Report - lsvideo.mywebforum.com/

Report Overview

Submitted URL
lsvideo.mywebforum.com/
IP
104.26.0.94
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-05 07:02:24
Access
public
Website Title
lsvideo
Final URL
lsvideo.mywebforum.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-05	1.1 kB	32 kB	216.58.207.227
lsvideo.mywebforum.com	unknown	unknown	No data	No data	1.5 kB	93 kB	172.67.69.187
soupy-user.com	unknown	unknown	2024-03-20	2024-04-18	956 B	44 kB	88.85.68.219
service.supercounters.com	unknown	2004-03-20	2022-03-04	2024-04-26	559 B	275 B	172.104.29.90
www.similarlength.pro	unknown	2024-02-04	2024-05-02	2024-05-02	832 B	142 kB	67.216.91.5
widget.supercounters.com	168845	2004-03-20	2012-06-27	2024-04-26	380 B	3.2 kB	172.67.154.41
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-05	399 B	1.6 kB	142.250.74.106
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev	unknown	2022-08-23	2024-01-20	2024-02-25	4.7 kB	4.1 MB	104.18.2.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	soupy-user.com	Sinkholed
2024-05-05	medium	soupy-user.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/7b8ec9d.js	7.3 kB	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/7b8ec9d.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen16 Hash fff488f4c9cf9c629dad5bc12af7bd51 f0d050ab7e8b9a036c5129a58e1e5670e854afec a11c00cfe15af91d93c02c538bfc30ec82e04f0967b4eca02f6b0d2649ba813d Loading...

	unknown	81 B	2023-09-30	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-30 14:07:26 Last Seen2024-05-18 17:12:58 Times Seen10 Hash 1c581f9eccac6d46f797c4fdca43c358 f04d9a602fa973957f4fdac1d6e87f41ec664d46 e0bac124df6f9bccb5ec3b12fb08569500ff5d5e8c9450ee180321c04cc9374d Loading...

	unknown	293 B	2024-05-05	2024-05-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 09:02:32 Last Seen2024-05-18 17:12:58 Times Seen5 Hash 0879686b01105e2a0b10738446d0877b 8b3d2074ac5b0f79502281e88569a6f29011f4b0 4309c87818edacf29e8a794cc9f8162991b41fdf063ce6b9e458cd9af1af2c38 Loading...

	soupy-user.com/cEDX9.6Jb/2K5/lDS/WuQO9GNXTII_3dMQzCEUw/O/Ck0E1/MRjkcIzgMYTfAB5C	42 kB	2024-05-05	2024-05-05
Pretty URL soupy-user.com/cEDX9.6Jb/2K5/lDS/WuQO9GNXTII_3dMQzCEUw/O/Ck0E1/MRjkcIzgMYTfAB5C IP 88.85.68.219 ASN #35415 Webzilla B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 09:02:32 Last Seen2024-05-05 09:02:33 Times Seen1 Hash 58b40d12f77ab57bb585ddd106a40a0d 51cdc5d19a1c36dfd6390a0377ceeb6a04671502 3e4c76038d2e9e07e284ffad0e17c486607d84663017298e75849bc132808139 Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/ae9661a.js	482 B	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/ae9661a.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen13 Hash eb44255e9fdd369dc182bb49439f9a4a 1748b04e5ed346c97dfc0c5318bb86273f146bad 717d8e4aebe9c73302ad073d8406d1f57418ffd88e24cc0233ad85f060ecd558 Loading...

	lsvideo.mywebforum.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-05-18
Pretty URL lsvideo.mywebforum.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.69.187 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-18 17:40:19 Times Seen44348 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/8a29f31.js	458 B	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/8a29f31.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen14 Hash f07791c919c7ae14df9d6d78504b4ff4 c84429c2cbdee7be785e6ca0a9e4156b7d54b99e 834100b1c48037891fa77deac4269b98ef82719a5478f9eab897ede4fb17d551 Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/23ca741.js	458 B	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/23ca741.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen13 Hash 60c5d1c2cebd0f33b1631f5e8d6e8dd5 7b40984f5cc3cf0881d4a5683fec547914bc8dd1 39cb9574ec410118c935fa6ad7fc7792d920bde547bfa60a92c2c2ec8c19c2b6 Loading...

	service.supercounters.com/fc.php?id=1640083&w=0&v=1&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Flsvideo.mywebforum.com%2F&sw=1280&sh=1024&rand=15	37 B	2024-05-05	2024-05-05
Pretty URL service.supercounters.com/fc.php?id=1640083&w=0&v=1&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Flsvideo.mywebforum.com%2F&sw=1280&sh=1024&rand=15 IP 172.104.29.90 ASN #63949 Akamai Connected Cloud Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 09:02:33 Last Seen2024-05-05 09:02:33 Times Seen2 Hash adeb3bfa627584a6be5312af5e01e90a 33a1a378c468e4f410f6900318beba2025d5f9be 524a364813681043e18aa904a980672d84250a82bb30895f4d774bfce2ed2c31 Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/25edc65.js	264 kB	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/25edc65.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen16 Hash 031bcb3589df32aca2b3cf1927586eb1 b136b0773addc657b2a0bd025097deb50fc8bb2f b3120ed90ea0539af3f4c9c50088b6d7dd6e8750bfa4ff2f9c4a3150eea3722b Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cbf060d.js	787 kB	2024-01-20	2024-05-10
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cbf060d.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:21 Last Seen2024-05-10 08:21:06 Times Seen14 Hash ee522c8bb2639a0026ce7e3dbd00aed7 94af4f96039e050653a6b2f3c4e5a2772a13cc20 a0f7dbb128a4729956717989e69fc280f094942570fb703a2f43e6e3c5279f47 Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cb42003.js	1.9 MB	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cb42003.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen16 Hash 3412a6a8cae7d9856dc802bd942cf417 b147969cf63fbb056ac0a2bdd8ce7dba8f53fa54 504dfa2f17db322b33d8756ecffbefb6435ac52a095a3be0b027550239473dd4 Loading...

	widget.supercounters.com/ssl/texthit.js	2.5 kB	2023-03-14	2024-05-18
Pretty URL widget.supercounters.com/ssl/texthit.js IP 172.67.154.41 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 04:28:39 Last Seen2024-05-18 17:12:58 Times Seen116 Hash ef3dec9754e78264ead09f01ab971ab5 250f936c6ad03858d3b97d34ae8c18d08ccbab1d 8b99af59e75387bad78d5131c9422c5524fa6a4e9fa1f706a1963ac6a34c3a4a Loading...

	pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/f2fb257.js	494 B	2024-01-20	2024-05-18
Pretty URL pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/f2fb257.js IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-20 22:24:20 Last Seen2024-05-18 17:12:58 Times Seen14 Hash 4a5e4bae54112801d183e0914d707962 bc00c6afcb6b9a5ef4f9a32b5d93b65344cd8b7f da5b5d047ad023757313fe4b2fc95c856c7f578bf3891a4a7e5fdd4736e257fb Loading...

	www.similarlength.pro/ecc874/795b9af97abd.js	70 kB	2024-05-02	2024-05-05
Pretty URL www.similarlength.pro/ecc874/795b9af97abd.js IP 67.216.91.5 ASN #35415 Webzilla B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 23:02:37 Last Seen2024-05-05 15:20:27 Times Seen73 Hash 8fa75dc9276bf4184fc6d184bcdfd39e c12bc6389248c6a34744619ceb96934339b7214c 5bd880f8beb58d07106966fdb15a6c6a75ccba0d7adf92c47501077b10772461 Loading...

	unknown	44 kB	2024-05-05	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-05 09:02:33 Last Seen2024-05-05 09:02:33 Times Seen1 Hash f5ab402502cf3eed95478c7b482ec3c8 dd8d3affa6ce6d99f3f1d2235040b066dddac25c 658bdbb388e5ffc708de9a5412ee6248d90214b942a682daeeabb576f74946e7 Loading...

HTTP Transactions (23)

URL IP Response Size

fonts.googleapis.com/css?family=Bellota%20Text

142.250.74.106

200 OK

946 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Bellota%20Text
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
946 B (946 bytes)
Hash
e8ae9c7e3a2572e2cab20c1f31f748ff
1dc1bb735325abbbe0f51f8ec722a0786cb80fac
53fb59136a6565f1115d9a8083f8f4a5951016b1ea365cb2b17c1068f6c37981

HTTP Headers

GET /css?family=Bellota%20Text HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 07:01:58 GMT
date: Sun, 05 May 2024 07:01:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/css/1b7ab17.css

104.18.2.35

200 OK

395 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/css/1b7ab17.css
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
395 kB (395403 bytes)
Hash
7f7d227d2e30f15741bc0c9b98dbbb13
8966c0b4245cdb223d11b5238dd4a3d30628c6c6
a3f27407cb33454ced62c93365a014b4f530b7ae8d13d585bc6c44a74c110492

HTTP Headers

GET /assets/0.3/css/1b7ab17.css HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: text/css
Content-Length: 395403
Connection: keep-alive
Accept-Ranges: bytes
ETag: "7f7d227d2e30f15741bc0c9b98dbbb13"
Last-Modified: Wed, 06 Sep 2023 21:33:49 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdbeed712a-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/7b8ec9d.js

104.18.2.35

200 OK

7.3 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/7b8ec9d.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (7276), with no line terminators
Size
7.3 kB (7276 bytes)
Hash
fff488f4c9cf9c629dad5bc12af7bd51
f0d050ab7e8b9a036c5129a58e1e5670e854afec
a11c00cfe15af91d93c02c538bfc30ec82e04f0967b4eca02f6b0d2649ba813d

HTTP Headers

GET /assets/0.3/7b8ec9d.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: application/javascript
Content-Length: 7276
Connection: keep-alive
Accept-Ranges: bytes
ETag: "fff488f4c9cf9c629dad5bc12af7bd51"
Last-Modified: Mon, 13 Nov 2023 22:28:58 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdadcf5695-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/25edc65.js

104.18.2.35

200 OK

264 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/25edc65.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65485)
Size
264 kB (264197 bytes)
Hash
031bcb3589df32aca2b3cf1927586eb1
b136b0773addc657b2a0bd025097deb50fc8bb2f
b3120ed90ea0539af3f4c9c50088b6d7dd6e8750bfa4ff2f9c4a3150eea3722b

HTTP Headers

GET /assets/0.3/25edc65.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: application/javascript
Content-Length: 264197
Connection: keep-alive
Accept-Ranges: bytes
ETag: "031bcb3589df32aca2b3cf1927586eb1"
Last-Modified: Wed, 06 Sep 2023 21:30:50 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdbd9a0b69-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cbf060d.js

104.18.2.35

200 OK

787 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cbf060d.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
787 kB (787169 bytes)
Hash
ee522c8bb2639a0026ce7e3dbd00aed7
94af4f96039e050653a6b2f3c4e5a2772a13cc20
a0f7dbb128a4729956717989e69fc280f094942570fb703a2f43e6e3c5279f47

HTTP Headers

GET /assets/0.3/cbf060d.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: application/javascript
Content-Length: 787169
Connection: keep-alive
Accept-Ranges: bytes
ETag: "ee522c8bb2639a0026ce7e3dbd00aed7"
Last-Modified: Mon, 18 Sep 2023 21:09:39 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdbda256bd-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cb42003.js

104.18.2.35

200 OK

1.9 MB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/cb42003.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65485)
Size
1.9 MB (1871959 bytes)
Hash
3412a6a8cae7d9856dc802bd942cf417
b147969cf63fbb056ac0a2bdd8ce7dba8f53fa54
504dfa2f17db322b33d8756ecffbefb6435ac52a095a3be0b027550239473dd4

HTTP Headers

GET /assets/0.3/cb42003.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: application/javascript
Content-Length: 1871959
Connection: keep-alive
Accept-Ranges: bytes
ETag: "3412a6a8cae7d9856dc802bd942cf417"
Last-Modified: Wed, 06 Sep 2023 21:31:12 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdad091c0a-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/css/87b7056.css

104.18.2.35

200 OK

422 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/css/87b7056.css
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (64484)
Size
422 kB (421459 bytes)
Hash
9a64b88f6e9659864b1849b946700858
6b6c4fd8e5c0e6f835b581047f63db8e36677b7a
4bfe5918e4988a0d250b5de6aa153d6a5a5bfd769d1343e3cb203053ac448f47

HTTP Headers

GET /assets/0.3/css/87b7056.css HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:58 GMT
Content-Type: text/css
Content-Length: 421459
Connection: keep-alive
Accept-Ranges: bytes
ETag: "9a64b88f6e9659864b1849b946700858"
Last-Modified: Wed, 06 Sep 2023 21:31:15 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcbdcf2fb500-OSL

fonts.gstatic.com/s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx_tkP.woff2

216.58.207.227

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx_tkP.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20280, version 1.0
Size
20 kB (20280 bytes)
Hash
254a5027fe9cd06856e9151144529983
0b8b8bddf55f2338776038b8d9584978cc83683e
5d9b5219ec113f2e5d4dfd05ed34e877e6b6b9d33e34b4c4bda2bf2b4ce316f3

HTTP Headers

GET /s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx_tkP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lsvideo.mywebforum.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 04:21:15 GMT
expires: Fri, 02 May 2025 04:21:15 GMT
cache-control: public, max-age=31536000
age: 268843
last-modified: Thu, 24 Aug 2023 21:12:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx-tkPRS4.woff2

216.58.207.227

200 OK

10 kB

URL GET HTTP/2
fonts.gstatic.com/s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx-tkPRS4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 10056, version 1.0
Size
10 kB (10056 bytes)
Hash
150594d562734fb86a77a5bf98ff7731
f19d8a1abff58715bc47ae92ee6d0bb76ce01204
760ab98ddf50ccd0453f090749cbaca42f534eca35ac65fa233d2236f6fa1d3e

HTTP Headers

GET /s/bellotatext/v18/0FlTVP2VnlWS4f3-UE9hHXMx-tkPRS4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lsvideo.mywebforum.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 06:39:46 GMT
expires: Fri, 02 May 2025 06:39:46 GMT
cache-control: public, max-age=31536000
age: 260532
last-modified: Thu, 24 Aug 2023 21:12:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/fonts/materialdesignicons-webfont.e9db400.woff2

104.18.2.35

200 OK

325 kB

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/fonts/materialdesignicons-webfont.e9db400.woff2
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 325244, version 1.0
Size
325 kB (325244 bytes)
Hash
7a44ea195f395e1d086010e44555a5c4
5bc948afffe6633639154e024bf047cf3ef81326
da7fba3ca3e0b9cd42a9cd10c7c6ed16d2fdb938174116601cd3d51033c6f490

HTTP Headers

GET /assets/0.3/fonts/materialdesignicons-webfont.e9db400.woff2 HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lsvideo.mywebforum.com
DNT: 1
Connection: keep-alive
Referer: https://pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:59 GMT
Content-Type: font/woff2
Content-Length: 325244
Connection: keep-alive
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
ETag: "7a44ea195f395e1d086010e44555a5c4"
Last-Modified: Wed, 06 Sep 2023 21:31:30 GMT
Vary: Origin, Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcc3389d1c0a-OSL

lsvideo.mywebforum.com/favicon.ico

172.67.69.187

404 Not Found

2 B

URL GET HTTP/2
lsvideo.mywebforum.com/favicon.ico
IP
172.67.69.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmywebforum.com
Fingerprint5F:E8:D1:0A:2D:B6:F9:F4:ED:07:CC:97:89:FA:41:4D:16:71:C9:6C
ValidityWed, 01 May 2024 21:43:37 GMT - Tue, 30 Jul 2024 21:43:36 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: lsvideo.mywebforum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lsvideo.mywebforum.com/
DNT: 1
Connection: keep-alive
Cookie: auth.strategy=local; auth.X-Host=lsvideo.mywebforum.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Sun, 05 May 2024 07:01:59 GMT
content-type: application/json; charset=utf-8
content-length: 2
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u4CtCVWpEZXHiPJEMChkU%2FI4pqn%2FNfgaZbA3jqGCdqnQqQsQZSjllUqEKCnV5Wuk2QeY7PBp8Old5raAfnNc7siXD4TS1EUet7r97EWuHkDUTLOr2KbNaZd2Il%2F8%2FwnjH4qFJAF9Skk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eedcc46d7e568d-OSL
X-Firefox-Spdy: h2

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/8a29f31.js

104.18.2.35

200 OK

458 B

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/8a29f31.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (458), with no line terminators
Size
458 B (458 bytes)
Hash
f07791c919c7ae14df9d6d78504b4ff4
c84429c2cbdee7be785e6ca0a9e4156b7d54b99e
834100b1c48037891fa77deac4269b98ef82719a5478f9eab897ede4fb17d551

HTTP Headers

GET /assets/0.3/8a29f31.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:01:59 GMT
Content-Type: application/javascript
Content-Length: 458
Connection: keep-alive
Accept-Ranges: bytes
ETag: "f07791c919c7ae14df9d6d78504b4ff4"
Last-Modified: Wed, 06 Sep 2023 21:31:02 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedcc79c1d1c0a-OSL

soupy-user.com/Yz2.xApBZCW_5E0FZGGHF-0JYKTL9My_cOmPlQkRP-WTJUhVYWj_NYmZYaTbU-0dNe2fQg3_MiDjUkzlY-jnRohpZqT_gsytMujvN-kxNy2zRAi_OCGDME3FN-GHZIjJ

88.85.68.219

200 OK

0 B

URL POST HTTP/2
soupy-user.com/Yz2.xApBZCW_5E0FZGGHF-0JYKTL9My_cOmPlQkRP-WTJUhVYWj_NYmZYaTbU-0dNe2fQg3_MiDjUkzlY-jnRohpZqT_gsytMujvN-kxNy2zRAi_OCGDME3FN-GHZIjJ
IP
88.85.68.219:443
ASN
#35415 Webzilla B.V.

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subjectsoupy-user.com
FingerprintBD:2F:F1:F5:DC:98:CC:EB:6B:58:98:D8:BB:31:73:19:50:28:CB:AB
ValidityWed, 20 Mar 2024 06:01:31 GMT - Tue, 18 Jun 2024 06:01:30 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /Yz2.xApBZCW_5E0FZGGHF-0JYKTL9My_cOmPlQkRP-WTJUhVYWj_NYmZYaTbU-0dNe2fQg3_MiDjUkzlY-jnRohpZqT_gsytMujvN-kxNy2zRAi_OCGDME3FN-GHZIjJ HTTP/1.1
Host: soupy-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 44
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 07:02:00 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-content-type-options: nosniff
X-Firefox-Spdy: h2

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/ae9661a.js

104.18.2.35

200 OK

482 B

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/ae9661a.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (482), with no line terminators
Size
482 B (482 bytes)
Hash
eb44255e9fdd369dc182bb49439f9a4a
1748b04e5ed346c97dfc0c5318bb86273f146bad
717d8e4aebe9c73302ad073d8406d1f57418ffd88e24cc0233ad85f060ecd558

HTTP Headers

GET /assets/0.3/ae9661a.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:02:00 GMT
Content-Type: application/javascript
Content-Length: 482
Connection: keep-alive
Accept-Ranges: bytes
ETag: "eb44255e9fdd369dc182bb49439f9a4a"
Last-Modified: Wed, 06 Sep 2023 21:31:08 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedccc7c74b500-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/f2fb257.js

104.18.2.35

200 OK

494 B

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/f2fb257.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (494), with no line terminators
Size
494 B (494 bytes)
Hash
4a5e4bae54112801d183e0914d707962
bc00c6afcb6b9a5ef4f9a32b5d93b65344cd8b7f
da5b5d047ad023757313fe4b2fc95c856c7f578bf3891a4a7e5fdd4736e257fb

HTTP Headers

GET /assets/0.3/f2fb257.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:02:00 GMT
Content-Type: application/javascript
Content-Length: 494
Connection: keep-alive
Accept-Ranges: bytes
ETag: "4a5e4bae54112801d183e0914d707962"
Last-Modified: Wed, 06 Sep 2023 21:31:22 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedccc794156bd-OSL

pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/23ca741.js

104.18.2.35

200 OK

458 B

URL GET HTTP/1.1
pub-1e27250373774d6ca37239bbf5810b5c.r2.dev/assets/0.3/23ca741.js
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (458), with no line terminators
Size
458 B (458 bytes)
Hash
60c5d1c2cebd0f33b1631f5e8d6e8dd5
7b40984f5cc3cf0881d4a5683fec547914bc8dd1
39cb9574ec410118c935fa6ad7fc7792d920bde547bfa60a92c2c2ec8c19c2b6

HTTP Headers

GET /assets/0.3/23ca741.js HTTP/1.1
Host: pub-1e27250373774d6ca37239bbf5810b5c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 07:02:00 GMT
Content-Type: application/javascript
Content-Length: 458
Connection: keep-alive
Accept-Ranges: bytes
ETag: "60c5d1c2cebd0f33b1631f5e8d6e8dd5"
Last-Modified: Wed, 06 Sep 2023 21:30:48 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87eedccc7f6e1c0a-OSL

service.supercounters.com/fc.php?id=1640083&w=0&v=1&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Flsvideo.mywebforum.com%2F&sw=1280&sh=1024&rand=15

172.104.29.90

200 OK

57 B

URL GET HTTP/1.1
service.supercounters.com/fc.php?id=1640083&w=0&v=1&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Flsvideo.mywebforum.com%2F&sw=1280&sh=1024&rand=15
IP
172.104.29.90:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerSectigo Limited
Subject*.supercounters.com
FingerprintE8:89:54:DA:4C:96:E2:77:F7:4C:A8:58:6E:9F:9D:AC:0E:4E:81:63
ValidityThu, 21 Sep 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
57 B (57 bytes)
Hash
adeb3bfa627584a6be5312af5e01e90a
33a1a378c468e4f410f6900318beba2025d5f9be
524a364813681043e18aa904a980672d84250a82bb30895f4d774bfce2ed2c31

HTTP Headers

GET /fc.php?id=1640083&w=0&v=1&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Flsvideo.mywebforum.com%2F&sw=1280&sh=1024&rand=15 HTTP/1.1
Host: service.supercounters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 05 May 2024 07:02:00 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.13
Content-Encoding: gzip

lsvideo.mywebforum.com/

172.67.69.187

200 OK

78 kB

URL User Request GET HTTP/2
lsvideo.mywebforum.com/
IP
172.67.69.187:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectmywebforum.com
Fingerprint5F:E8:D1:0A:2D:B6:F9:F4:ED:07:CC:97:89:FA:41:4D:16:71:C9:6C
ValidityWed, 01 May 2024 21:43:37 GMT - Tue, 30 Jul 2024 21:43:36 GMT

File type

Size
78 kB (78422 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: lsvideo.mywebforum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 07:01:57 GMT
content-type: text/html; charset=utf-8
strict-transport-security: max-age=15724800; includeSubDomains
content-security-policy: default-src 'self' https: 'unsafe-inline';img-src 'self' data: https:;font-src 'self' data: https:;script-src 'self' https: 'unsafe-inline' 'unsafe-eval' blob:;object-src 'none';form-action 'self';frame-ancestors 'self';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
referrer-policy: same-origin
permissions-policy: fullscreen=(self), payment=(self), sync-xhr=()
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
set-cookie: auth.strategy=local; Path=/
auth.X-Host=lsvideo.mywebforum.com; Path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KJmeOxuiwhlV3jQpIKvz%2FcOnd2EuU4%2BEGebYnOoudTmYpMrb%2F%2BimszFDnjxfvI8jAzRxMi%2F%2B4WXRVKurJ3qsjBkjQIRwDWRjjalLMv0DI2ZaCO3XW4P6YTj16egHyYIxfa2nGHY%2BlGk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eedcb919b5568d-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.similarlength.pro/ecc874/795b9af97abd.js

67.216.91.5

200 OK

70 kB

URL GET HTTP/2
www.similarlength.pro/ecc874/795b9af97abd.js
IP
67.216.91.5:443
ASN
#35415 Webzilla B.V.

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subjectwww.similarlength.pro
Fingerprint0B:AC:39:1D:B7:7C:8C:27:2D:CE:00:3E:35:D5:FB:F3:AB:F9:1F:22
ValidityThu, 02 May 2024 09:48:11 GMT - Wed, 31 Jul 2024 09:48:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70406 bytes)
Hash
8fa75dc9276bf4184fc6d184bcdfd39e
c12bc6389248c6a34744619ceb96934339b7214c
5bd880f8beb58d07106966fdb15a6c6a75ccba0d7adf92c47501077b10772461

HTTP Headers

GET /ecc874/795b9af97abd.js HTTP/1.1
Host: www.similarlength.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ucdn/1.24.0
date: Sun, 05 May 2024 07:02:00 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315127007, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsqzmAdmqk/B6ooG0EIWoxnf5jngzO4v15H/4XOXMHf5kBdesHq2ojvvXowTQOwGQ5U=
x-served-from: l1
x-vhostid: 93, 19074
content-encoding: br
X-Firefox-Spdy: h2

www.similarlength.pro/ecc874/795b9af97abd.js

67.216.91.5

200 OK

70 kB

URL GET HTTP/2
www.similarlength.pro/ecc874/795b9af97abd.js
IP
67.216.91.5:443
ASN
#35415 Webzilla B.V.

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subjectwww.similarlength.pro
Fingerprint0B:AC:39:1D:B7:7C:8C:27:2D:CE:00:3E:35:D5:FB:F3:AB:F9:1F:22
ValidityThu, 02 May 2024 09:48:11 GMT - Wed, 31 Jul 2024 09:48:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
70 kB (70406 bytes)
Hash
8fa75dc9276bf4184fc6d184bcdfd39e
c12bc6389248c6a34744619ceb96934339b7214c
5bd880f8beb58d07106966fdb15a6c6a75ccba0d7adf92c47501077b10772461

HTTP Headers

GET /ecc874/795b9af97abd.js HTTP/1.1
Host: www.similarlength.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://lsvideo.mywebforum.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ucdn/1.24.0
date: Sun, 05 May 2024 07:02:00 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315127007, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsqzmAdmqk/B6ooG0EIWoxnf5jngzO4v15H/4XOXMHf5kBdesHq2ojvvXowTQOwGQ5U=
x-served-from: l1
x-vhostid: 93, 18469
content-encoding: br
X-Firefox-Spdy: h2

lsvideo.mywebforum.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.69.187

200 OK

12 kB

URL GET HTTP/2
lsvideo.mywebforum.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.69.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmywebforum.com
Fingerprint5F:E8:D1:0A:2D:B6:F9:F4:ED:07:CC:97:89:FA:41:4D:16:71:C9:6C
ValidityWed, 01 May 2024 21:43:37 GMT - Tue, 30 Jul 2024 21:43:36 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: lsvideo.mywebforum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lsvideo.mywebforum.com/
DNT: 1
Connection: keep-alive
Cookie: auth.strategy=local; auth.X-Host=lsvideo.mywebforum.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 07:01:57 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VdwF6kc7md1gdJ96z81VDqgvd3N9nuDDTMrchh1id6YijXG%2BCEZY7CsfGdPQjMMyXhB3TnDzxNYwW4spm53HoLQ5iakCIX8DsHV2Zf9xe%2BLSQb%2FdpdmqotpPjVWHsSaZvR3x3yg0rqU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eedcbd5ef6568d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 07 May 2024 07:01:57 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

widget.supercounters.com/ssl/texthit.js

172.67.154.41

200 OK

2.5 kB

URL GET HTTP/2
widget.supercounters.com/ssl/texthit.js
IP
172.67.154.41:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectsupercounters.com
Fingerprint69:3F:BD:71:B3:05:EB:87:23:1D:07:1B:85:A1:73:89:CA:EF:BB:13
ValidityFri, 12 Apr 2024 01:08:53 GMT - Thu, 11 Jul 2024 01:08:52 GMT

File type
ASCII text, with very long lines (2696), with no line terminators
Size
2.5 kB (2492 bytes)
Hash
36fd956dc17c39fcf4b17a4dec2a5ea0
faf8deaa01b8d3c7ce1bd6dc27629a4cccfccaf8
3e1596b4c2387bb241addf9c558dda5e32ed0ce7246574a8151b244faaf0a562

HTTP Headers

GET /ssl/texthit.js HTTP/1.1
Host: widget.supercounters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 07:02:00 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 12:17:42 GMT
etag: W/"6220b1e6-9bc"
cache-control: max-age=300
cf-cache-status: HIT
age: 424
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VPzJd%2F1DZDBnbstCsyveYvO8CKX63AymvUQWledNiUxbv%2B2sB7KbhAyjdmgi2yHimSY1EVzK0PVO%2BEkwpAB%2B%2BEphzfsgzJAq6wbfibD%2Bxxry0DgaZdalTSkQJIUHi9jEzwlTpiTMyjphWMU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eedccb8b180b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

soupy-user.com/cEDX9.6Jb/2K5/lDS/WuQO9GNXTII_3dMQzCEUw/O/Ck0E1/MRjkcIzgMYTfAB5C

88.85.68.219

200 OK

42 kB

URL GET HTTP/2
soupy-user.com/cEDX9.6Jb/2K5/lDS/WuQO9GNXTII_3dMQzCEUw/O/Ck0E1/MRjkcIzgMYTfAB5C
IP
88.85.68.219:443
ASN
#35415 Webzilla B.V.

Requested by
https://lsvideo.mywebforum.com/
Certificate
IssuerLet's Encrypt
Subjectsoupy-user.com
FingerprintBD:2F:F1:F5:DC:98:CC:EB:6B:58:98:D8:BB:31:73:19:50:28:CB:AB
ValidityWed, 20 Mar 2024 06:01:31 GMT - Tue, 18 Jun 2024 06:01:30 GMT

File type

Size
42 kB (41665 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cEDX9.6Jb/2K5/lDS/WuQO9GNXTII_3dMQzCEUw/O/Ck0E1/MRjkcIzgMYTfAB5C HTTP/1.1
Host: soupy-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 05 May 2024 07:02:00 GMT
content-type: application/javascript
vary: Accept-Encoding
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
last-modified: Sun, 05 May 2024 07:02:00 GMT
access-control-allow-methods: GET
set-cookie: kadSlcJ=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; max-age=1746428520; path=/
uniqCookie=32320984c80d481c7d83298e6b152c62; max-age=1717484520; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by