![\"iptv-ff-s\"](\"https:\/\/www.cryptocabaret.com\/wp-content\/uploads\/2025\/09\/iptv-ff-s.png\")
Research and investigations concerning internet platforms can be incredibly time-consuming, despite most of the necessary tools being readily available to the public free of charge.<\/p>\nResearch and investigations concerning internet platforms can be incredibly time-consuming, despite most of the necessary tools being readily available to the public free of charge.<\/p>\n
Threat intelligence platform Silent Push combines the essence of these tools into a graphical interface that does much more than the sum of its parts. Historical data, for example, allows connections to be built in cases where evidence no longer exists on the \u2018live\u2019 web. Straightforward tasks such as WHOIS lookups, on the other hand, only rarely look this good.<\/p>\n<\/p>\n
![\"silent-push-whois\"](\"https:\/\/www.cryptocabaret.com\/wp-content\/uploads\/2025\/09\/silent-push-whois.png\")
<\/center><\/p>\nAccording to Silent Push researchers (SPR), the platform makes it easy to \u201cmap out the entire infrastructure supporting IPTV networks\u201d by \u201ccombining just a few technical fingerprints.\u201d The results of an investigation published today claim to identify a major IPTV network and an individual the researchers claim is closely involved.<\/p>\n
SPR say their investigation began with a domain name \u2013 premiumplustv[.]xyz<\/em> \u2013 which had been reported as hosting pirated content. Using the Silent Push Web Scanner<\/a> they were then able to connect the service to 10,000 IP addresses and 1,100 domains, with one standing out in particular.<\/p>\n \u201cThe xuione[.]com<\/em> website, seen below, is a massive IPTV provider that appears to support numerous pirated content schemes \u2013 confirming the initial suspicions of our research partner,\u201d SPR write.<\/p>\n \u201cFor several years, the xuione[.]com<\/em> website listed details indicating the registrant was based in Herat, Afghanistan.\u201d<\/p>\n Records were updated to remove references to Afghanistan in March 2025, but historical records are more difficult to change.<\/p>\n SPR\u2019s investigation led them to identify an individual that they believe is closely linked to the pirate IPTV network, who is also the \u201clikely\u201d operator of the pirate IPTV service at jvtvlive[.]xyz<\/em>. <\/p>\n That service allegedly exploits content from the world\u2019s leading entertainment and sports brands including Prime Video, Bein Sports, Disney Plus, NPO Plus, Formula 1, HBO, Viaplay, Videoland, Discovery Channel, Ziggo Sports, Netflix, Apple TV, Hulu, NBA, RMC Sport, Premier League, Champions League, Sky Sports, NHL, WWE, and UFC.<\/em><\/p>\n<\/p>\n While that individual may indeed be everything SPR say he is, an OPSEC note accompanying the investigation notes that the methods used by the team to enumerate the piracy network, and the process used to identify the individual (located in Herat, Afghanistan), \u201ccannot be shared publicly.\u201d <\/p>\n We have no reason to doubt their findings, but there\u2019s no replacement for seeing the evidence first hand.<\/p>\n Ultimately, however, SPR were able to link the domain xuione[.]com<\/em> to an IP address \u2013 158.220.114[.]199 \u2013 used by many apparent IPTV-linked services [here<\/a>] including streamxpert[.]net, jvtvlive[.]xyz<\/em>, and tiyanhost[.]com<\/em>.<\/p>\n Tiyanhost[.]com<\/em> is the domain name of Tiyan Software Development, a business entity also based in Herat, Afghanistan. Public records show that the person identified by SPR shares the same name as the owner of that company. Sites with links to XuiOne display a WhatsApp number with an Afghan country code that perfectly matches a number directly linked to the same person, researchers say.<\/p>\n Overall, that led to the researchers feeling \u201ccomfortable assessing his involvement\u201d in the pirate network\u2019s operations.<\/p>\n Exactly what additional evidence was obtained by the researchers is unknown, but we assume that it\u2019s pretty compelling after naming the individual in public. It also seems reasonable to assume that information has been shared with anti-piracy companies and other interested parties in advance. If not, publication of the research is a pretty loud \u2018headsup\u2019 for those involved.<\/p>\n Yet, as far as we know, the service remains active. Enforcement in Afghanistan may present more than a few stumbling blocks, but the country isn\u2019t known for cutting edge technical infrastructure. The service\u2019s infrastructure has a fairly significant European presence, but perhaps the time isn\u2019t quite right to do anything about it.<\/p>\n Finally, online databases used for investigations aren\u2019t always accurate and at times can deliver the occasional curveball. All things considered, the existence of an $84 million turnover ad agency in the same Afghan town seems unusual. Even more so when allegedly operated by an individual with a familiar name, which some databases link to an even bigger operation in the Netherlands.<\/p>\n Silent Push (Community Edition) is available for free here<\/a> (pdf). The investigation report is available here<\/a><\/em><\/p>\n From: TF<\/a>, for the latest news on copyright battles, piracy and more.<\/p>\nSPR Identify an Individual With Close Links to the Network<\/h2>\n
![\"jvtvlive\"](\"https:\/\/www.cryptocabaret.com\/wp-content\/uploads\/2025\/09\/jvtvlive.png\")
<\/center><\/p>\nEvidence Mounts<\/h2>\n
Food For Thought<\/h2>\n
![here<\/a>] including streamxpert[.]net, jvtvlive[.]xyz<\/em>, and tiyanhost[.]com<\/em>.<\/p>\nTiyanhost[.]com<\/em> is the domain name of Tiyan Software Development, a business entity also based in Herat, Afghanistan. Public records show that the person identified by SPR shares the same name as the owner of that company. Sites with links to XuiOne display a WhatsApp number with an Afghan country code that perfectly matches a number directly linked to the same person, researchers say.<\/p>\nOverall, that led to the researchers feeling \u201ccomfortable assessing his involvement\u201d in the pirate network\u2019s operations.<\/p>\nFood For Thought<\/h2>\nExactly what additional evidence was obtained by the researchers is unknown, but we assume that it\u2019s pretty compelling after naming the individual in public. It also seems reasonable to assume that information has been shared with anti-piracy companies and other interested parties in advance. If not, publication of the research is a pretty loud \u2018headsup\u2019 for those involved.<\/p>\nYet, as far as we know, the service remains active. Enforcement in Afghanistan may present more than a few stumbling blocks, but the country isn\u2019t known for cutting edge technical infrastructure. The service\u2019s infrastructure has a fairly significant European presence, but perhaps the time isn\u2019t quite right to do anything about it.<\/p>\nFinally, online databases used for investigations aren\u2019t always accurate and at times can deliver the occasional curveball. All things considered, the existence of an $84 million turnover ad agency in the same Afghan town seems unusual. Even more so when allegedly operated by an individual with a familiar name, which some databases link to an even bigger operation in the Netherlands.<\/p>\nSilent Push (Community Edition) is available for free here<\/a> (pdf). The investigation report is available here<\/a><\/em><\/p>\nFrom: TF<\/a>, for the latest news on copyright battles, piracy and more.<\/p>\nPowered by WPeMatico<\/a><\/small><\/p>\n","protected":false},"excerpt":{"rendered":"Research and investigations concerning internet platforms can be incredibly time-consuming, despite most of the necessary tools being readily available to the public free of charge. Threat intelligence platform Silent Push combines the essence of these tools into a graphical interface that does much more than the sum of its parts. Historical data, for example, allows […]<\/p>\n","protected":false},"author":2,"featured_media":84955,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[308],"tags":[],"class_list":["post-84954","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-torrent"],"_links":{"self":[{"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/posts\/84954","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=84954"}],"version-history":[{"count":0,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/posts\/84954\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=\/wp\/v2\/media\/84955"}],"wp:attachment":[{"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=84954"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=84954"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cryptocabaret.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=84954"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}](\"https:\/\/www.silentpush.com\/wp-content\/uploads\/iptv-image-13-sp-total-view-ip-158220114199.png\"){kind=link}