Report - moviemaze.cc/watch/tv/42009?ep=4&season=7

Report Overview

Visited public
2025-04-19 06:46:55
Tags
URL
moviemaze.cc/watch/tv/42009?ep=4&season=7
Finishing URL
moviemaze.cc/watch/tv/42009?ep=4&season=7
IP / ASN
104.21.96.1
#13335 CLOUDFLARENET
Title
MovieMaze

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
raunooligais.net	unknown	2024-07-14	2024-07-14	2025-03-19	3.5 kB	114 kB	139.45.197.107
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-16	1.7 kB	60 kB	142.250.74.10
touvagristaunoa.com	unknown	2025-01-21	2025-02-08	2025-03-23	1.2 kB	3.6 kB	139.45.197.243
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-04-16	447 B	5.1 kB	142.250.74.99
moviemaze.cc	unknown	unknown	No data	No data	1.9 kB	1.0 MB	104.21.80.1
backend.moviemaze.cc	unknown	2025-04-18	2025-04-19	2025-04-19	2.0 kB	4.4 kB	104.21.112.1
image.tmdb.org	17757	2009-09-15	2021-01-09	2025-04-16	812 B	1.0 kB	169.150.247.35
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-16	1.6 kB	88 kB	142.250.74.35
ainouzaudre.net	unknown	2025-03-17	2025-03-23	2025-04-17	2.2 kB	111 kB	104.18.41.59
my.rtmark.net	9054	2014-10-29	2015-02-04	2025-04-16	1.5 kB	2.6 kB	172.64.146.234
viper.congacdn.cc	unknown	2024-09-29	2024-10-07	2025-03-30	652 B	332 kB	104.21.64.1
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-04-16	494 B	20 kB	104.16.79.73
viper.wonkacdn.cc	unknown	2024-09-29	2025-03-14	2025-04-12	1.3 kB	883 kB	172.67.180.108
embed.su	293079	2024-09-26	2021-08-25	2025-04-16	8.8 kB	1.9 MB	172.67.160.205

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-19	medium	raunooligais.net	Sinkholed
2025-04-19	medium	raunooligais.net	Sinkholed
2025-04-19	medium	raunooligais.net	Sinkholed
2025-04-19	medium	ainouzaudre.net	Sinkholed
2025-04-19	medium	raunooligais.net	Sinkholed
2025-04-19	medium	ainouzaudre.net	Sinkholed
2025-04-19	medium	touvagristaunoa.com	Sinkholed
2025-04-19	medium	ainouzaudre.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff	Function	916 B	2024-12-01	2025-04-20
Pretty URL embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff IP 172.67.160.205 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2024-12-01 08:51 Last Seen2025-04-20 09:32 Times Seen20 Hash 0632424cf6f9626e651e1015ba422dd3 b47ed9700dfbc02deab327b4245db96af38a6c99 3c8afedd6097087360d8e0c4345ae84967980fa06ca670fb1397c05b13ae3e6c Loading...

	embed.su/static/script.js?v1.0.61	ScriptElement	18 kB	2024-12-01	2025-04-20
Pretty URL embed.su/static/script.js?v1.0.61 IP 172.67.160.205 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-01 08:51 Last Seen2025-04-20 09:32 Times Seen21 Hash 1ddd8c9db7e4010aa1ddb77bd81b6bbe aef9b2a1b15e8e0bd696ad6e6819b301284b8333 cb6568fe2d92305c0c507597672b7bf0373e9bafeb5bf7bac4b3e3d52e7ca84b Loading...

	moviemaze.cc/assets/index.js?98733753	ScriptElement	1.0 kB	2025-04-19	2025-04-22
Pretty URL moviemaze.cc/assets/index.js?98733753 IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-19 06:47 Last Seen2025-04-22 00:15 Times Seen2 Hash 41dfa143982517ffec7fa3a8472c9e73 dc1a83a1c8824d5538080eed8f9d58945cfc59e9 88a6d178d2491682374c6dc3ac2ae3619832fd15edfabd4bafb5f2a9ab1e77de Loading...

	embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff	ScriptElement	3.8 kB	2025-04-19	2025-04-19
Pretty URL embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff IP 172.67.160.205 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-19 06:47 Last Seen2025-04-19 06:47 Times Seen1 Hash a7f847c0c1ce5fa95ca8fe3864778abb 91e740d5bed307044ee584bbb0e940d7f1624233 c53139bb6a4a6791488d920a0da22f2a1f825dc0142ebda38ca01c88dcb277c5 Loading...

	moviemaze.cc/watch/tv/42009?ep=4&season=7	ScriptElement	172 B	2025-04-19	2025-04-19
Pretty URL moviemaze.cc/watch/tv/42009?ep=4&season=7 IP 104.21.80.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-19 06:47 Last Seen2025-04-19 06:47 Times Seen1 Hash c8a61b963cfbd2103379543442f535b8 a66a8bc951b8411aeb0838c630e3aadc88bcc2b6 9bc1bdbccd0c6e8f871b9ceaf6fd56817a044ad451a69c047ec30941b9f67f1d Loading...

	embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff	Function	2.9 kB	2024-12-01	2025-04-20
Pretty URL embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff IP 172.67.160.205 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2024-12-01 08:51 Last Seen2025-04-20 09:32 Times Seen21 Hash 9d0ad3dc14220cda1b4595e679aa87b8 e3f4d7a6ccf68c8aff611b0c1d6a66b09eb8bf40 26cf94a608d79510bbc5f316ca6440325720e7e43b48c58fbffe7145b8f1b8af Loading...

	embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff	ScriptElement	172 B	2025-04-19	2025-04-19
Pretty URL embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff IP 172.67.160.205 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-19 06:47 Last Seen2025-04-19 06:47 Times Seen1 Hash bffbecbb4427bd25baba7f45141d02d9 2fab6c0f486132ebf6e6d227af834d2f991d2912 cf5572a1aaee34c26154e692bc9ded2285a0ddfa65cdf5885e3c94c1f92435d0 Loading...

	raunooligais.net/5/8172303	ScriptElement	1.0 kB	2025-04-13	2025-04-20
Pretty URL raunooligais.net/5/8172303 IP 139.45.197.107 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-13 03:46 Last Seen2025-04-20 21:42 Times Seen6 Hash 36b00b7d3d3f97147e09610a396f577a 1a33094f988a59f1e439e828de18bd3a44f24537 2471a4d6df85615899b2f61397c9f37f14c968d6e66f7f10e4eea2033b296069 Loading...

	www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1	ScriptElement	4.3 kB	2023-03-07	2025-05-07
Pretty URL www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1 IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-07 01:44 Times Seen2813 Hash b427175fa1078775eb792756e7b6d1e7 4c55c0233d3d9002b3449c025f97821f8bb8900d ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f Loading...

	ainouzaudre.net/5/8213455	ScriptElement	108 kB	2025-04-19	2025-04-19
Pretty URL ainouzaudre.net/5/8213455 IP 104.18.41.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-19 06:47 Last Seen2025-04-19 06:47 Times Seen1 Hash 5d4b9aef431c1db226ae1a814bfe95cb bdd40278d45efa6f9ba2679d56f81c14e9aa3205 dd264988b5ffe7685c901b5716e6eef5296e8f67bc77c9dde0be57898a28fafd Loading...

HTTP Transactions (50)

URL IP Response Size

embed.su/api/e/fQp7BHRdcEB4cgRNeWZ8CjtWPAM3K3x5BUJ0YX1mfQk4

172.67.160.205

200 OK

4.5 kB

URL GET
embed.su/api/e/fQp7BHRdcEB4cgRNeWZ8CjtWPAM3K3x5BUJ0YX1mfQk4
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JSON text data
Size
4.5 kB (4478 bytes)
Hash
caa92f46753c0e49557919132ab549d8
4273776646ea0ab5a5b2cbfd0884be68619b4c1c
fe6d37dd42ec9f52d73c27c1cf8fbd6eacf488ba269debf8e9b8d8819e4ec47e

HTTP Headers

GET /api/e/fQp7BHRdcEB4cgRNeWZ8CjtWPAM3K3x5BUJ0YX1mfQk4 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:39 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Sat, 19 Apr 2025 02:51:10 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 991
content-encoding: br
cf-ray: 932a722db869b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5917&min_rtt=1758&rtt_var=5587&sent=342&recv=79&lost=0&retrans=0&sent_bytes=345013&recv_bytes=6123&delivery_rate=5020144&cwnd=145200&unsent_bytes=0&cid=b3ed76820ef722b3&ts=2837&x=16"

embed.su/api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/aW5kZXgubTN1OA==.png

172.67.160.205

200 OK

154 kB

URL GET
embed.su/api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/aW5kZXgubTN1OA==.png
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
M3U playlist, ASCII text
Size
154 kB (154137 bytes)
Hash
efcd439b97a82a5a0d1bf377828ee419
e4e7b8843b9b7589f9946e9767c0e36b515424b3
11eb36dd0dae51825bd784fae0d7e4ba85c96c8bfcb8e14a7b8d75718a08ee2b

HTTP Headers

GET /api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/aW5kZXgubTN1OA==.png HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:42 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 23:44:45 GMT
cache-control: max-age=43200
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a7242eb86b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6848&min_rtt=1758&rtt_var=5246&sent=356&recv=88&lost=0&retrans=0&sent_bytes=353039&recv_bytes=9007&delivery_rate=4670&cwnd=145200&unsent_bytes=0&cid=b3ed76820ef722b3&ts=6263&x=16"

www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1

142.250.74.99

200 OK

4.3 kB

URL GET
www.gstatic.com/cv/js/sender/v1/cast_sender.js?loadCastFramework=1
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
JavaScript source, ASCII text, with very long lines (1143)
Size
4.3 kB (4272 bytes)
Hash
b427175fa1078775eb792756e7b6d1e7
4c55c0233d3d9002b3449c025f97821f8bb8900d
ee147e859ad0f09aa50367974e38ab53e7c7054c4a51d400a7f45b0eb251454f

HTTP Headers

GET /cv/js/sender/v1/cast_sender.js?loadCastFramework=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/cloudview
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="cloudview"
report-to: {"group":"cloudview","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/cloudview"}]}
content-length: 2007
date: Sat, 19 Apr 2025 06:46:39 GMT
expires: Sat, 19 Apr 2025 06:46:39 GMT
cache-control: private, max-age=3000
last-modified: Tue, 16 Feb 2021 23:57:06 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

moviemaze.cc/assets/index.js?98733753

104.21.80.1

200 OK

922 kB

URL GET
moviemaze.cc/assets/index.js?98733753
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
JavaScript source, ASCII text, with very long lines (37550)
Size
922 kB (922454 bytes)
Hash
156bd14a55510117efd809f27856994f
7225b417876d9bc0dfcfca3d981fcc221887a666
363432384a508726d0c98a380a0373184ac141bb06ce4c0e3af2338258e21942

HTTP Headers

GET /assets/index.js?98733753 HTTP/1.1
Host: moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:33 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dco65eubdTZnKNdgfnvTffycedJFtKlDktNBCyO%2FseFcmOYFGRNkEuxcQS%2FGk8AjMJJKUFoGlj4yafIahpPl7faLxg7T2DJ0rPwMEoozYgEX0bwnFg811qnuFDRzxxw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 13:34:48 GMT
etag: W/"680254f8-e1356"
cache-control: max-age=14400
cf-cache-status: HIT
age: 872
content-encoding: br
cf-ray: 932a720e2de756aa-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3518&min_rtt=743&rtt_var=2338&sent=140&recv=174&lost=0&retrans=0&sent_bytes=25573&recv_bytes=10062&delivery_rate=355504&cwnd=24000&unsent_bytes=0&cid=4ee8867dc345df7a&ts=751&x=16"

embed.su/static/react.js

172.67.160.205

200 OK

141 kB

URL GET
embed.su/static/react.js
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (53636)
Size
141 kB (140823 bytes)
Hash
dac75cfcc488f838789bb1b60be923d3
b29c61e8974556465038be970964c364967ba4e3
cd60bdf1ed30b1f3881940d7c543391671dbe35f57eb86a4a8b0b577ea9107db

HTTP Headers

GET /static/react.js HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 13 Nov 2024 12:45:23 GMT
etag: W/"22617-193258e9ab8"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a7225af5db509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7677&min_rtt=1758&rtt_var=7003&sent=197&recv=75&lost=0&retrans=0&sent_bytes=174013&recv_bytes=5707&delivery_rate=1806507&cwnd=110400&unsent_bytes=0&cid=b3ed76820ef722b3&ts=1603&x=16"

raunooligais.net/?rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs%3D&request_ab2=0&zoneid=8172303&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=346&wiw=616&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=616&wfc=1&pl=https%3A%2F%2Fembed.su%2Fembed%2Ftv%2F42009%2F1%2F1%3Fnext-ep%3D2%3Fposter%3Dhttps%3A%2F%2Fimage.tmdb.org%2Ft%2Fp%2Fw780undefined%26color%3Dffffff&drf=https%3A%2F%2Fmoviemaze.cc%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link

139.45.197.107

200 OK

2.5 kB

URL GET
raunooligais.net/?rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs%3D&request_ab2=0&zoneid=8172303&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=346&wiw=616&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=616&wfc=1&pl=https%3A%2F%2Fembed.su%2Fembed%2Ftv%2F42009%2F1%2F1%3Fnext-ep%3D2%3Fposter%3Dhttps%3A%2F%2Fimage.tmdb.org%2Ft%2Fp%2Fw780undefined%26color%3Dffffff&drf=https%3A%2F%2Fmoviemaze.cc%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerLet's Encrypt
Subjectraunooligais.net
Fingerprint3A:A5:55:52:5B:D0:A0:F7:24:1D:1A:BB:EF:5E:42:DB:D3:E5:1F:15
ValidityTue, 11 Mar 2025 05:19:42 GMT - Mon, 09 Jun 2025 05:19:41 GMT

File type
JSON text data
Size
2.5 kB (2540 bytes)
Hash
2ddfdd1c47f294c4adbf75fb2b838546
3c862469945f69e1afa22636956541c830ecb193
db2fee2097bcbeab9f46bdd4e55789d48b83071acba45f521994446edcfb7030

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs%3D&request_ab2=0&zoneid=8172303&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=346&wiw=616&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=616&wfc=1&pl=https%3A%2F%2Fembed.su%2Fembed%2Ftv%2F42009%2F1%2F1%3Fnext-ep%3D2%3Fposter%3Dhttps%3A%2F%2Fimage.tmdb.org%2Ft%2Fp%2Fw780undefined%26color%3Dffffff&drf=https%3A%2F%2Fmoviemaze.cc%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&wasm=-1&bs=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link HTTP/1.1
Host: raunooligais.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Cookie: OAID=0081b04dbac84006f79f2c497dc80633; oaidts=1745045197
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 19 Apr 2025 06:46:40 GMT
content-type: application/json
x-trace-id: 29964da58ee11cb25f6b9056c2716d85
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://embed.su
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:40 GMT; path=/; secure; SameSite=None
oaidts=1745045200; expires=Sun, 19 Apr 2026 06:46:40 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 26 Apr 2025 06:46:40 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

moviemaze.cc/favicon.ico

104.21.80.1

200 OK

493 B

URL GET
moviemaze.cc/favicon.ico
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
493 B (493 bytes)
Hash
8043ffa9bff6c87705bc498932bbe8d7
0471816ab932d2dd2c8e54a41983f959dbaac842
41193bfb4d722f7224dbf242fbb6920f6d4279a636cb75dab59e187e13a13529

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:35 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U%2FtMUBGh5RRcZZx2YVBl6HH%2F1C%2FwHBtx6JuTWtpogb24aXPUfELmFPZWjt5KbCGS3FcOmORfQtNkCLmCTCRXuvl2yc9PW%2BEDFKubiCGcrBZ1qg2hwLfz5%2BufbVrkZ7c%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 13:55:34 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4189
content-encoding: br
cf-ray: 932a7219efb556aa-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4342&min_rtt=743&rtt_var=2523&sent=385&recv=180&lost=0&retrans=0&sent_bytes=317118&recv_bytes=10583&delivery_rate=9991815&cwnd=254400&unsent_bytes=0&cid=4ee8867dc345df7a&ts=2628&x=16"

backend.moviemaze.cc/api/tv/episodes/42009?season=1&v=1&_=4%2F19%2F2025

104.21.112.1

200 OK

907 B

URL GET
backend.moviemaze.cc/api/tv/episodes/42009?season=1&v=1&_=4%2F19%2F2025
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
JSON text data
Size
907 B (907 bytes)
Hash
628588141e7fadd2ecccdb24f10dd9a9
681e9a524f8b4ae84dff5607e3d389bbb535fbb2
9ee8fa58a19b5b07ad2150a36fa073b755e4b08088a17bce93e678af09d80edb

HTTP Headers

GET /api/tv/episodes/42009?season=1&v=1&_=4%2F19%2F2025 HTTP/1.1
Host: backend.moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: application/json; charset=utf-8
server: cloudflare
x-powered-by: Express
x-ratelimit-limit: 80
x-ratelimit-remaining: 79
x-ratelimit-reset: 1745042263
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
etag: W/"38b-aB6aUk+LSuhN/1YH49OJu7U1+7I"
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a721b880056a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff

172.67.160.205

200 OK

5.1 kB

URL GET
embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (3356), with CRLF, LF line terminators
Size
5.1 kB (5082 bytes)
Hash
ef96d6ab58f1a83792eca3272b4ed9c4
8365b5469b3d8c03ac7b32f0c8250263be9f1ac2
7cf81d17f1b4924b575d84a61d5837ff705773ea68966f881c150638fe2bf464

HTTP Headers

GET /embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moviemaze.cc/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server-timing: cfCacheStatus;desc="HIT", cfL4;desc="?proto=QUIC&rtt=11984&min_rtt=1779&rtt_var=8584&sent=47&recv=63&lost=0&retrans=0&sent_bytes=5598&recv_bytes=4146&delivery_rate=2100&cwnd=12000&unsent_bytes=0&cid=b3ed76820ef722b3&ts=773&x=16"
access-control-allow-origin: *
last-modified: Sat, 19 Apr 2025 04:38:16 GMT
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a72207e9cb509-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400

raunooligais.net/5/8172303

139.45.197.107

200 OK

108 kB

URL GET
raunooligais.net/5/8172303
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerLet's Encrypt
Subjectraunooligais.net
Fingerprint3A:A5:55:52:5B:D0:A0:F7:24:1D:1A:BB:EF:5E:42:DB:D3:E5:1F:15
ValidityTue, 11 Mar 2025 05:19:42 GMT - Mon, 09 Jun 2025 05:19:41 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (107572 bytes)
Hash
0ee6c0b9b98b6676509fbf5eb075d6e1
f7df0c38809419cf238174493e704b837de54f6d
ea4fee27012db4279ca0ce920af6d9e69ec9091b146a596bc3201353c4021b87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/8172303 HTTP/1.1
Host: raunooligais.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/javascript
x-trace-id: e3fb8cfbf690d88adc06e93ed7765cf6
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=0081b04dbac84006f79f2c497dc80633; expires=Sun, 19 Apr 2026 06:46:37 GMT; path=/; secure; SameSite=None
oaidts=1745045197; expires=Sun, 19 Apr 2026 06:46:37 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

raunooligais.net/wrr?z=8172303&p_rid=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs=&dmn=raunooligais.net&userId=0081b0222ad6420dff8ebeda65c6ba4f

139.45.197.107

204 No Content

0 B

URL POST
raunooligais.net/wrr?z=8172303&p_rid=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs=&dmn=raunooligais.net&userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerLet's Encrypt
Subjectraunooligais.net
Fingerprint3A:A5:55:52:5B:D0:A0:F7:24:1D:1A:BB:EF:5E:42:DB:D3:E5:1F:15
ValidityTue, 11 Mar 2025 05:19:42 GMT - Mon, 09 Jun 2025 05:19:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /wrr?z=8172303&p_rid=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs=&dmn=raunooligais.net&userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: raunooligais.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
content-type: application/json
Content-Length: 2759
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Sat, 19 Apr 2025 06:46:41 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://embed.su
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f

172.64.146.234

200 OK

65 B

URL GET
my.rtmark.net/gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
172.64.146.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint03:52:6A:BD:35:83:43:81:AF:25:BB:A3:26:97:D1:78:25:73:A4:C9
ValidityTue, 04 Mar 2025 10:39:32 GMT - Mon, 02 Jun 2025 11:39:29 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
3f42054ad9209df3dece3e1f2b8054e9
f7b153a3fd0e7b64a78da5e88383ceaa904248e8
426ea295bc47d1fe5e7f6e7aa421210cef3200ab0bc8c7be3df9e201466dcc53

HTTP Headers

GET /gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Cookie: ID=0081b0222ad6420dff8ebeda65c6ba4f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:36 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 932a721e6a50569f-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

172.67.160.205

200 OK

159 kB

URL GET
embed.su/api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/aW5kZXgubTN1OA==.png
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
M3U playlist, ASCII text
Size
159 kB (158878 bytes)
Hash
b5b91cf05b89910ad6ce2438bff28757
cbc8d022230851a5150fdd6fb832c0ecd322c685
77a2d65af5a733d8c7c68c274a5789879becac67c554f00d41f35bdfdb500241

HTTP Headers

GET /api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/aW5kZXgubTN1OA==.png HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:40 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 23:49:06 GMT
cache-control: max-age=43200
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a7233c941b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7515&min_rtt=1758&rtt_var=7320&sent=348&recv=83&lost=0&retrans=0&sent_bytes=347541&recv_bytes=7057&delivery_rate=21740&cwnd=145200&unsent_bytes=0&cid=b3ed76820ef722b3&ts=3851&x=16"

fonts.googleapis.com/css2?family=Jost:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

142.250.74.10

200 OK

30 kB

URL GET
fonts.googleapis.com/css2?family=Jost:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (1572)
Size
30 kB (29621 bytes)
Hash
9db28aef8360176c7fdffc34622adca7
cb276b29bb0ef42d87d17f605ab9ec1d96dcedbb
28aa1af12be6da64c78a795d99ae23c0e208ea87b1fd70c9b64f75fcb36fa2c9

HTTP Headers

GET /css2?family=Jost:ital,wght@0,100..900;1,100..900&family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Apr 2025 06:46:34 GMT
date: Sat, 19 Apr 2025 06:46:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

backend.moviemaze.cc/api/tv/info/42009?_=4%2F19%2F2025

104.21.112.1

200 OK

397 B

URL GET
backend.moviemaze.cc/api/tv/info/42009?_=4%2F19%2F2025
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
JSON text data
Size
397 B (397 bytes)
Hash
333bf487990971d4244305ed444b0a96
fdf05a743afff0cfbe2e13173e009845ede3d0df
313c0607f6d622b17a3ee0d5e1e0d529956a49cf355568d75668e9b16855698d

HTTP Headers

GET /api/tv/info/42009?_=4%2F19%2F2025 HTTP/1.1
Host: backend.moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: application/json; charset=utf-8
server: cloudflare
x-powered-by: Express
x-ratelimit-limit: 80
x-ratelimit-remaining: 79
x-ratelimit-reset: 1745042262
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
etag: W/"18d-/fBadDr/8M++LhMXPgCYRe3j0N8"
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a721b980956a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

backend.moviemaze.cc/auth/user/refresh

104.21.80.1

401 Unauthorized

0 B

URL GET
backend.moviemaze.cc/auth/user/refresh
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /auth/user/refresh HTTP/1.1
Host: backend.moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 401 Unauthorized
date: Sat, 19 Apr 2025 06:46:36 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=diaWSxRWfCzRKxcwfiv%2BLVSwl0vWS6NgjRAyodz0pizCmEj%2Fcc4sYUHoQ%2F7tEvoVWACj6oQJEq5%2FyfSkpjrBAwaelhZl4PKqo%2BHACLIB1BRiy%2Bit4ZMS%2Bq1FKMRR9YSiNlIaxIl0vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
x-powered-by: Express
x-ratelimit-limit: 80
x-ratelimit-remaining: 79
x-ratelimit-reset: 1745045257
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
cf-ray: 932a721abfd056aa-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5273&min_rtt=743&rtt_var=3755&sent=387&recv=182&lost=0&retrans=0&sent_bytes=318042&recv_bytes=10923&delivery_rate=16042&cwnd=254400&unsent_bytes=0&cid=4ee8867dc345df7a&ts=2866&x=16"

embed.su/embed/tv/42009/1/1?next-ep=undefined

172.67.160.205

200 OK

4.6 kB

URL GET
embed.su/embed/tv/42009/1/1?next-ep=undefined
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (3356), with CRLF line terminators
Size
4.6 kB (4599 bytes)
Hash
a29daf0f711160824a0600fbeb553beb
1aa5a1a1046a55e821352ff949d029e551e72a5c
6534a7b696e750bcc8d9f9f808e58179b0b9856b92147232f8906dc1e498ce23

HTTP Headers

GET /embed/tv/42009/1/1?next-ep=undefined HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
content-encoding: br
cf-ray: 932a721edc820b02-OSL
access-control-allow-origin: *
last-modified: Sat, 19 Apr 2025 06:24:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=941&min_rtt=452&rtt_var=774&sent=11&recv=11&lost=0&retrans=0&sent_bytes=4836&recv_bytes=1335&delivery_rate=10108202&cwnd=257&unsent_bytes=0&cid=7f22e519ba17d135&ts=109&x=0"
X-Firefox-Spdy: h2

image.tmdb.org/t/p/w342undefined

169.150.247.35

400 Bad Request

0 B

URL GET
image.tmdb.org/t/p/w342undefined
IP
169.150.247.35:443
ASN
#60068 Datacamp Limited

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/p/w342undefined HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
date: Sat, 19 Apr 2025 06:46:38 GMT
content-type: text/html
server: BunnyCDN-DE1-1078
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=5
perma-cache: MISS
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 400
cdn-cachedat: 04/19/2025 06:46:32
cdn-edgestorageid: 756
cdn-requestid: fbac4e1ec67e817fa75db8e5f57b3576
cdn-cache: STALE
cdn-status: 400
cdn-requesttime: 0
X-Firefox-Spdy: h2

embed.su/cdn-cgi/rum?

172.67.160.205

204 No Content

0 B

URL POST
embed.su/cdn-cgi/rum?
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
content-type: application/json
Content-Length: 1137
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Sat, 19 Apr 2025 06:46:41 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://embed.su
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 932a723feb20b509-OSL
x-frame-options: DENY

my.rtmark.net/gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f

172.64.146.234

200 OK

65 B

URL GET
my.rtmark.net/gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
172.64.146.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint03:52:6A:BD:35:83:43:81:AF:25:BB:A3:26:97:D1:78:25:73:A4:C9
ValidityTue, 04 Mar 2025 10:39:32 GMT - Mon, 02 Jun 2025 11:39:29 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
3f42054ad9209df3dece3e1f2b8054e9
f7b153a3fd0e7b64a78da5e88383ceaa904248e8
426ea295bc47d1fe5e7f6e7aa421210cef3200ab0bc8c7be3df9e201466dcc53

HTTP Headers

GET /gid.js?userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:35 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:35 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 932a72153e4756c7-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.su/embed/?poster=undefined&color=ffffff

172.67.160.205

404 Not Found

1.1 kB

URL GET
embed.su/embed/?poster=undefined&color=ffffff
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (486), with CRLF, LF line terminators
Size
1.1 kB (1139 bytes)
Hash
9dfb578a198e00857a19de4bc0490e04
2793a20918c0373a9837c69d3921fa091facf029
df0fb38316d674ea192e61f914d020f6a61b9befce008a4cb3810fa23fdaa32e

HTTP Headers

GET /embed/?poster=undefined&color=ffffff HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moviemaze.cc/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
content-encoding: br
cf-ray: 932a721b1b6c712b-OSL
cache-control: max-age=14400
cf-cache-status: EXPIRED
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="EXPIRED", cfL4;desc="?proto=TCP&rtt=1072&min_rtt=469&rtt_var=1017&sent=7&recv=10&lost=0&retrans=0&sent_bytes=2980&recv_bytes=1283&delivery_rate=5343173&cwnd=253&unsent_bytes=0&cid=4c00e890334511a0&ts=283&x=0"
X-Firefox-Spdy: h2

backend.moviemaze.cc/api/bs?_=4%2F19%2F2025

104.21.112.1

200 OK

67 B

URL GET
backend.moviemaze.cc/api/bs?_=4%2F19%2F2025
IP
104.21.112.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
JSON text data
Size
67 B (67 bytes)
Hash
2a24427771bce412fe58481173ee31ab
120529dd2388ce53110e8fa4d7bc8b85fa576d35
550e8e936d5a403851f439ba39e27449bad41854a3edada3effd3ec0f6115044

HTTP Headers

GET /api/bs?_=4%2F19%2F2025 HTTP/1.1
Host: backend.moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: application/json; charset=utf-8
server: cloudflare
x-powered-by: Express
x-ratelimit-limit: 80
x-ratelimit-remaining: 79
x-ratelimit-reset: 1745045257
access-control-allow-origin: https://moviemaze.cc
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Content-Type, Authorization
access-control-allow-credentials: true
etag: W/"43-EgUp3SOIzlMRDo+k17yLhfpXbTU"
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 932a721b8ffc56a3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

viper.congacdn.cc/thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/c2VnLTQtdjEtYTEuaHRtbA==

104.21.64.1

200 OK

331 kB

URL GET
viper.congacdn.cc/thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/c2VnLTQtdjEtYTEuaHRtbA==
IP
104.21.64.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectcongacdn.cc
FingerprintBF:C1:7C:CC:44:34:95:94:67:D8:85:DA:D7:14:FB:FF:A9:7C:84:B2
ValidityWed, 26 Mar 2025 16:34:20 GMT - Tue, 24 Jun 2025 17:32:44 GMT

File type
data
Size
331 kB (331256 bytes)
Hash
421517958b1a178d0dcabb0d297e675b
9feb8aaafc3f39d5c6699e5e677843cbf18de6cc
b54949307465faf632cc5a9c5b791da6a6773bfbf25f061d4672555cb83f2865

HTTP Headers

GET /thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/NzIw/c2VnLTQtdjEtYTEuaHRtbA== HTTP/1.1
Host: viper.congacdn.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:42 GMT
content-type: text/html
server: cloudflare
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: If-Modified-Since,Range
access-control-expose-headers: Accept-Ranges,Content-Encoding,Content-Length,Content-Range
last-modified: Sun, 19 Nov 2000 08:52:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-origin: alibabacloud
x-cache: HIT
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a724519185684-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.su/static/player.js?v1.0.61

172.67.160.205

200 OK

437 kB

URL GET
embed.su/static/player.js?v1.0.61
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (43348)
Size
437 kB (436831 bytes)
Hash
5251fb4ea8ecbf8df60315e4e901ce38
7f50f40e4e2777e3f4e459738ecc435b3f047954
b5b61566b2a73d6915e649099fd08e050ccef36485e650a934d9604eda071f3a

HTTP Headers

GET /static/player.js?v1.0.61 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 25 Dec 2024 12:49:47 GMT
etag: W/"6aa5f-193fdddb9f8"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a72228ee1b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=9670&min_rtt=1758&rtt_var=7314&sent=69&recv=69&lost=0&retrans=0&sent_bytes=25379&recv_bytes=5043&delivery_rate=3123630&cwnd=19500&unsent_bytes=0&cid=b3ed76820ef722b3&ts=1109&x=16"

moviemaze.cc/watch/tv/42009?ep=4&season=7

104.21.80.1

200 OK

493 B

URL User Request GET
moviemaze.cc/watch/tv/42009?ep=4&season=7
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
493 B (493 bytes)
Hash
8043ffa9bff6c87705bc498932bbe8d7
0471816ab932d2dd2c8e54a41983f959dbaac842
41193bfb4d722f7224dbf242fbb6920f6d4279a636cb75dab59e187e13a13529

HTTP Headers

GET /watch/tv/42009?ep=4&season=7 HTTP/1.1
Host: moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:33 GMT
content-type: text/html
server: cloudflare
last-modified: Fri, 18 Apr 2025 13:55:34 GMT
vary: accept-encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 932a7208fd1f0b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

moviemaze.cc/assets/index.css?98733753

104.21.80.1

200 OK

75 kB

URL GET
moviemaze.cc/assets/index.css?98733753
IP
104.21.80.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectmoviemaze.cc
FingerprintDA:70:4B:CD:91:5F:22:17:5C:EB:3A:F5:F7:6A:28:3B:5C:1A:D8:11
ValidityFri, 18 Apr 2025 12:47:40 GMT - Thu, 17 Jul 2025 13:46:10 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
75 kB (74843 bytes)
Hash
1331c97bbe2f80153f2df8e027bccb7a
c5ce0d5a9c15977ac9e3d944ea11066252eb0b09
74567e4bf1480fd34e2a106cf5c01287795ab5680174ef65f64de0f342c9b15f

HTTP Headers

GET /assets/index.css?98733753 HTTP/1.1
Host: moviemaze.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wCAyacfhIbuIfvH7afRKGeJ1p59zpWAjv4ZS%2F4oDLRTZ6G8DVZ5PtEQke5kDqLsCGEchgnpM%2BPFHTdv2Aip1hkBnEHtrISNhpF7kel7A%2BWlzJgyXjDC8lZMu5g8hABw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 13:34:48 GMT
etag: W/"680254f8-1245b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 872
content-encoding: br
cf-ray: 932a720e2dea56aa-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3795&min_rtt=743&rtt_var=2379&sent=125&recv=173&lost=0&retrans=0&sent_bytes=9857&recv_bytes=10017&delivery_rate=2457&cwnd=12000&unsent_bytes=0&cid=4ee8867dc345df7a&ts=744&x=16"

static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.79.73

200 OK

20 kB

URL GET
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
FingerprintAD:90:D1:30:C9:77:BF:DE:1F:AB:8C:0D:6E:67:CB:6A:E8:42:DB:18
ValidityThu, 27 Feb 2025 14:42:34 GMT - Wed, 28 May 2025 15:42:17 GMT

File type
JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Size
20 kB (19948 bytes)
Hash
ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 932a722338ba56c1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sen/v9/6xK0dSxYI9_dkN18-vZKK2EISCq5L4nAlQ.woff2

142.250.74.35

200 OK

11 kB

URL GET
fonts.gstatic.com/s/sen/v9/6xK0dSxYI9_dkN18-vZKK2EISCq5L4nAlQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10900, version 1.0
Size
11 kB (10900 bytes)
Hash
854cd8719e95c0a1a3e94e2a71ed5795
c3d9a463a7a823b41d499f26f3df090f31142585
32c2cac3d7aa657e4a427d7fa827d4cd97446df11a7b7bfa59a9d345c9b7fb2e

HTTP Headers

GET /s/sen/v9/6xK0dSxYI9_dkN18-vZKK2EISCq5L4nAlQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:47:10 GMT
expires: Fri, 17 Apr 2026 10:47:10 GMT
cache-control: public, max-age=31536000
age: 158369
last-modified: Thu, 20 Jul 2023 20:47:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.su/embed/tv/42009/1/1?next-ep=undefined

172.67.160.205

200 OK

4.6 kB

URL GET
embed.su/embed/tv/42009/1/1?next-ep=undefined
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (3356), with CRLF line terminators
Size
4.6 kB (4599 bytes)
Hash
a29daf0f711160824a0600fbeb553beb
1aa5a1a1046a55e821352ff949d029e551e72a5c
6534a7b696e750bcc8d9f9f808e58179b0b9856b92147232f8906dc1e498ce23

HTTP Headers

GET /embed/tv/42009/1/1?next-ep=undefined HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
content-encoding: br
cf-ray: 932a721edc7f0b02-OSL
access-control-allow-origin: *
last-modified: Sat, 19 Apr 2025 06:24:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=994&min_rtt=452&rtt_var=892&sent=7&recv=10&lost=0&retrans=0&sent_bytes=2979&recv_bytes=1335&delivery_rate=5958847&cwnd=253&unsent_bytes=0&cid=7f22e519ba17d135&ts=103&x=0"
X-Firefox-Spdy: h2

ainouzaudre.net/wrr?z=8213455&p_rid=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&dmn=ainouzaudre.net&userId=0081b0222ad6420dff8ebeda65c6ba4f

104.18.41.59

204 No Content

0 B

URL POST
ainouzaudre.net/wrr?z=8213455&p_rid=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&dmn=ainouzaudre.net&userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
104.18.41.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectainouzaudre.net
Fingerprint7B:D3:BD:AB:83:0B:41:D1:E6:5E:8F:88:E4:14:5D:5D:E9:CB:C7:2F
ValidityMon, 17 Mar 2025 09:33:35 GMT - Sun, 15 Jun 2025 10:33:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /wrr?z=8213455&p_rid=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&dmn=ainouzaudre.net&userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: ainouzaudre.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moviemaze.cc/
content-type: application/json
Content-Length: 2581
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: text/plain; charset=utf-8
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://moviemaze.cc
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *, *
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 932a722669197131-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

embed.su/static/hls.js?v1.0.61

172.67.160.205

200 OK

394 kB

URL GET
embed.su/static/hls.js?v1.0.61
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
394 kB (393679 bytes)
Hash
ac0623ed2c2086f57260333d6593a116
056082fc17f51d1086360cbd1071a0cfb08f4a4f
4626502c980790d311211ae66c9ff6e72c46630ce66e4b7a5e29d76544dfe7d2

HTTP Headers

GET /static/hls.js?v1.0.61 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:38 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 13 Nov 2024 12:45:23 GMT
etag: W/"601cf-193258e9ab8"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a722bbba3b4eb-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4850&min_rtt=1247&rtt_var=3804&sent=60&recv=16&lost=0&retrans=0&sent_bytes=54935&recv_bytes=2228&delivery_rate=9184315&cwnd=37200&unsent_bytes=0&cid=6cd90337d33a0cf1&ts=2131&x=16"

139.45.197.107

204 No Content

0 B

URL OPTIONS
raunooligais.net/wrr?z=8172303&p_rid=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs=&dmn=raunooligais.net&userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerLet's Encrypt
Subjectraunooligais.net
Fingerprint3A:A5:55:52:5B:D0:A0:F7:24:1D:1A:BB:EF:5E:42:DB:D3:E5:1F:15
ValidityTue, 11 Mar 2025 05:19:42 GMT - Mon, 09 Jun 2025 05:19:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /wrr?z=8172303&p_rid=5e58672e-dc57-41c8-8d25-c2f1aeea27ff&rb=bPWPKlYlcZX7Zdcd_P3wJNIYYLTFZL0Fm6jFGkzQxs-bgg9diTeZ4fr35d9P6ClJjevsK123m-2CgWeahA5jXhD2oGK1YnDRLA8ZmeymivgocuS_ULX9o8mfdvfDkjzMqm8Zst4GDkKxSMsiWXUpb1Imb7G0uKxhbYyvWlk5y05kKopWiMK5UcVHtH1Zjl_1PaHPcH9b3b-E5kj0N4-OMuNqMJfEKyTEulG_fI7NBKtKRjQcFNHiyArm2dk2qD8_5CUXAYJLICRicaKmnSnJpsI5ygs=&dmn=raunooligais.net&userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: raunooligais.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Sat, 19 Apr 2025 06:46:41 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://embed.su
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

embed.su/static/hls.js

172.67.160.205

200 OK

394 kB

URL GET
embed.su/static/hls.js
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
394 kB (393679 bytes)
Hash
ac0623ed2c2086f57260333d6593a116
056082fc17f51d1086360cbd1071a0cfb08f4a4f
4626502c980790d311211ae66c9ff6e72c46630ce66e4b7a5e29d76544dfe7d2

HTTP Headers

GET /static/hls.js HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 13 Nov 2024 12:45:23 GMT
etag: W/"601cf-193258e9ab8"
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 932a7225af5eb509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6981&min_rtt=1758&rtt_var=6644&sent=237&recv=76&lost=0&retrans=0&sent_bytes=221469&recv_bytes=5753&delivery_rate=642524&cwnd=110400&unsent_bytes=0&cid=b3ed76820ef722b3&ts=1660&x=16"

104.18.41.59

204 No Content

0 B

URL OPTIONS
ainouzaudre.net/wrr?z=8213455&p_rid=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&dmn=ainouzaudre.net&userId=0081b0222ad6420dff8ebeda65c6ba4f
IP
104.18.41.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectainouzaudre.net
Fingerprint7B:D3:BD:AB:83:0B:41:D1:E6:5E:8F:88:E4:14:5D:5D:E9:CB:C7:2F
ValidityMon, 17 Mar 2025 09:33:35 GMT - Sun, 15 Jun 2025 10:33:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /wrr?z=8213455&p_rid=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&dmn=ainouzaudre.net&userId=0081b0222ad6420dff8ebeda65c6ba4f HTTP/1.1
Host: ainouzaudre.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://moviemaze.cc/
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Sat, 19 Apr 2025 06:46:37 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://moviemaze.cc
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *, *
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 932a7225e84d7131-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

embed.su/static/script.js?v1.0.61

172.67.160.205

200 OK

18 kB

URL GET
embed.su/static/script.js?v1.0.61
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (14795), with CRLF line terminators
Size
18 kB (17877 bytes)
Hash
1ddd8c9db7e4010aa1ddb77bd81b6bbe
aef9b2a1b15e8e0bd696ad6e6819b301284b8333
cb6568fe2d92305c0c507597672b7bf0373e9bafeb5bf7bac4b3e3d52e7ca84b

HTTP Headers

GET /static/script.js?v1.0.61 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Tue, 05 Nov 2024 13:52:21 GMT
etag: W/"45d5-192fc990a08"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a72228ee4b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10762&min_rtt=1779&rtt_var=8882&sent=52&recv=67&lost=0&retrans=0&sent_bytes=7885&recv_bytes=4955&delivery_rate=28938&cwnd=12000&unsent_bytes=0&cid=b3ed76820ef722b3&ts=1080&x=16"

my.rtmark.net/gid.js?userId=0081b04dbac84006f79f2c497dc80633

172.64.146.234

200 OK

65 B

URL GET
my.rtmark.net/gid.js?userId=0081b04dbac84006f79f2c497dc80633
IP
172.64.146.234:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint03:52:6A:BD:35:83:43:81:AF:25:BB:A3:26:97:D1:78:25:73:A4:C9
ValidityTue, 04 Mar 2025 10:39:32 GMT - Mon, 02 Jun 2025 11:39:29 GMT

File type
JSON text data
Size
65 B (65 bytes)
Hash
3f42054ad9209df3dece3e1f2b8054e9
f7b153a3fd0e7b64a78da5e88383ceaa904248e8
426ea295bc47d1fe5e7f6e7aa421210cef3200ab0bc8c7be3df9e201466dcc53

HTTP Headers

GET /gid.js?userId=0081b04dbac84006f79f2c497dc80633 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Cookie: ID=0081b0222ad6420dff8ebeda65c6ba4f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:38 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://embed.su
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:38 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
priority: u=3,i=?0
server: cloudflare
cf-ray: 932a72298a05569f-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

viper.wonkacdn.cc/thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/c2VnLTQtdjEtYTEuaHRtbA==

172.67.180.108

200 OK

452 kB

URL GET
viper.wonkacdn.cc/thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/c2VnLTQtdjEtYTEuaHRtbA==
IP
172.67.180.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectwonkacdn.cc
Fingerprint35:65:71:C3:C4:C8:21:AF:69:75:3F:42:C9:BD:4A:5F:03:5D:12:E9
ValidityWed, 26 Mar 2025 14:33:42 GMT - Tue, 24 Jun 2025 15:31:52 GMT

File type
data
Size
452 kB (451576 bytes)
Hash
0c6922386c4ba2f2de8bcebd16bbc06b
0da8e9bb29ce51eda2d701b1cd89a35997bd981a
f6fb3dac04288ce69dd87a7489aa8a0f204550e24bff91aaac0fd26d570589b7

HTTP Headers

GET /thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/c2VnLTQtdjEtYTEuaHRtbA== HTTP/1.1
Host: viper.wonkacdn.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:42 GMT
content-type: text/html
server: cloudflare
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: If-Modified-Since,Range
access-control-expose-headers: Accept-Ranges,Content-Encoding,Content-Length,Content-Range
last-modified: Sun, 19 Nov 2000 08:52:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-origin: alibabacloud
x-cache: HIT
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a72410feeb4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/jost/v18/92zatBhPNqw73oTd4g.woff2

142.250.74.35

200 OK

27 kB

URL GET
fonts.gstatic.com/s/jost/v18/92zatBhPNqw73oTd4g.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 26576, version 1.0
Size
27 kB (26576 bytes)
Hash
928f4210aa4859fcfdb853d2c6329589
d3fc5b412c86d44da139622eb1712e22c3c510e0
7726a5cd6f3c0e876c028ea2a643d45f7aad4b0f164b70966c669f4a4668f4b9

HTTP Headers

GET /s/jost/v18/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 09:32:52 GMT
expires: Fri, 17 Apr 2026 09:32:52 GMT
cache-control: public, max-age=31536000
age: 162824
last-modified: Thu, 26 Sep 2024 23:19:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

touvagristaunoa.com/?rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&request_ab2=0&zoneid=8213455&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fmoviemaze.cc%2Fwatch%2Ftv%2F42009%3Fep%3D4%26season%3D7&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&wasm=1&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link

139.45.197.243

200 OK

2.4 kB

URL GET
touvagristaunoa.com/?rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&request_ab2=0&zoneid=8213455&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fmoviemaze.cc%2Fwatch%2Ftv%2F42009%3Fep%3D4%26season%3D7&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&wasm=1&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link
IP
139.45.197.243:443
ASN
#9002 RETN Limited

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerLet's Encrypt
Subjecttouvagristaunoa.com
FingerprintAE:58:A5:6D:EA:CC:6E:55:20:B2:41:C6:97:D5:FE:B4:6B:E0:71:72
ValidityFri, 11 Apr 2025 05:24:16 GMT - Thu, 10 Jul 2025 05:24:15 GMT

File type
JSON text data
Size
2.4 kB (2431 bytes)
Hash
3f2bbceab787d8cff3a299a3ff01a457
1337a75ac50f6ca292504463a70ee71f8396398e
26ec0350805d0a1717d85a01772c8a5bb8665cf88b15af460c0bc89bb27f480c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=m7YQv7-_LkQ9vS6eHnhnJ4qR_uoPuMjHXXQqxRsVVUJ_dmlETMdTvyZdjoMHGlZwpxMN8PhS4Atto3ACgsTu6YiPIbee43NEp86sRaGI7HylhXEThN1-cFze8qoFN9SbF3qqT_nOqyT2Opmpk6MRdI5BKWaYb97jsxRFNrFkFChyNA56VAjOckZJ-hsjNzIuEkSkPsKeHw1336T5IGDgMAF44u2TvL-XMp8vT-liHmtLNKSZvj_K04OYCCHZnzymhC8B0SttydukiNZLXJOkBbmiBJUfQGMT&request_ab2=0&zoneid=8213455&js_build=iclick-v1.1126.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fmoviemaze.cc%2Fwatch%2Ftv%2F42009%3Fep%3D4%26season%3D7&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=1&wgl=llvmpipe&js_build=iclick-v1.1126.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=c724c360-7a9a-4b15-9b84-be7d0fbbfef1&wasm=1&userId=0081b0222ad6420dff8ebeda65c6ba4f&m=link HTTP/1.1
Host: touvagristaunoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moviemaze.cc/
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: application/json
x-trace-id: 290084f65f791051db129a1ee884640b
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://moviemaze.cc
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:37 GMT; path=/; secure; SameSite=None
oaidts=1745045197; expires=Sun, 19 Apr 2026 06:46:37 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 26 Apr 2025 06:46:37 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

172.67.180.108

200 OK

430 kB

URL GET
viper.wonkacdn.cc/thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/c2VnLTEtdjEtYTEuanBn
IP
172.67.180.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectwonkacdn.cc
Fingerprint35:65:71:C3:C4:C8:21:AF:69:75:3F:42:C9:BD:4A:5F:03:5D:12:E9
ValidityWed, 26 Mar 2025 14:33:42 GMT - Tue, 24 Jun 2025 15:31:52 GMT

File type
MPEG transport stream data
Size
430 kB (430520 bytes)
Hash
4965d7d4004a710bc63f42c2aa3f9869
94232eae7c20cd074811d83d5d7038cab29c92e5
be2a155a8384f44a4b800fe3087845a3db6ad4104eea0d564a24ddceba3a4682

HTTP Headers

GET /thunderrumble45.online/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/MTA4MA==/c2VnLTEtdjEtYTEuanBn HTTP/1.1
Host: viper.wonkacdn.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
Origin: https://embed.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:40 GMT
content-type: image/jpg
content-length: 430520
server: cloudflare
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: If-Modified-Since,Range
access-control-expose-headers: Accept-Ranges,Content-Encoding,Content-Length,Content-Range
last-modified: Sun, 19 Nov 2000 08:52:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-origin: alibabacloud
x-cache: HIT
cf-cache-status: HIT
cf-ray: 932a7236b813b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

embed.su/embed/tv/42009/1/1?next-ep=undefined

172.67.160.205

200 OK

4.6 kB

URL GET
embed.su/embed/tv/42009/1/1?next-ep=undefined
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (3356), with CRLF line terminators
Size
4.6 kB (4599 bytes)
Hash
a29daf0f711160824a0600fbeb553beb
1aa5a1a1046a55e821352ff949d029e551e72a5c
6534a7b696e750bcc8d9f9f808e58179b0b9856b92147232f8906dc1e498ce23

HTTP Headers

GET /embed/tv/42009/1/1?next-ep=undefined HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
access-control-allow-origin: *
last-modified: Sat, 19 Apr 2025 06:24:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
content-encoding: br
cf-ray: 932a721fb968b4eb-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5299&min_rtt=1958&rtt_var=3329&sent=12&recv=8&lost=0&retrans=0&sent_bytes=3738&recv_bytes=1209&delivery_rate=1731&cwnd=12000&unsent_bytes=0&cid=6cd90337d33a0cf1&ts=150&x=16"

fonts.googleapis.com/css?family=Sen&display=swap

142.250.74.10

200 OK

844 B

URL GET
fonts.googleapis.com/css?family=Sen&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text
Size
844 B (844 bytes)
Hash
0d62310228649e6f3404104455db53ff
39883adc921d8e301406fd34c989ef87c35da7c1
ffa220d3bd860f355188c0e4075bfdbfebafcc0dfc551ac8d3de53fafffd4135

HTTP Headers

GET /css?family=Sen&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Apr 2025 06:46:37 GMT
date: Sat, 19 Apr 2025 06:46:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

embed.su/static/react.js?v1.0.61

172.67.160.205

200 OK

141 kB

URL GET
embed.su/static/react.js?v1.0.61
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
JavaScript source, ASCII text, with very long lines (53636)
Size
141 kB (140823 bytes)
Hash
dac75cfcc488f838789bb1b60be923d3
b29c61e8974556465038be970964c364967ba4e3
cd60bdf1ed30b1f3881940d7c543391671dbe35f57eb86a4a8b0b577ea9107db

HTTP Headers

GET /static/react.js?v1.0.61 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:38 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 13 Nov 2024 12:45:23 GMT
etag: W/"22617-193258e9ab8"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a722bbba2b4eb-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4984&min_rtt=1507&rtt_var=2901&sent=20&recv=13&lost=0&retrans=0&sent_bytes=7480&recv_bytes=2098&delivery_rate=28548&cwnd=12000&unsent_bytes=0&cid=6cd90337d33a0cf1&ts=2111&x=16"

ainouzaudre.net/5/8213455

104.18.41.59

200 OK

108 kB

URL GET
ainouzaudre.net/5/8213455
IP
104.18.41.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectainouzaudre.net
Fingerprint7B:D3:BD:AB:83:0B:41:D1:E6:5E:8F:88:E4:14:5D:5D:E9:CB:C7:2F
ValidityMon, 17 Mar 2025 09:33:35 GMT - Sun, 15 Jun 2025 10:33:31 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (107697 bytes)
Hash
5d4b9aef431c1db226ae1a814bfe95cb
bdd40278d45efa6f9ba2679d56f81c14e9aa3205
dd264988b5ffe7685c901b5716e6eef5296e8f67bc77c9dde0be57898a28fafd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/8213455 HTTP/1.1
Host: ainouzaudre.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 19 Apr 2025 06:46:34 GMT
content-type: application/javascript
x-trace-id: 79c7351b5c4c2bffb62e03b011b37d45
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: OAID=0081b0222ad6420dff8ebeda65c6ba4f; expires=Sun, 19 Apr 2026 06:46:34 GMT; path=/; secure; SameSite=None
oaidts=1745045194; expires=Sun, 19 Apr 2026 06:46:34 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
content-encoding: gzip
vary: accept-encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 932a720fc8c556bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

48 kB

URL GET
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:05:36:C2:8E:4C:CD:95:1E:1C:75:06:44:A3:57:E5:C0:17:02:80
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Apr 2025 10:12:20 GMT
expires: Fri, 17 Apr 2026 10:12:20 GMT
cache-control: public, max-age=31536000
age: 160456
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.su/static/player.css?v1.0.61

172.67.160.205

200 OK

42 kB

URL GET
embed.su/static/player.css?v1.0.61
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
ASCII text, with very long lines (42057)
Size
42 kB (42058 bytes)
Hash
4a562dd7a51cfbe6891f5bf8b1a61747
3fc19ce4232d7f7de8026308f17db9c4c432e568
ce8e5cd5159a1b283d38c1dca9eb29809fe2f971b52890427705fdc72c5fcc76

HTTP Headers

GET /static/player.css?v1.0.61 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:37 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: public, max-age=43200
last-modified: Wed, 13 Nov 2024 12:45:23 GMT
etag: W/"a44a-193258e9ab8"
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a72228ee2b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=10762&min_rtt=1779&rtt_var=8882&sent=61&recv=67&lost=0&retrans=0&sent_bytes=16365&recv_bytes=4955&delivery_rate=28938&cwnd=12000&unsent_bytes=0&cid=b3ed76820ef722b3&ts=1083&x=16"

172.67.160.205

200 OK

948 B

URL GET
embed.su/api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/cGxheWxpc3QubTN1OA==.m3u8
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://embed.su/embed/tv/42009/1/1?next-ep=2?poster=https://image.tmdb.org/t/p/w780undefined&color=ffffff
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
M3U playlist, ASCII text
Size
948 B (948 bytes)
Hash
9bc0bcbab7d4a5fe05a1c1f733707488
04aec26ed1fdb332848c28618625062c693d76ad
be5a584165ec70ccecd6ea21accd30fe3022ceddaee376b9ccd62d040c51475d

HTTP Headers

GET /api/proxy/viper/lightningbolt21.live/file2/uqyaIkMM4x0Qy6MAuSPeT98vr0OgauVxB+eOagk~Jo5fIcTb62KXjWMuOeF6ZSWGsJ9w2E6UZC3+ItOan69oC5L9EPdEAbroymXk94ut6cJEWfY64TIXiqEWWYSoklm3+gQusaJrOywsa~raO8A00PFPG7R9ZDFf8K0dNyfabFc=/cGxheWxpc3QubTN1OA==.m3u8 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://embed.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:39 GMT
content-type: application/vnd.apple.mpegurl
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Fri, 18 Apr 2025 22:38:58 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 991
content-encoding: br
cf-ray: 932a7232a917b509-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5637&min_rtt=1758&rtt_var=4751&sent=345&recv=81&lost=0&retrans=0&sent_bytes=346733&recv_bytes=6588&delivery_rate=81777&cwnd=145200&unsent_bytes=0&cid=b3ed76820ef722b3&ts=3621&x=16"

fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

142.250.74.10

200 OK

27 kB

URL GET
fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint06:13:4C:49:F4:23:BB:58:C3:31:41:0E:F9:E0:C5:EF:74:A9:0C:67
ValidityMon, 31 Mar 2025 08:55:35 GMT - Mon, 23 Jun 2025 08:55:34 GMT

File type
ASCII text, with very long lines (1572)
Size
27 kB (27389 bytes)
Hash
bb4a6df825671a297b93f23e8786ca3a
b741c8595633962cd255b15dc0c468696b763daa
dcc04481020f439245f1a0fda05568b8056bef92d670f4c8951b835701fe5ca2

HTTP Headers

GET /css2?family=Open+Sans:ital,wght@0,300..800;1,300..800&family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 19 Apr 2025 06:46:34 GMT
date: Sat, 19 Apr 2025 06:46:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

embed.su/embed/tv/42009/1/1?next-ep=2

172.67.160.205

200 OK

4.6 kB

URL GET
embed.su/embed/tv/42009/1/1?next-ep=2
IP
172.67.160.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerGoogle Trust Services
Subjectembed.su
FingerprintE0:B2:2E:7D:4B:81:2A:22:B8:E4:2B:7B:4D:60:88:75:65:68:6A:49
ValiditySat, 22 Mar 2025 17:40:47 GMT - Fri, 20 Jun 2025 18:38:32 GMT

File type
HTML document, ASCII text, with very long lines (3356), with CRLF line terminators
Size
4.6 kB (4599 bytes)
Hash
a29daf0f711160824a0600fbeb553beb
1aa5a1a1046a55e821352ff949d029e551e72a5c
6534a7b696e750bcc8d9f9f808e58179b0b9856b92147232f8906dc1e498ce23

HTTP Headers

GET /embed/tv/42009/1/1?next-ep=2 HTTP/1.1
Host: embed.su
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moviemaze.cc
DNT: 1
Connection: keep-alive
Referer: https://moviemaze.cc/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 19 Apr 2025 06:46:36 GMT
content-type: text/html
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
access-control-allow-origin: *
last-modified: Sat, 19 Apr 2025 06:24:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
content-encoding: br
cf-ray: 932a7220497eb4eb-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4825&min_rtt=1507&rtt_var=3444&sent=15&recv=10&lost=0&retrans=0&sent_bytes=5600&recv_bytes=1546&delivery_rate=101914&cwnd=12000&unsent_bytes=0&cid=6cd90337d33a0cf1&ts=289&x=16"

image.tmdb.org/t/p/w780undefined

169.150.247.35

400 Bad Request

0 B

URL GET
image.tmdb.org/t/p/w780undefined
IP
169.150.247.35:443
ASN
#60068 Datacamp Limited

Requested by
https://moviemaze.cc/watch/tv/42009?ep=4&season=7
Certificate
IssuerLet's Encrypt
Subjectimage.tmdb.org
Fingerprint10:6F:2B:AC:40:A0:C6:7E:52:63:8A:A2:D9:53:8B:14:CC:B5:C4:87
ValidityMon, 31 Mar 2025 16:12:43 GMT - Sun, 29 Jun 2025 16:12:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/p/w780undefined HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
date: Sat, 19 Apr 2025 06:46:38 GMT
content-type: text/html
server: BunnyCDN-DE1-1078
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=5
perma-cache: MISS
cdn-proxyver: 1.23
cdn-requestpullsuccess: True
cdn-requestpullcode: 400
cdn-cachedat: 04/19/2025 06:46:32
cdn-edgestorageid: 863
cdn-requestid: f12c6624f86a46720656a2a8b66f623c
cdn-cache: STALE
cdn-status: 400
cdn-requesttime: 1
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML