Report - hydrahd.sh

Report Overview

Visited public
2025-05-05 22:57:10
Tags
URL
hydrahd.sh
Finishing URL
hydrahd.sh/
IP / ASN
104.21.66.45
#13335 CLOUDFLARENET
Title
HydraHD - Watch Movies and Series in High Definition

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
x3os.com	unknown	unknown	No data	No data	523 B	805 B	139.45.196.64
ajax.googleapis.com	12905	unknown	No data	No data	409 B	91 kB	216.58.211.10
www.googletagmanager.com	75	unknown	No data	No data	401 B	324 kB	142.250.74.168
hydrahd.sh	unknown	unknown	No data	No data	4.8 kB	389 kB	104.21.66.45
image.tmdb.org	17757	unknown	No data	No data	8.2 kB	7.2 MB	169.150.247.33
cdnjs.cloudflare.com	235	unknown	No data	No data	1.4 kB	251 kB	104.17.25.14
cdn.jsdelivr.net	439	unknown	No data	No data	823 B	174 kB	151.101.65.229
paupsoborofoow.net	unknown	unknown	No data	No data	382 B	103 kB	104.21.50.180

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-05	medium	paupsoborofoow.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	hydrahd.sh/assets/all.js?v=1.2.5	ScriptElement	7.0 kB	2025-04-29	2025-05-07
Pretty URL hydrahd.sh/assets/all.js?v=1.2.5 IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-29 21:14 Last Seen2025-05-07 09:01 Times Seen9 Hash cb51242b7afb80164f884354d5ef0308 d35a904a5629f44ae666136de9eb5bc24b87c859 c5e34b1fb2b41fe91cf5697be2c19a6805c0294a8508b6b0f640c68568bc228b Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js	ScriptElement	90 kB	2023-03-26	2025-05-07
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 04:59 Last Seen2025-05-07 22:49 Times Seen7447 Hash 641dd14370106e992d352166f5a07e99 eda46747c71d38a880bee44f9a439c3858bb8f99 a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af Loading...

	cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js	ScriptElement	140 kB	2023-03-07	2025-05-07
Pretty URL cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:40 Last Seen2025-05-07 09:01 Times Seen123 Hash 6f58af87fc5b0cbd1565f351e2100baa 7e4298d37286d378590b16260baf31fe845158da 9134d7339572e8528974863492e41962d0eb10362053f83305e49bb4a7e8f280 Loading...

	hydrahd.sh/	ScriptElement	3.7 kB	2025-03-09	2025-05-07
Pretty URL hydrahd.sh/ IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-09 17:21 Last Seen2025-05-07 09:01 Times Seen11 Hash 4032f04d97b3136c42c9d71c16e041fa 57e199ebc927beb0540fc8f5092c47b10cbac9b9 85b1b6b31c8be6bfb645edf9dfc0127e3a21755639b3a1a833b825284b151b09 Loading...

	www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3	ScriptElement	323 kB	2025-05-05	2025-05-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-05 22:57 Last Seen2025-05-05 22:57 Times Seen1 Hash e629cd5740d1520efd00fdcedd8ccb79 bb785b2be1515344621bd24555a1611ccb4dd45d e0a81067a35d768313b1ca04eae200265df2e46f4512a7d5f1a99feda2e3794a Loading...

	paupsoborofoow.net/tag.min.js	ScriptElement	103 kB	2025-05-03	2025-05-06
Pretty URL paupsoborofoow.net/tag.min.js IP 104.21.50.180 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-03 03:18 Last Seen2025-05-06 06:00 Times Seen6 Hash 4f005d2cd01a69e2108192790965cdcc 2ce2956f574896983e49473382cec5d7f66e49bc 4f0c18300d3a8c3b132b2d1e700a23e98fa78e8617491b4481388ffad9394f8a Loading...

	hydrahd.sh/	ScriptElement	850 B	2024-12-18	2025-05-07
Pretty URL hydrahd.sh/ IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-18 18:31 Last Seen2025-05-07 09:01 Times Seen15 Hash f65efffefb2f67a493f292c369a76cdb f3a8c0e2952767315587be58f32e3f36341666da 00d656dd1a2705dded13c9f474b930ea287429c581669eec91a9e456f8ebd98f Loading...

	hydrahd.sh/	ScriptElement	153 B	2025-04-29	2025-05-07
Pretty URL hydrahd.sh/ IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-29 21:14 Last Seen2025-05-07 09:01 Times Seen9 Hash 35e8f51b6c2ea88d8d8c16fc8a10d46f 6139c70485cc7f6ae065bd34b1ba8d8ef9ef917a 57edcf165aeb6185766ff3916656b94d1b724ee835a539ae63f2e7d1ab23382a Loading...

	cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js	ScriptElement	154 kB	2025-03-20	2025-05-08
Pretty URL cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-20 00:24 Last Seen2025-05-08 04:16 Times Seen449 Hash 750b7e1509868702d0abedc196e7884c 75754999460b5d7130bc6d77248b9e15cfdfad6b 517e6bfba591ce6dd983f04b92e80ccb1d29f50e769f47d1aa07bf659ab31419 Loading...

	hydrahd.sh/	ScriptElement	564 B	2024-04-30	2025-05-07
Pretty URL hydrahd.sh/ IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-30 22:42 Last Seen2025-05-07 09:01 Times Seen32 Hash 887c6876783164da80633a5870003ed8 0dfd9c1bce41c94c4e46dd407faed7d694c0d20e c979701eb5c1a24e0cd26f86ca2f17772c15645c1a9beef6c99d7aaadee48b24 Loading...

	hydrahd.sh/	ScriptElement	198 B	2025-04-29	2025-05-07
Pretty URL hydrahd.sh/ IP 104.21.66.45 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-29 21:14 Last Seen2025-05-07 09:01 Times Seen9 Hash 7af1cb2bb3a4996be028b0e4f5b79bc8 05ace771c5a969e77970959137d1a3e9c97f1c24 0132f000901200c50a24950fd931de5a82947a64c1e5375295253dcb9cf33cb1 Loading...

HTTP Transactions (38)

URL IP Response Size

hydrahd.sh/assets/main.css?v=2.3

104.21.66.45

200 OK

7.5 kB

URL GET
hydrahd.sh/assets/main.css?v=2.3
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
ASCII text, with very long lines (599)
Size
7.5 kB (7547 bytes)
Hash
73f328146d8b7df53955188e776cc1d3
2679357ce89197758a6f21c6950bcee14f374a93
0154c97ba6bc99697b94caff9d621ac9385b7d0dc4cf76cf78b6d94daa781771

HTTP Headers

GET /assets/main.css?v=2.3 HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: text/css
server: cloudflare
x-xss-protection: 1; mode=block
last-modified: Fri, 06 Dec 2024 22:04:26 GMT
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: HIT
age: 5513
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
content-encoding: br
cf-ray: 93b3d503b89156a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hydrahd.sh/fav-192.png

104.21.66.45

200 OK

7.1 kB

URL GET
hydrahd.sh/fav-192.png
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7095 bytes)
Hash
f30e09b86e182e263667a5d867894879
7acc08f6449133e0a26cae18b97c8049633d25fd
e2439ea059b8875a870c946b48c3164434bc4c308331a36e9f32f35de6ecf5a8

HTTP Headers

GET /fav-192.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: image/png
content-length: 7095
server: cloudflare
last-modified: Tue, 27 Feb 2024 08:28:31 GMT
accept-ranges: bytes
x-frame-options: SAMEORIGIN
cache-control: public, max-age=1209600
age: 980571
cf-cache-status: HIT
x-xss-protection: 1; mode=block
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
cf-ray: 93b3d503b89856a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg

169.150.247.33

200 OK

382 kB

URL GET
image.tmdb.org/t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
382 kB (381974 bytes)
Hash
7275fb09b0da02ec5a786a44652579a6
0e022990e468e6b808de8f9a9def9f8d84303b52
bc2f40ba43049562e8dcd256a1f1176d33945687718d455caa9bf6ce39aaf905

HTTP Headers

GET /t/p/original/segpvueoaTyzZcgTTNr4QMvefqe.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:47 GMT
content-type: image/webp
content-length: 381974
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 25 Apr 2025 06:32:32 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 962315
x-bo-origindownloadtime: 681
x-bo-compressionratio: 60.31%
x-bo-processingtime: 369
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/25/2025 06:32:34
cdn-edgestorageid: 865
cdn-requestid: 89510eea3b19b5de11c9e7a02ffaed12
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/rthMuZfFv4fqEU4JVbgSW9wQ8rs.jpg

169.150.247.33

200 OK

2.6 MB

URL GET
image.tmdb.org/t/p/original/rthMuZfFv4fqEU4JVbgSW9wQ8rs.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.6 MB (2622612 bytes)
Hash
5e9e03599d31efdf55595010869a662e
bcda46bc331e22044e325d3ebd12c491d6fb3346
d4dbca802a21f493911156a5bb161b3e099c7ff28070fa50dcdd6029d392d475

HTTP Headers

GET /t/p/original/rthMuZfFv4fqEU4JVbgSW9wQ8rs.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 2622612
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Thu, 10 Apr 2025 19:37:04 GMT
perma-cache: MISS
x-bo-server: LA-296
x-downloadsize: 2875767
x-bo-origindownloadtime: 1763
x-bo-compressionratio: 8.8%
x-bo-processingtime: 1600
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/10/2025 19:37:08
cdn-edgestorageid: 1047
cdn-requestid: 917147a36d731bb145a2d3f49fb94d94
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.25.14

200 OK

31 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: text/css; charset=utf-8
content-length: 5631
server: cloudflare
strict-transport-security: max-age=15780000
cf-ray: 93b3d503db0056ae-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 220851
expires: Sat, 25 Apr 2026 22:56:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O3EzyGWk%2FCBQCO4fczyJUcGAI%2Besm%2BT%2BhHTXYovoyquF0ldO0EqR83YBwmrMsSchOFbCe6RmWalc57aWzuwdO5m6J%2BTDMHuNhkFvHM0qXxKPAMJngQaIQkDZa5ebfafjZCIp1FB%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hydrahd.sh/fav-192.png

104.21.66.45

200 OK

7.1 kB

URL GET
hydrahd.sh/fav-192.png
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7095 bytes)
Hash
f30e09b86e182e263667a5d867894879
7acc08f6449133e0a26cae18b97c8049633d25fd
e2439ea059b8875a870c946b48c3164434bc4c308331a36e9f32f35de6ecf5a8

HTTP Headers

GET /fav-192.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/png
content-length: 7095
referrer-policy: same-origin
last-modified: Tue, 27 Feb 2024 08:28:31 GMT
accept-ranges: bytes
cache-control: public, max-age=1209600
age: 980572
cf-cache-status: HIT
cf-ray: 93b3d5080c6e5684-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WtI2rcYgu9LdJBiKRu9%2BENLFLf%2FaAcxXO0D%2BN72GWhtkhXDQ6iIH2Yihp%2BlhXxmvffgwyPg7bWBkNUIOJZg8jU4tSHIDC%2FQvs%2FLaxoFsWBX9aesJIs3Fyh0W4cpS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3206&min_rtt=489&rtt_var=2571&sent=84&recv=117&lost=0&retrans=0&sent_bytes=7633&recv_bytes=7153&delivery_rate=92078&cwnd=12000&unsent_bytes=0&cid=a733a85aea0c44b1&ts=948&x=16"

hydrahd.sh/themes/logoholder.png

104.21.66.45

200 OK

754 B

URL GET
hydrahd.sh/themes/logoholder.png
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 342 x 134, 8-bit/color RGBA, non-interlaced
Size
754 B (754 bytes)
Hash
1af949c7e7d9f612e79902e7fcb9ece4
9e10cb9cf890db4d65e82af5866e4fc8d6f16e45
3549b22743cb2f2b5e9553bc8361b067efbdb5dc23f65e9a0356d0e167500bcb

HTTP Headers

GET /themes/logoholder.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: image/png
content-length: 754
server: cloudflare
x-xss-protection: 1; mode=block
last-modified: Mon, 09 Dec 2024 17:27:39 GMT
x-frame-options: SAMEORIGIN
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 980572
accept-ranges: bytes
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
cf-ray: 93b3d503c89c56a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js

151.101.65.229

200 OK

154 kB

URL GET
cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://hydrahd.sh/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
JavaScript source, ASCII text, with very long lines (65281)
Size
154 kB (154008 bytes)
Hash
750b7e1509868702d0abedc196e7884c
75754999460b5d7130bc6d77248b9e15cfdfad6b
517e6bfba591ce6dd983f04b92e80ccb1d29f50e769f47d1aa07bf659ab31419

HTTP Headers

GET /npm/swiper@11/swiper-bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.2.6
x-jsd-version-type: version
etag: W/"25998-dXVJmUYLXXEwvG13JIueFc/frWs"
content-encoding: br
accept-ranges: bytes
date: Mon, 05 May 2025 22:56:36 GMT
age: 31361
x-served-by: cache-fra-etou8220075-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 43827
X-Firefox-Spdy: h2

hydrahd.sh/assets/old.css

104.21.66.45

200 OK

98 kB

URL GET
hydrahd.sh/assets/old.css
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
ASCII text, with very long lines (65308), with CRLF line terminators
Size
98 kB (98311 bytes)
Hash
e366ad4733d952d96d422bebe2e80c1a
de141a84cd9af48e93a25654a5506ed6ea0f6c53
5e5937b2ceed6be25a8db4efad440b4fdb05a36c245f8a32addfe882d1853c77

HTTP Headers

GET /assets/old.css HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: text/css
server: cloudflare
last-modified: Mon, 26 Feb 2024 15:01:15 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
age: 6744
cache-control: max-age=14400
cf-cache-status: HIT
x-xss-protection: 1; mode=block
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
content-encoding: br
cf-ray: 93b3d503b89256a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hydrahd.sh/themes/bigholder.png

104.21.66.45

200 OK

4.3 kB

URL GET
hydrahd.sh/themes/bigholder.png
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 1280 x 720, 8-bit/color RGB, non-interlaced
Size
4.3 kB (4271 bytes)
Hash
67a1805382bc8f356a57bb67b0edecc7
6a8fff61c2c63ff6249a9238f932b7fa24d41fa0
dc3d628349e53ebec5fa01a0315ded89bce87b3b68ba6197c7f218b9595d618d

HTTP Headers

GET /themes/bigholder.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: image/png
content-length: 4271
server: cloudflare
x-xss-protection: 1; mode=block
last-modified: Mon, 04 Mar 2024 17:21:20 GMT
x-frame-options: SAMEORIGIN
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 980572
accept-ranges: bytes
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
cf-ray: 93b3d503c89b56a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

paupsoborofoow.net/tag.min.js

104.21.50.180

200 OK

103 kB

URL GET
paupsoborofoow.net/tag.min.js
IP
104.21.50.180:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectpaupsoborofoow.net
FingerprintBB:AB:82:1F:E9:CA:54:E5:11:30:EC:4D:A7:12:04:8F:33:BE:0C:B5
ValidityMon, 31 Mar 2025 22:57:38 GMT - Sun, 29 Jun 2025 23:55:55 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (102563 bytes)
Hash
4f005d2cd01a69e2108192790965cdcc
2ce2956f574896983e49473382cec5d7f66e49bc
4f0c18300d3a8c3b132b2d1e700a23e98fa78e8617491b4481388ffad9394f8a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: paupsoborofoow.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: application/javascript
server: cloudflare
x-trace-id: dcb8c05607a6a3f07e320f709e98edd7
cache-control: public, max-age=600, s-maxage=1800
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
content-encoding: gzip
age: 720
cf-cache-status: HIT
last-modified: Mon, 05 May 2025 22:44:36 GMT
cf-ray: 93b3d5078ad6568b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/qWTfHG8KdXwr0bqypYbNZLenh0J.jpg

169.150.247.33

200 OK

13 kB

URL GET
image.tmdb.org/t/p/w342/qWTfHG8KdXwr0bqypYbNZLenh0J.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
13 kB (13338 bytes)
Hash
27a82aee41e4975fce12cd3b8ff73261
de6de676a37001a80309b8576051a0926aa3bc19
4f55b2b47ddc8370763a35e173751a67b707f0210926e1c9254f5c28d81aa676

HTTP Headers

GET /t/p/w342/qWTfHG8KdXwr0bqypYbNZLenh0J.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 13338
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "68051b19-341a"
last-modified: Sun, 20 Apr 2025 16:04:41 GMT
cdn-storageserver: NY-753
cdn-requestpullsuccess: True
cdn-fileserver: 703
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/20/2025 16:35:11
cdn-edgestorageid: 1054
cdn-requestid: 92ff31971a8fa24794322b66e33b5e97
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/hqcexYHbiTBfDIdDWxrxPtVndBX.jpg

169.150.247.33

200 OK

38 kB

URL GET
image.tmdb.org/t/p/w342/hqcexYHbiTBfDIdDWxrxPtVndBX.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
38 kB (38002 bytes)
Hash
61565df7f2461e2485f6df537ff38423
e8e9fdf5283e4628261eaf3799bc7bcdf2b6eb21
c2f2ace0e672cae817f00c6f87166c9bb4343ec484362cf1ff15fb25c9641a44

HTTP Headers

GET /t/p/w342/hqcexYHbiTBfDIdDWxrxPtVndBX.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 38002
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 09 Apr 2025 23:03:50 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 49121
x-bo-origindownloadtime: 798
x-bo-compressionratio: 22.64%
x-bo-processingtime: 12
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/09/2025 23:03:51
cdn-edgestorageid: 1076
cdn-requestid: 3b2f8ac849bf3680b5aecb9d38a6563a
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg

169.150.247.33

200 OK

39 kB

URL GET
image.tmdb.org/t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
39 kB (38594 bytes)
Hash
f6b3149823d7aeca772f0696ac84898e
6a3cd3c9fdc1a986a8865d81a709a19351a6125a
4c7a1a7a32a5b9c442e3adef68aa63882534eb142522d424840699dd0d8fd377

HTTP Headers

GET /t/p/w342/nhcNm2u8iCL6BbrZmRMUxvHJNor.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 38594
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 08:25:05 GMT
perma-cache: MISS
x-bo-server: LA-290
x-downloadsize: 45533
x-bo-origindownloadtime: 342
x-bo-compressionratio: 15.24%
x-bo-processingtime: 19
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 08:25:05
cdn-edgestorageid: 864
cdn-requestid: a8d58fd4116d2a0dae0339ec93ba3426
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

hydrahd.sh/

104.21.66.45

200 OK

243 kB

URL User Request GET
hydrahd.sh/
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
HTML document, ASCII text, with very long lines (512), with CRLF line terminators
Size
243 kB (242838 bytes)
Hash
9227078371841e850f6b9799c9fea026
f89940efb754d5e1d26d358ed0cb393c60148697
351873c7c675d9ac831b5495810ff51c14727338426caef8ac26dbc17b55144d

HTTP Headers

GET / HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:35 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
content-encoding: br
set-cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2; HttpOnly; Secure; Path=/
cf-ray: 93b3d4ff9e1756a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js

104.17.25.14

200 OK

140 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/Swiper/6.4.5/swiper-bundle.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65279)
Size
140 kB (139826 bytes)
Hash
6f58af87fc5b0cbd1565f351e2100baa
7e4298d37286d378590b16260baf31fe845158da
9134d7339572e8528974863492e41962d0eb10362053f83305e49bb4a7e8f280

HTTP Headers

GET /ajax/libs/Swiper/6.4.5/swiper-bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 31990
server: cloudflare
strict-transport-security: max-age=15780000
cf-ray: 93b3d503f87cb4ff-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fdcfa8c-22232"
last-modified: Fri, 18 Dec 2020 18:53:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 222248
expires: Sat, 25 Apr 2026 22:56:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6SmgediY%2BrT1suLyaMCf%2BVQFcVNg11xGNQWq57nLm01v6KgZ1u6RUOBLRoQtx9Igjq1LFWyDk1djBZc5X4UGb%2BPVeOwz2T%2FYA0ED7KpzBIzYz1RhyXLesgG0%2FCopExT06HlSvWdy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png

169.150.247.33

200 OK

7.4 kB

URL GET
image.tmdb.org/t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
PNG image data, 342 x 72, 8-bit gray+alpha, non-interlaced
Size
7.4 kB (7426 bytes)
Hash
837b8c35e9338bc68181805677c98cdf
a98199bb93f0a62f043d621843b931937b17cb90
f35312655df8fbe57b2cda8a7ab43d4f4f2ce68db8e6ec80e31171dbc138db96

HTTP Headers

GET /t/p/w342/msYtgZbEo8tAOJ37T50kgqulpKf.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:42 GMT
content-type: image/webp
content-length: 7426
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 04:11:06 GMT
perma-cache: MISS
x-bo-server: LA-291
x-downloadsize: 7426
x-bo-origindownloadtime: 487
x-bo-compressionratio: 0%
x-bo-processingtime: 27
x-bo-version: 1.0.26
x-bo-processing-error: 104
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 04:11:06
cdn-edgestorageid: 1047
cdn-requestid: c44cff19ac28ba045c261f86e3beac1f
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png

169.150.247.33

200 OK

34 kB

URL GET
image.tmdb.org/t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
34 kB (34436 bytes)
Hash
be4fa4b4931fde1e78ddb191568d6425
efb99f75fa7a6212d9b890ee5eeb4e3f5a4d84ac
acd1efbb76923ca0d690252f12354f0d8053e3c258d745a6b12fbde4bd6b188e

HTTP Headers

GET /t/p/w342/qammxyQhPXaXqEnPWMmnkllGrI7.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:47 GMT
content-type: image/webp
content-length: 34436
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "680c8374-8684"
last-modified: Sat, 26 Apr 2025 06:55:48 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 916
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/26/2025 06:55:56
cdn-edgestorageid: 865
cdn-requestid: 92d88ba831f17aef5c034cf4fd7bb34d
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/nkUqSWsy1pfXjqta8UTNEA4FwcX.png

169.150.247.33

200 OK

7.5 kB

URL GET
image.tmdb.org/t/p/w342/nkUqSWsy1pfXjqta8UTNEA4FwcX.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
7.5 kB (7478 bytes)
Hash
d8bc3260318aa7107c3f162d8cf6f83e
6ad6b2c50f196cb93e7e2dadcdec24add6d1d9ea
be9691a726f68bda3bba1a60b50f8278ce53ac91cfb2a52d59f55674338be191

HTTP Headers

GET /t/p/w342/nkUqSWsy1pfXjqta8UTNEA4FwcX.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 7478
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "680f4579-1d36"
last-modified: Mon, 28 Apr 2025 09:08:09 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 832
perma-cache: HIT
cdn-proxyver: 1.27
cdn-requestpullcode: 200
cdn-cachedat: 05/03/2025 20:36:33
cdn-edgestorageid: 1048
cdn-requestid: baaa16af0f39ba0fdf4d7de11c6e57e2
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

x3os.com/5/9258380/?oo=1&js_build=iclick-v1.1132.0&dmn=paupsoborofoow.net&tt=2&ix=0

139.45.196.64

204 No Content

0 B

URL POST
x3os.com/5/9258380/?oo=1&js_build=iclick-v1.1132.0&dmn=paupsoborofoow.net&tt=2&ix=0
IP
139.45.196.64:443
ASN
#9002 RETN Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectx3os.com
Fingerprint50:C0:EA:5D:F8:E5:56:73:E2:8F:35:76:0A:C7:E0:08:49:F5:FD:AB
ValidityTue, 22 Apr 2025 14:19:12 GMT - Mon, 21 Jul 2025 14:19:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /5/9258380/?oo=1&js_build=iclick-v1.1132.0&dmn=paupsoborofoow.net&tt=2&ix=0 HTTP/1.1
Host: x3os.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2511
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Mon, 05 May 2025 22:56:38 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://hydrahd.sh
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css

151.101.65.229

200 OK

18 kB

URL GET
cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://hydrahd.sh/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint6C:45:F5:9E:D3:37:60:0B:9C:A8:28:29:A4:E6:41:33:BB:2E:76:5C
ValidityTue, 30 Jul 2024 15:36:05 GMT - Sun, 31 Aug 2025 15:36:04 GMT

File type
ASCII text, with very long lines (18199)
Size
18 kB (18454 bytes)
Hash
2a1dc9ac6fde65e0796bef83a8e57dfd
4210c1743d816399f7c0b9f8365fabbb2e991009
ef7ee2f59686b2f281d608185071fe95f5fd27f252842e628113877e15b7d24a

HTTP Headers

GET /npm/swiper@11/swiper-bundle.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 11.2.6
x-jsd-version-type: version
etag: W/"4816-QhDBdD2BY5n3wLn4Nl+ruy6ZEAk"
content-encoding: br
accept-ranges: bytes
date: Mon, 05 May 2025 22:56:36 GMT
age: 159
x-served-by: cache-fra-eddf8230090-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4472
X-Firefox-Spdy: h2

hydrahd.sh/fav-180.png

104.21.66.45

200 OK

6.3 kB

URL GET
hydrahd.sh/fav-180.png
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
6.3 kB (6330 bytes)
Hash
d92cdcd83eb9f173267db3450f79f149
8c56dac3280e625fa11b5fbe06284c7d9aa185b5
5291bd1f2e5eb6cc29007a2080a92fe58836c5ed5a558a478d3bd430eff671d5

HTTP Headers

GET /fav-180.png HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/png
content-length: 6330
referrer-policy: same-origin
last-modified: Tue, 27 Feb 2024 08:28:27 GMT
cache-control: public, max-age=1209600
cf-cache-status: HIT
age: 980572
accept-ranges: bytes
cf-ray: 93b3d5080c6d5684-OSL
server: cloudflare
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J2nQOOXk7ijIzzZ4grDqmFO9kfS7xaggcivuxDc9GM%2FRazG59TqrVUglc7eEUqXt5qPyHT7yrPJ1KZbYzyFVmgpqjM889sx%2BH7fy4AEO%2F2kkLssdBorYSPkTm6H2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
expect-ct: max-age=86400, enforce
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3206&min_rtt=489&rtt_var=2571&sent=91&recv=117&lost=0&retrans=0&sent_bytes=15613&recv_bytes=7153&delivery_rate=92078&cwnd=12000&unsent_bytes=0&cid=a733a85aea0c44b1&ts=950&x=16"

image.tmdb.org/t/p/w342/9dKfToAs8Tecgh0FMgP8upyIlTx.png

169.150.247.33

200 OK

15 kB

URL GET
image.tmdb.org/t/p/w342/9dKfToAs8Tecgh0FMgP8upyIlTx.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
15 kB (15090 bytes)
Hash
b886b685f313053ebbb7e6d1487f53a6
69b34c1e916769d0c7d3cb0859fe9844aa92247c
292783e701be770b866db6e36ada4b43211275b7cca03f0778719693ca864d26

HTTP Headers

GET /t/p/w342/9dKfToAs8Tecgh0FMgP8upyIlTx.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:53 GMT
content-type: image/webp
content-length: 15090
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 02 May 2025 08:38:54 GMT
perma-cache: MISS
x-bo-server: LA-294
x-downloadsize: 17972
x-bo-origindownloadtime: 297
x-bo-compressionratio: 16.04%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.27
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 05/02/2025 08:38:54
cdn-edgestorageid: 1047
cdn-requestid: 3b8e39eff1ca67b1143eb2a1ccbe4056
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg

169.150.247.33

200 OK

34 kB

URL GET
image.tmdb.org/t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
34 kB (33770 bytes)
Hash
9f1c672b3dc8ad7bb5d9a49f06877d98
992905cdf26ce741951d2594c5a12f6b59d6c462
753001ef3b6413a204b9706e89d07c32251baff376ac79279a0feb068bb389b4

HTTP Headers

GET /t/p/w342/pzIddUEMWhWzfvLI3TwxUG2wGoi.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 33770
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 00:25:20 GMT
perma-cache: MISS
x-bo-server: NY-312
x-downloadsize: 38918
x-bo-origindownloadtime: 1207
x-bo-compressionratio: 13.23%
x-bo-processingtime: 12
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 00:25:21
cdn-edgestorageid: 1048
cdn-requestid: 0ec77bfc1974b433dca6f3972526e6a2
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/b6e5Nss2QNoQM4wJv2VppChswNP.jpg

169.150.247.33

200 OK

357 kB

URL GET
image.tmdb.org/t/p/original/b6e5Nss2QNoQM4wJv2VppChswNP.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3000x1688, Scaling: [none]x[none], YUV color, decoders should clamp
Size
357 kB (357076 bytes)
Hash
2d7983c6bd7d77f28775e06cabd30d77
cbd4241f1deef12e4bc7a6b25327e33b5d9ed34d
a9037fa67c97a98e4513a53a54f6d9e38464ee76b4bde18b10d613f26c4b3acf

HTTP Headers

GET /t/p/original/b6e5Nss2QNoQM4wJv2VppChswNP.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:53 GMT
content-type: image/webp
content-length: 357076
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "68140d1e-572d4"
last-modified: Fri, 02 May 2025 00:09:02 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 922
perma-cache: HIT
cdn-proxyver: 1.27
cdn-requestpullcode: 200
cdn-cachedat: 05/02/2025 00:10:08
cdn-edgestorageid: 1075
cdn-requestid: 7464211a83b76bbb7f2ead3d5f6d644c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js

216.58.211.10

200 OK

90 kB

URL GET
ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89795 bytes)
Hash
641dd14370106e992d352166f5a07e99
eda46747c71d38a880bee44f9a439c3858bb8f99
a0fe8723dcf55da64d06b25446d0a8513e52527c45afcb37073465f9c6f352af

HTTP Headers

GET /ajax/libs/jquery/3.6.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31154
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 May 2025 10:29:36 GMT
expires: Fri, 01 May 2026 10:29:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 04 Apr 2023 03:27:01 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 390420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3

142.250.74.168

200 OK

323 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-FSSR5RWVV3
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintB7:82:F3:C7:93:B0:60:B0:83:49:F8:74:0D:49:78:23:65:0B:37:01
ValidityMon, 31 Mar 2025 08:54:29 GMT - Mon, 23 Jun 2025 08:54:28 GMT

File type
JavaScript source, ASCII text, with very long lines (6125)
Size
323 kB (322745 bytes)
Hash
e629cd5740d1520efd00fdcedd8ccb79
bb785b2be1515344621bd24555a1611ccb4dd45d
e0a81067a35d768313b1ca04eae200265df2e46f4512a7d5f1a99feda2e3794a

HTTP Headers

GET /gtag/js?id=G-FSSR5RWVV3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 May 2025 22:56:36 GMT
expires: Mon, 05 May 2025 22:56:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0
report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],}
server: Google Tag Manager
content-length: 113737
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png

0.0.0.0

0 B

URL GET
image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

image.tmdb.org/t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg

169.150.247.33

200 OK

1.3 MB

URL GET
image.tmdb.org/t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.3 MB (1270394 bytes)
Hash
dcb003d748a1b77915c69b7377850450
1d3a5a924dad0a76481fc71155ac4369557c3d0f
e632aa017875074f4e9c95115d3cbf6546f38f2f2f123dd0525d176eee30cd4a

HTTP Headers

GET /t/p/original/nAxGnGHOsfzufThz20zgmRwKur3.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:57:03 GMT
content-type: image/webp
content-length: 1270394
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Sat, 19 Apr 2025 22:42:29 GMT
perma-cache: MISS
x-bo-server: LA-293
x-downloadsize: 1744178
x-bo-origindownloadtime: 485
x-bo-compressionratio: 27.16%
x-bo-processingtime: 722
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/19/2025 22:42:30
cdn-edgestorageid: 865
cdn-requestid: fad3868d3899a992b5d48f718245793a
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 1
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png

169.150.247.33

200 OK

38 kB

URL GET
image.tmdb.org/t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
38 kB (37970 bytes)
Hash
b7b3c852f5be46c8bde74f42376f4552
766a0460078cf43c3502aa0c280e1c3c4e186a2b
a56322df47bf984ae2792a530087eeb840eda9c1e68d4f8b85da5a389ae1ad5f

HTTP Headers

GET /t/p/w342/xwuSAZHLsalFcOut36SDvBPDhZO.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:58 GMT
content-type: image/webp
content-length: 37970
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 06:58:56 GMT
perma-cache: MISS
x-bo-server: LA-289
x-downloadsize: 51755
x-bo-origindownloadtime: 337
x-bo-compressionratio: 26.64%
x-bo-processingtime: 13
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 06:58:57
cdn-edgestorageid: 1047
cdn-requestid: e7f4d0024ca16b13813ffa1f8346479e
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg

169.150.247.33

200 OK

1.5 MB

URL GET
image.tmdb.org/t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3000x1688, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.5 MB (1494828 bytes)
Hash
060657f27f211d873f8ba28e966a2ba3
b9c506f08a0ad7176dc1fe59b70ad7080c2f7534
ba183d53da80f60bd4e3f411961063a245f2c177eaee51c5cba89858c7db770f

HTTP Headers

GET /t/p/original/ajztm40qDPqMONaSJhQ2PaNe2Xd.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:58 GMT
content-type: image/webp
content-length: 1494828
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67edf15d-16cf2c"
last-modified: Thu, 03 Apr 2025 02:24:29 GMT
cdn-storageserver: NY-753
cdn-requestpullsuccess: True
cdn-fileserver: 914
perma-cache: HIT
cdn-proxyver: 1.27
cdn-requestpullcode: 200
cdn-cachedat: 05/05/2025 14:11:37
cdn-edgestorageid: 864
cdn-requestid: 10d7078f48510cb62b886ffc6bd73c5c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

image.tmdb.org/t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg

169.150.247.33

200 OK

795 kB

URL GET
image.tmdb.org/t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3840x2160, Scaling: [none]x[none], YUV color, decoders should clamp
Size
795 kB (794746 bytes)
Hash
bb3d8917410723fa05f5d3c60d73e729
e0c654bea9cd472fe8e0e4bc02de1f0cd00cabee
bcdce6d130873c356044fd994488d9e4653f69c20f824648339a7933e5cf5392

HTTP Headers

GET /t/p/original/uDgy6hyPd82kOHh6I95FLtLnj6p.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:42 GMT
content-type: image/webp
content-length: 794746
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Wed, 02 Apr 2025 04:35:29 GMT
perma-cache: MISS
x-bo-server: LA-291
x-downloadsize: 921331
x-bo-origindownloadtime: 14915
x-bo-compressionratio: 13.74%
x-bo-processingtime: 1208
x-bo-version: 1.0.26
cdn-proxyver: 1.22
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/02/2025 04:35:45
cdn-edgestorageid: 860
cdn-requestid: 510fdcec0049f4b749fca80e7f965c97
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/7VJKex6eL8KwWc37YYHnvpsZPsV.jpg

169.150.247.33

200 OK

33 kB

URL GET
image.tmdb.org/t/p/w342/7VJKex6eL8KwWc37YYHnvpsZPsV.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
33 kB (32736 bytes)
Hash
0433ea28f39eaae68e3e8a8f066d0ad5
f10dcc7b79852b442727669a4e3bd583e8e6fa93
e30ea388259228463f3d2b7af46125690893b218b7d77072de74a480c1e9a304

HTTP Headers

GET /t/p/w342/7VJKex6eL8KwWc37YYHnvpsZPsV.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 32736
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "67fc7821-7fe0"
last-modified: Mon, 14 Apr 2025 02:51:13 GMT
cdn-storageserver: NY-673
cdn-requestpullsuccess: True
cdn-fileserver: 915
perma-cache: HIT
cdn-proxyver: 1.22
cdn-requestpullcode: 200
cdn-cachedat: 04/14/2025 07:55:19
cdn-edgestorageid: 864
cdn-requestid: cdbcdf656b72c81cb93da22b19ddec86
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

hydrahd.sh/assets/all.js?v=1.2.5

104.21.66.45

200 OK

7.0 kB

URL GET
hydrahd.sh/assets/all.js?v=1.2.5
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
7.0 kB (7010 bytes)
Hash
cb51242b7afb80164f884354d5ef0308
d35a904a5629f44ae666136de9eb5bc24b87c859
c5e34b1fb2b41fe91cf5697be2c19a6805c0294a8508b6b0f640c68568bc228b

HTTP Headers

GET /assets/all.js?v=1.2.5 HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: text/javascript
server: cloudflare
last-modified: Wed, 23 Apr 2025 13:08:31 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
age: 542
cache-control: max-age=14400
cf-cache-status: HIT
x-xss-protection: 1; mode=block
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
content-encoding: br
cf-ray: 93b3d503d8a456a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.25.14

200 OK

77 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC
ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hydrahd.sh
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
server: cloudflare
strict-transport-security: max-age=15780000
cf-ray: 93b3d5068c8256ae-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221445
expires: Sat, 25 Apr 2026 22:56:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bd432XLwHJUy8WjL6vJrz7q1qpFzzeQigPHUcq41me%2BTBsDJe0%2FW%2BXEVo2HjSzrkybN%2FAwhB3Y6Vnp6HYcdCQhBDgIVojXl1nQsZVN8%2FSWzacx5El54Xi54evcrbu4noYnyliDXE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png

169.150.247.33

200 OK

14 kB

URL GET
image.tmdb.org/t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image
Size
14 kB (13506 bytes)
Hash
671a404ae515d5a9eacaec186d3d1477
28e50f6d79824cd06342e53a4579d1d6dd0329fd
e4a73d5afa33d184f95de82646f5987ada3062a6c77bd0fc1423efd95f092a3e

HTTP Headers

GET /t/p/w342/neDI3TKo5Pe3hBxas3SHAM83T2e.png HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:57:04 GMT
content-type: image/webp
content-length: 13506
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Mon, 21 Apr 2025 18:46:50 GMT
perma-cache: MISS
x-bo-server: LA-295
x-downloadsize: 13815
x-bo-origindownloadtime: 2372
x-bo-compressionratio: 2.24%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/21/2025 18:46:52
cdn-edgestorageid: 1047
cdn-requestid: a648735986fe7676bc584606c1b2f608
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2

hydrahd.sh/themes/placeholder.jpg

104.21.66.45

200 OK

1.5 kB

URL GET
hydrahd.sh/themes/placeholder.jpg
IP
104.21.66.45:443
ASN
#13335 CLOUDFLARENET

Requested by
https://hydrahd.sh/
Certificate
IssuerGoogle Trust Services
Subjecthydrahd.sh
Fingerprint09:32:01:04:13:A1:D5:B6:8B:31:1B:1D:43:7B:02:B6:90:69:25:57
ValidityFri, 18 Apr 2025 23:42:42 GMT - Fri, 18 Jul 2025 00:40:27 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 180x273, components 3
Size
1.5 kB (1491 bytes)
Hash
929d612a7d53a95fa1256bbd9e496b02
53ddb5054c7d169f411152b3b768a65bf948d483
bc5a2f8848ab097f58bf715501e73888c21fd72356ad39cb26b1878745905559

HTTP Headers

GET /themes/placeholder.jpg HTTP/1.1
Host: hydrahd.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hydrahd.sh/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=656pdq7h0ifqa2i9m2om0berl2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:36 GMT
content-type: image/jpeg
content-length: 1491
server: cloudflare
last-modified: Fri, 22 Dec 2023 14:11:55 GMT
accept-ranges: bytes
x-frame-options: SAMEORIGIN
cache-control: public, max-age=1209600
age: 980571
cf-cache-status: HIT
x-xss-protection: 1; mode=block
expect-ct: max-age=86400, enforce
referrer-policy: same-origin
x-content-type-options: nosniff
cf-ray: 93b3d503c89d56a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg

169.150.247.33

200 OK

26 kB

URL GET
image.tmdb.org/t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg
IP
169.150.247.33:443
ASN
#60068 Datacamp Limited

Requested by
https://hydrahd.sh/
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 342x513, Scaling: [none]x[none], YUV color, decoders should clamp
Size
26 kB (25638 bytes)
Hash
4497bfa42f6a77c30fe5a70029f9cc78
b441aa267a87bd446a51d1c5a82d83cf5c3b8698
50df3e2e3c8cdcc0aff36f434486941844aa047e2c00d13ecc6189f9b653bc45

HTTP Headers

GET /t/p/w342/r46leE6PSzLR3pnVzaxx5Q30yUF.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 05 May 2025 22:56:37 GMT
content-type: image/webp
content-length: 25638
server: BunnyCDN-DE1-1076
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6801a997-6426"
last-modified: Fri, 18 Apr 2025 01:23:35 GMT
cdn-storageserver: NY-833
cdn-requestpullsuccess: True
cdn-fileserver: 792
perma-cache: HIT
cdn-proxyver: 1.23
cdn-requestpullcode: 200
cdn-cachedat: 04/24/2025 05:43:30
cdn-edgestorageid: 874
cdn-requestid: e1353279d0fba1dbbd25536aadca8c1c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML