cf-ray: 93899ea71bc05690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4989&min_rtt=388&rtt_var=9089&sent=11&recv=14&lost=0&retrans=0&sent_bytes=4215&recv_bytes=1202&delivery_rate=7515570&cwnd=256&unsent_bytes=0&cid=4652c1eda25a998d&ts=353&x=0"
X-Firefox-Spdy: h2

hydrahd.sh/fav-192.png

172.67.201.25

200 OK

7.1 kB

URL GET
hydrahd.sh/fav-192.png
IP
172.67.201.25:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7095 bytes)
Hash
f30e09b86e182e263667a5d867894879
7acc08f6449133e0a26cae18b97c8049633d25fd
e2439ea059b8875a870c946b48c3164434bc4c308331a36e9f32f35de6ecf5a8

HTTP Headers

GET /fav-192.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=hhlejo284rrc28dblf16deagg3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 30 Apr 2025 19:59:28 GMT
content-type: image/png
content-length: 7095
referrer-policy: same-origin
last-modified: Tue, 27 Feb 2024 08:28:31 GMT
accept-ranges: bytes
cache-control: public, max-age=1209600
age: 537943
cf-cache-status: HIT
cf-ray: 93899eaa5a41712b-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ntk58fdntUOqWqfQ4YDgRdc6EUjIs%2FaM9T%2FwfBwGm%2Bn%2FYTfHjqMWOTiJPBahQ1McKLdNUnr4Nky23ZWqtQidGOyTw%2Blo4IY975UYm4Vi5oIo90KmoJjUQelkpoSs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4580&min_rtt=1498&rtt_var=2535&sent=28&recv=34&lost=0&retrans=0&sent_bytes=4490&recv_bytes=4089&delivery_rate=2231&cwnd=12000&unsent_bytes=0&cid=390dac065012276b&ts=552&x=16"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML