Report - jasonresponsemeasure.com/https:/streamtape.com/get

Report Overview

Submitted URL
jasonresponsemeasure.com/https:/streamtape.com/get_video
IP
186.2.163.111
ASN
#59692 IQWeb FZ-LLC
Submitted
2024-04-16 13:53:59
Access
public
Website Title
404 - Not found | Content Delivery Network (CDN) & Video Cloud
Final URL
voe.sx/https:/streamtape.com/get_video
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	1.3 kB	58 kB	104.17.25.14
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-15	726 B	423 B	192.243.61.225
continuousselfevidentinestimable.com	unknown	unknown	No data	No data	4.8 kB	10 kB	192.243.59.12
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-04-07	2.0 kB	113 kB	104.21.70.253
jasonresponsemeasure.com	unknown	unknown	No data	No data	512 B	96 kB	186.2.163.111
voe.sx	52042	unknown	2019-06-05	2024-03-24	3.0 kB	260 kB	186.2.163.208
imasdk.googleapis.com	11661	2005-01-25	2014-10-30	2024-04-15	407 B	138 kB	142.250.74.106
separationharmgreatest.com	unknown	unknown	No data	No data	436 B	15 kB	192.243.59.13
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-04-16	338 B	942 B	143.204.53.97
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29	2024-04-16	492 B	34 kB	104.26.7.19
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-16	867 B	9.1 kB	142.250.74.138
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-15	401 B	28 kB	104.21.35.227
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-16	2.1 kB	75 kB	142.250.74.163
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-15	413 B	413 B	3.123.64.179

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	unseenreport.com	Sinkholed
2024-04-16	medium	continuousselfevidentinestimable.com	Sinkholed
2024-04-16	medium	continuousselfevidentinestimable.com	Sinkholed
2024-04-16	medium	continuousselfevidentinestimable.com	Sinkholed
2024-04-16	medium	continuousselfevidentinestimable.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	unknown	601 B	2023-07-06	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-06 22:22:48 Last Seen2024-04-27 18:36:46 Times Seen4 Hash e1a0635ebb8a5be0e07b470af4fae2ed 5447e06665299b033465e44f2250dc8582b914f9 d1a88b1513be6934d15c14247eadaccff012fdcb1dc4b942311196311b799e3f Loading...

	voe.sx/https:/streamtape.com/get_video	502 B	2023-12-21	2024-04-28
Pretty URL voe.sx/https:/streamtape.com/get_video IP 186.2.163.208 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-21 19:29:13 Last Seen2024-04-28 21:33:21 Times Seen168 Hash a70fb3ccc190fdfe4c06804cafa694bc 50630603fa35dcf518ed6bbeef164ec2a65ab6ae 2dd7b05386bab0c4528e26a81a13742dc580154aa2980ff125e99e0b4974376d Loading...

	imasdk.googleapis.com/js/sdkloader/ima3.js	401 kB	2024-04-10	2024-04-17
Pretty URL imasdk.googleapis.com/js/sdkloader/ima3.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-10 00:40:45 Last Seen2024-04-17 18:14:21 Times Seen111 Hash d57e3a9a465135303e1ca7578aa5d6ba eef41a7334ba1c3b32daf2139b4e3d4e5a05ddfd 434037aecc0912473903c6129a4149c3226c91b765274749df5ac2d8173180a0 Loading...

	cdnjs.cloudflare.com/ajax/libs/simplebar/6.2.5/simplebar.min.js	27 kB	2023-05-15	2024-04-28
Pretty URL cdnjs.cloudflare.com/ajax/libs/simplebar/6.2.5/simplebar.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-15 07:42:06 Last Seen2024-04-28 21:33:21 Times Seen524 Hash 4cbf4903e55851c81ff41f4c0a06ff25 fb7bdff45145bb9a81ecca8a265c6e8393ec226e c95620ba4204d07af1f58e3cc5b90bc725ca896ccde5998195ca54c9939f8416 Loading...

	voe.sx/https:/streamtape.com/get_video	88 kB	2024-04-16	2024-04-16
Pretty URL voe.sx/https:/streamtape.com/get_video IP 186.2.163.208 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 15:54:06 Last Seen2024-04-16 15:54:06 Times Seen1 Hash 63cb86c0ddf8004fe6d77ec28ee5f0e0 49074e24792810e40c192a85fb98bd6f514770d7 5ab9bf1af311b1260a25d8f9a73c889ef7b7086949c5bd92c69237c97e21de2f Loading...

	voe.sx/https:/streamtape.com/get_video	419 B	2024-04-16	2024-04-16
Pretty URL voe.sx/https:/streamtape.com/get_video IP 186.2.163.208 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 15:54:06 Last Seen2024-04-16 15:54:06 Times Seen1 Hash 2f8263c8203085f9069d340c079abee7 d92dc32ac833fc4facd3d84d248051e1197e0f90 2f61355cceb10c1f2d207b69f5802b80b80e62a6d529dcd293940eab26b48f4b Loading...

	separationharmgreatest.com/0e/d5/91/0ed591400877d316744c6353cd338f08.js	40 kB	2024-04-16	2024-04-16
Pretty URL separationharmgreatest.com/0e/d5/91/0ed591400877d316744c6353cd338f08.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 15:54:06 Last Seen2024-04-16 15:54:06 Times Seen2 Hash f21388198e2c073c60387b67cf2d83de abc872414b7a82a76f87478e29e832d6b216a58a eaaeb48e4d8901a5e96daaa0f43bb6918a4a65f01fda2fee6b35c7f231556c6d Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.2/js/bootstrap.bundle.min.js	81 kB	2023-09-18	2024-04-30
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.2/js/bootstrap.bundle.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-18 01:21:14 Last Seen2024-04-30 00:54:23 Times Seen2765 Hash 6baf57f25796c332144ed58a2a0cd9ee f7fd0f3dc84b2cf93bf81e832505a673f354e0a3 82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js	88 kB	2023-08-31	2024-05-01
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03:19 Last Seen2024-05-01 22:37:09 Times Seen8454 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

	voe.sx/https:/streamtape.com/get_video	1.5 kB	2024-04-16	2024-04-26
Pretty URL voe.sx/https:/streamtape.com/get_video IP 186.2.163.208 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-16 15:54:06 Last Seen2024-04-26 06:05:43 Times Seen2 Hash 1da1238cee38ec727a1f9e1f7da3e7fd e19496c0bc995453f6f454784137cc754c652850 615f4ed282f528069ba892796c0117bb48e57fc36ad13729296119796be8fcf3 Loading...

	voe.sx/s/js/site.min.js?b02b5c45131d5b73493b70267c97532f	100 kB	2024-01-27	2024-04-21
Pretty URL voe.sx/s/js/site.min.js?b02b5c45131d5b73493b70267c97532f IP 186.2.163.208 ASN #59692 IQWeb FZ-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-27 16:34:46 Last Seen2024-04-21 01:11:46 Times Seen138 Hash b01ffcdcf56d501dfc7b7519bc365248 dc691ecf6a08dd25287ff739e502ca1fabd2505c de969169e4b3d14be28a393da1fdfcbc6cb4e851eeddb11662cc5e5dc13f1bae Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-02
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 104.21.35.227 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-02 01:53:43 Times Seen1589 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

HTTP Transactions (31)

URL IP Response Size

voe.sx/s/css/site.min.css?acdc5f3af3365a20b8f72c97ed0bcf6d

186.2.163.208

200 OK

37 kB

URL GET HTTP/2
voe.sx/s/css/site.min.css?acdc5f3af3365a20b8f72c97ed0bcf6d
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65268)
Size
37 kB (36658 bytes)
Hash
4eeffb228630a8eebe09c3e92118ccd4
0209f10aa6122c0a47e2e43440604817b13fbea4
432f583f72efff6556e035be992da14ec67689fe172e30c9d4cc5685e75dcb30

HTTP Headers

GET /s/css/site.min.css?acdc5f3af3365a20b8f72c97ed0bcf6d HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/https:/streamtape.com/get_video
Cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:51:04 GMT
content-type: text/css
last-modified: Sun, 21 Jan 2024 18:42:03 GMT
vary: Accept-Encoding
etag: W/"65ad657b-42cb3"
expires: Thu, 09 May 2024 09:51:04 GMT
cache-control: max-age=2592000
content-encoding: br
age: 619349
content-length: 36658
ddg-cache-status: HIT
X-Firefox-Spdy: h2

voe.sx/s/js/site.min.js?b02b5c45131d5b73493b70267c97532f

186.2.163.208

200 OK

23 kB

URL GET HTTP/2
voe.sx/s/js/site.min.js?b02b5c45131d5b73493b70267c97532f
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
23 kB (22983 bytes)
Hash
b01ffcdcf56d501dfc7b7519bc365248
dc691ecf6a08dd25287ff739e502ca1fabd2505c
de969169e4b3d14be28a393da1fdfcbc6cb4e851eeddb11662cc5e5dc13f1bae

HTTP Headers

GET /s/js/site.min.js?b02b5c45131d5b73493b70267c97532f HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/https:/streamtape.com/get_video
Cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:46:02 GMT
content-type: application/javascript
last-modified: Sat, 27 Jan 2024 13:02:04 GMT
etag: W/"65b4fecc-185f6"
expires: Thu, 09 May 2024 09:46:02 GMT
cache-control: max-age=2592000
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 619653
content-length: 22983
ddg-cache-status: HIT
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
27 kB (27446 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 27446
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ed75bb-6b36"
last-modified: Tue, 29 Aug 2023 04:36:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 77753
expires: Sun, 06 Apr 2025 13:53:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4V0syLcKrYvok0zoYkfPAooUP%2FcBe%2Bu48sfTZNLECKlTmFGnoo79Jh5pGzbjJk78tM6mS2h6gfOtUzjVa8pJYHDjVezMxW0jCJfu%2Baz8wkYllucpBHpngCHLqGVqSNrSzLNly2KF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8754a989d9980b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/simplebar/6.2.5/simplebar.min.js

104.17.25.14

200 OK

6.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/simplebar/6.2.5/simplebar.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (26884)
Size
6.2 kB (6248 bytes)
Hash
4cbf4903e55851c81ff41f4c0a06ff25
fb7bdff45145bb9a81ecca8a265c6e8393ec226e
c95620ba4204d07af1f58e3cc5b90bc725ca896ccde5998195ca54c9939f8416

HTTP Headers

GET /ajax/libs/simplebar/6.2.5/simplebar.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 6248
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "659a2b69-1868"
last-modified: Sun, 07 Jan 2024 05:41:13 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 78762
expires: Sun, 06 Apr 2025 13:53:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N37gQb%2BAh%2BBlI3lhPBG5eZ4G2Y8tXRP5ZO86Ao8hMwNYhP0%2BzpEN1FaWECRBIxoxqjg2lm3dZmDd74SyUb15lmsqayQX6Jm%2FoWRkh9A%2BRHFUbjczObckxxvSqIyjanMKCrncLCmp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8754a989d99d0b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.2/js/bootstrap.bundle.min.js

104.17.25.14

200 OK

21 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.2/js/bootstrap.bundle.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
21 kB (21203 bytes)
Hash
6baf57f25796c332144ed58a2a0cd9ee
f7fd0f3dc84b2cf93bf81e832505a673f354e0a3
82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd

HTTP Headers

GET /ajax/libs/bootstrap/5.3.2/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 21203
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6503298b-52d3"
last-modified: Thu, 14 Sep 2023 15:40:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 76878
expires: Sun, 06 Apr 2025 13:53:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9zU0DQv4JprEHS0csrwLTZLJw2%2B8arAarqFED0D0BzDMvMeN4fRiiG2mLJsa%2Bfe2FSHmpd%2B9wL%2BCYxv%2BEjguEqiAb5P8a8PychgxIENRP5MmAsG8wbkKdBi29%2Fk7RNVXBlR9D3Ya"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8754a989e9a40b65-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

imasdk.googleapis.com/js/sdkloader/ima3.js

142.250.74.106

200 OK

138 kB

URL GET HTTP/2
imasdk.googleapis.com/js/sdkloader/ima3.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (2042)
Size
138 kB (137564 bytes)
Hash
d57e3a9a465135303e1ca7578aa5d6ba
eef41a7334ba1c3b32daf2139b4e3d4e5a05ddfd
434037aecc0912473903c6129a4149c3226c91b765274749df5ac2d8173180a0

HTTP Headers

GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 137564
date: Tue, 16 Apr 2024 13:53:33 GMT
expires: Tue, 16 Apr 2024 13:53:33 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Figtree:wght@400;600;800&display=swap

142.250.74.138

200 OK

899 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Figtree:wght@400;600;800&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
gzip compressed data, max compression
Size
899 B (899 bytes)
Hash
e5e8b2088e171a681ed650a962b26b94
233361f5598ff696c7d8eb2e61d096256157ad07
23fda61683d367d5503b5fc1565007c8b71a9cb72cdefb892c698778cf688397

HTTP Headers

GET /css2?family=Figtree:wght@400;600;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 13:53:33 GMT
date: Tue, 16 Apr 2024 13:53:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2

142.250.74.163

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20080, version 1.0
Size
20 kB (20080 bytes)
Hash
a87b95d73b0a1092ca62a6934227ec22
5e1de72648af71b468843876289fdd0a763a10c4
aafc56842faa29d254e8317348063a257c11c5d2369d36d5a437e36c398bbe99

HTTP Headers

GET /s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:36 GMT
expires: Wed, 16 Apr 2025 08:04:36 GMT
cache-control: public, max-age=31536000
age: 20938
last-modified: Thu, 20 Jul 2023 20:53:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2

142.250.74.163

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20080, version 1.0
Size
20 kB (20080 bytes)
Hash
a87b95d73b0a1092ca62a6934227ec22
5e1de72648af71b468843876289fdd0a763a10c4
aafc56842faa29d254e8317348063a257c11c5d2369d36d5a437e36c398bbe99

HTTP Headers

GET /s/figtree/v5/_Xms-HUzqDCFdgfMm4S9DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:36 GMT
expires: Wed, 16 Apr 2025 08:04:36 GMT
cache-control: public, max-age=31536000
age: 20938
last-modified: Thu, 20 Jul 2023 20:53:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

separationharmgreatest.com/0e/d5/91/0ed591400877d316744c6353cd338f08.js

192.243.59.13

200 OK

14 kB

URL GET HTTP/1.1
separationharmgreatest.com/0e/d5/91/0ed591400877d316744c6353cd338f08.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectseparationharmgreatest.com
Fingerprint6D:AE:51:DF:5C:ED:3E:FB:BA:47:D8:61:D9:C3:5B:31:F4:8E:D6:8F
ValidityMon, 15 Apr 2024 12:23:32 GMT - Sun, 14 Jul 2024 12:23:31 GMT

File type
JavaScript source, ASCII text, with very long lines (39580), with no line terminators
Size
14 kB (13904 bytes)
Hash
f21388198e2c073c60387b67cf2d83de
abc872414b7a82a76f87478e29e832d6b216a58a
eaaeb48e4d8901a5e96daaa0f43bb6918a4a65f01fda2fee6b35c7f231556c6d

HTTP Headers

GET /0e/d5/91/0ed591400877d316744c6353cd338f08.js HTTP/1.1
Host: separationharmgreatest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 13:53:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b932161c533ef4cd77acca5495d94c83
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0bea14a24acf01e7602c416935848793
3493b99ca0da4d0c60f848069fa57e39b335a87a
229a97c14569254bf9fe6342e7cd4efd9e4f4b0ff89fb3c1e5c935976ab01062

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 16 Apr 2024 13:53:34 GMT
Last-Modified: Tue, 16 Apr 2024 12:22:42 GMT
Server: ECAcc (ska/F6AF)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zFB_8PDkdv9CMUBgEz1waKX0hLb8KyRyWmT14XbmaL8BaeayEKL9cA==
Age: 5453

proftrafficcounter.com/stats

3.123.64.179

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.123.64.179:443
ASN
#16509 AMAZON-02

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
c786b697f77e70cfadd513c0d2378f8a
083ee533166e64f435ee309c8a2846f5ddf26619
b248088e6c7a0bb5be444eda7afb4e3db675453f7959f9097fe09cd0eb7b4f22

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:34 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://voe.sx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=c475e7a7-7477-4742-be8d-c638809fef38:1:1; expires=Fri, 14 Apr 2034 13:53:34 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

voe.sx/android-icon-192x192.png

186.2.163.208

200 OK

7.1 kB

URL GET HTTP/2
voe.sx/android-icon-192x192.png
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
7.1 kB (7068 bytes)
Hash
6e09fa5e43f9f169c8b65bdba9683b46
e986e9353a404b28a522b85dc0b7afb480b6cb27
7940cbb7ef222596bef1a1d1db04e8a1b745dfdeb769ff9a46f4e3717396af0b

HTTP Headers

GET /android-icon-192x192.png HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/https:/streamtape.com/get_video
Cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 09:46:01 GMT
content-type: image/png
content-length: 7068
last-modified: Mon, 14 Aug 2023 01:22:27 GMT
etag: "64d981d3-1b9c"
expires: Thu, 09 May 2024 09:46:01 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 619653
ddg-cache-status: HIT
X-Firefox-Spdy: h2

voe.sx/favicon-16x16.png

186.2.163.208

200 OK

533 B

URL GET HTTP/2
voe.sx/favicon-16x16.png
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
533 B (533 bytes)
Hash
4a1c219d978909f413ca1b9a39f7523d
08859f796b01690ee81a13e4bcc0976f16c473ca
dc91f3be29e28fa5aa027f4c3165a5df794424e66c1627b90a204482b470f0be

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/https:/streamtape.com/get_video
Cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
date: Tue, 09 Apr 2024 12:19:32 GMT
content-type: image/png
content-length: 533
last-modified: Mon, 14 Aug 2023 01:22:24 GMT
etag: "64d981d0-215"
expires: Thu, 09 May 2024 12:19:32 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 610442
ddg-cache-status: HIT
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

104.21.35.227

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
104.21.35.227:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27501 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:34 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 93f89b1c0731c384711de6abb9ca1671
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 16 Apr 2024 13:53:34 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P%2BKCFyVYCRUjGH5MA9XsFE2HsPJHOxJjJ%2BsD917bhFoTsnJLAXUf1OJjpkpwhnbviQIhL2vqzG3pMP7BPDNB0rylJRi%2B5AlA%2BrScFhdlDS%2BhNt3BJ9ylCRFrmWLnSD6Yjhi5979Q%2FPmYRD1Kkcp5lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a98dcc42712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=c475e7a7-7477-4742-be8d-c638809fef38&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0ed591400877d316744c6353cd338f08&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13

192.243.61.225

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=c475e7a7-7477-4742-be8d-c638809fef38&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0ed591400877d316744c6353cd338f08&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=c475e7a7-7477-4742-be8d-c638809fef38&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0ed591400877d316744c6353cd338f08&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 13:53:35 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dd8007dd450a178f503762b6e5b363fb
Strict-Transport-Security: max-age=0; includeSubdomains

continuousselfevidentinestimable.com/sbar.json?key=0ed591400877d316744c6353cd338f08&uuid=c475e7a7-7477-4742-be8d-c638809fef38%3A1%3A1

192.243.59.12

200 OK

7.3 kB

URL GET HTTP/1.1
continuousselfevidentinestimable.com/sbar.json?key=0ed591400877d316744c6353cd338f08&uuid=c475e7a7-7477-4742-be8d-c638809fef38%3A1%3A1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectcontinuousselfevidentinestimable.com
Fingerprint1F:F4:36:85:7F:D7:60:BF:21:DA:52:FF:00:60:97:80:4B:6D:0D:3A
ValidityMon, 15 Apr 2024 12:20:33 GMT - Sun, 14 Jul 2024 12:20:32 GMT

File type
JSON text data
Size
7.3 kB (7257 bytes)
Hash
4a3ff1d355a354714534f12e740c5b7c
27c0d93f85b1bc1b54eee02b98b3e582f0f98a8e
11aeb1cf95c5489177c9304005e1ed2910a0ee70c190d7d40725feb21586ea92

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=0ed591400877d316744c6353cd338f08&uuid=c475e7a7-7477-4742-be8d-c638809fef38%3A1%3A1 HTTP/1.1
Host: continuousselfevidentinestimable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 13:53:35 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://voe.sx
Access-Control-Allow-Origin: https://voe.sx
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19089331; expires=Wed, 17 Apr 2024 13:53:35 GMT; secure; SameSite=None
uid_id2=c475e7a7-7477-4742-be8d-c638809fef38:1:1; expires=Tue, 23 Apr 2024 13:53:35 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 17 Apr 2024 13:53:35 GMT; secure; SameSite=None
uncs=1; expires=Wed, 17 Apr 2024 13:53:35 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 17 Apr 2024 13:53:35 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 17 Apr 2024 13:53:35 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 93bd8633f24f0c090f8dfadac2944bfd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

continuousselfevidentinestimable.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3dM%2BYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8awE34SBhcbZvBWN2y6rzeuCratV1uu57qe6zXWpBGJHq7OSMjsQddrdt1m0Gp67QBD819sCweWOuCDM%2FI8JJ8sP3IuQLIaaf%2Fby8Ju5zp780q%2FUDTXBgN%2B%2FEG6neoyRX8RJsZBkh6fV0Pb07WH0OnhXC704J%2FCWE6I8%2FNDxOnxuUjEg4O5zlhBpIj50ygHNYSqIWkNpu9A8lMCMI7rm0j7R9e1KenO3yydsROy%2FORPyHJCln%2B%2FgLT%2FzSUlh41bWhW51KnFMKkghzVkr0ZWnCDfXYIsT8Dy25D8V7L6ZANp%2F2DTKg3Jp6%2BwIGqLiEYrURBFK0EUtFZi0eErLPQ7HbebiMTvzAckZQ2Z1FBiBGodFLMjHRSJgyJz0OfTBvM8L3I5o26ny5jPIxGH3PVolHjUc8MOCjbrYYQ8G4GpEZjZQ2b2sC1HMMVPsFsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOubMtWR1zZIvbOfevc%2B9VY5719eqjznkgJqBnB8Go%2FOyPPzQbovHz1e2yLacMVvN31AtftRBH3vTAKAhb6bZ9x3%2B8kbgdWVpB2ad7urpyQVz%2B7gkxOyDO%2F%2FB8xPYFVJ2DSAS1eBC0r0K0Ku%2BnRQIumHYLrClm%2BjHzH2Vdn5IX58q59%2BQUEe0zODcxUyEyFT%2BUjgp66O76pS3JwU5eWfLeZ5bIvd%2Blssbdymoun7l8TO6U2fP2yHX31DpsRs%2FDB%2B8LmGzTlMu1Z8vUlybkwa9owQX5ctx%2BK%2BEZhty4VJi2yjRvvrq33MyOslTqtQeXpx%2FfA5IQ8%2B8PG%2FMe%2B0ZhCmhqmqNAvFkqlrsGyPdhskbOawKgFjjMHZVGNTSteJJUkUGKBaVzB%2FgvHi3hs6Ow1ldW%2BvYueWQLN7yDtVxiYCgNVgaoRbPG%2FcZ6Zx2%2F%2F5s8NsVoax8osHcTKqHvzIc%2Bu%2B7By2oh836Vht%2B1FERVRHLQ6SehxSltB2ApD6iO3k%2BSl23%2F8BQAA%2F%2F8BAAD%2F%2F%2FB63IGLBAAA

192.243.59.12

200 OK

7 B

URL GET HTTP/1.1
continuousselfevidentinestimable.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3dM%2BYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8awE34SBhcbZvBWN2y6rzeuCratV1uu57qe6zXWpBGJHq7OSMjsQddrdt1m0Gp67QBD819sCweWOuCDM%2FI8JJ8sP3IuQLIaaf%2Fby8Ju5zp780q%2FUDTXBgN%2B%2FEG6neoyRX8RJsZBkh6fV0Pb07WH0OnhXC704J%2FCWE6I8%2FNDxOnxuUjEg4O5zlhBpIj50ygHNYSqIWkNpu9A8lMCMI7rm0j7R9e1KenO3yydsROy%2FORPyHJCln%2B%2FgLT%2FzSUlh41bWhW51KnFMKkghzVkr0ZWnCDfXYIsT8Dy25D8V7L6ZANp%2F2DTKg3Jp6%2BwIGqLiEYrURBFK0EUtFZi0eErLPQ7HbebiMTvzAckZQ2Z1FBiBGodFLMjHRSJgyJz0OfTBvM8L3I5o26ny5jPIxGH3PVolHjUc8MOCjbrYYQ8G4GpEZjZQ2b2sC1HMMVPsFsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOubMtWR1zZIvbOfevc%2B9VY5719eqjznkgJqBnB8Go%2FOyPPzQbovHz1e2yLacMVvN31AtftRBH3vTAKAhb6bZ9x3%2B8kbgdWVpB2ad7urpyQVz%2B7gkxOyDO%2F%2FB8xPYFVJ2DSAS1eBC0r0K0Ku%2BnRQIumHYLrClm%2BjHzH2Vdn5IX58q59%2BQUEe0zODcxUyEyFT%2BUjgp66O76pS3JwU5eWfLeZ5bIvd%2Blssbdymoun7l8TO6U2fP2yHX31DpsRs%2FDB%2B8LmGzTlMu1Z8vUlybkwa9owQX5ctx%2BK%2BEZhty4VJi2yjRvvrq33MyOslTqtQeXpx%2FfA5IQ8%2B8PG%2FMe%2B0ZhCmhqmqNAvFkqlrsGyPdhskbOawKgFjjMHZVGNTSteJJUkUGKBaVzB%2FgvHi3hs6Ow1ldW%2BvYueWQLN7yDtVxiYCgNVgaoRbPG%2FcZ6Zx2%2F%2F5s8NsVoax8osHcTKqHvzIc%2Bu%2B7By2oh836Vht%2B1FERVRHLQ6SehxSltB2ApD6iO3k%2BSl23%2F8BQAA%2F%2F8BAAD%2F%2F%2FB63IGLBAAA
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectcontinuousselfevidentinestimable.com
Fingerprint1F:F4:36:85:7F:D7:60:BF:21:DA:52:FF:00:60:97:80:4B:6D:0D:3A
ValidityMon, 15 Apr 2024 12:20:33 GMT - Sun, 14 Jul 2024 12:20:32 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3dM%2BYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8awE34SBhcbZvBWN2y6rzeuCratV1uu57qe6zXWpBGJHq7OSMjsQddrdt1m0Gp67QBD819sCweWOuCDM%2FI8JJ8sP3IuQLIaaf%2Fby8Ju5zp780q%2FUDTXBgN%2B%2FEG6neoyRX8RJsZBkh6fV0Pb07WH0OnhXC704J%2FCWE6I8%2FNDxOnxuUjEg4O5zlhBpIj50ygHNYSqIWkNpu9A8lMCMI7rm0j7R9e1KenO3yydsROy%2FORPyHJCln%2B%2FgLT%2FzSUlh41bWhW51KnFMKkghzVkr0ZWnCDfXYIsT8Dy25D8V7L6ZANp%2F2DTKg3Jp6%2BwIGqLiEYrURBFK0EUtFZi0eErLPQ7HbebiMTvzAckZQ2Z1FBiBGodFLMjHRSJgyJz0OfTBvM8L3I5o26ny5jPIxGH3PVolHjUc8MOCjbrYYQ8G4GpEZjZQ2b2sC1HMMVPsFsVLHdgc4IBr1AKgtISlJSglARlTlAOqkOubMtWR1zZIvbOfevc%2B9VY5719eqjznkgJqBnB8Go%2FOyPPzQbovHz1e2yLacMVvN31AtftRBH3vTAKAhb6bZ9x3%2B8kbgdWVpB2ad7urpyQVz%2B7gkxOyDO%2F%2FB8xPYFVJ2DSAS1eBC0r0K0Ku%2BnRQIumHYLrClm%2BjHzH2Vdn5IX58q59%2BQUEe0zODcxUyEyFT%2BUjgp66O76pS3JwU5eWfLeZ5bIvd%2Blssbdymoun7l8TO6U2fP2yHX31DpsRs%2FDB%2B8LmGzTlMu1Z8vUlybkwa9owQX5ctx%2BK%2BEZhty4VJi2yjRvvrq33MyOslTqtQeXpx%2FfA5IQ8%2B8PG%2FMe%2B0ZhCmhqmqNAvFkqlrsGyPdhskbOawKgFjjMHZVGNTSteJJUkUGKBaVzB%2FgvHi3hs6Ow1ldW%2BvYueWQLN7yDtVxiYCgNVgaoRbPG%2FcZ6Zx2%2F%2F5s8NsVoax8osHcTKqHvzIc%2Bu%2B7By2oh836Vht%2B1FERVRHLQ6SehxSltB2ApD6iO3k%2BSl23%2F8BQAA%2F%2F8BAAD%2F%2F%2FB63IGLBAAA HTTP/1.1
Host: continuousselfevidentinestimable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Cookie: u_pl=19089331; uid_id2=c475e7a7-7477-4742-be8d-c638809fef38:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 13:53:35 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2aee2740733b0c1a9397c04ddbfa71af
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html

104.26.7.19

200 OK

34 kB

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html
IP
104.26.7.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
34 kB (33583 bytes)
Hash
f8f30ffb2a2a7d300f673a9c573ad94a
2160302bdf15e85c16400b0032a446d46c7f0b97
88197da554d2252c76a55a229216312e2ee61f78692f9d297358a1ee2b3fc155

HTTP Headers

GET /sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:35 GMT
content-type: text/html
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 55005
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2F4v%2F4VpQOoCc4l%2FuhcilRzfgbYoZxFHiZ3yPrGntgT1PIyDAvR2FW8yQTeqU5t5XEjE3nA%2FEtZ5GTtmCHO16KL2zl5UQ74stJlkNXtQ5vVNx2qZ7arpwb8mc46h0gkbsqNlyZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a9949d46b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:37:01 GMT
expires: Fri, 11 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 472595
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:32 GMT
expires: Wed, 16 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 11224
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

continuousselfevidentinestimable.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3TPeYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8Yw6nzSCS42zOCtbqfpvt64Kti2Xm25nut6rtdYk0Ykerg6IyGzB12v2XWbQavptQMMzX%2BxLRxY6oAPzsjzkHyy%2FMi5AMlqpP1vLwu7nevszSv9QtFcGwz48QfpdqrLFP1FmBgHSXp8Xg1tT9ceQqeHc7nQg38KYzkhzs8PEafH5yIRDw7mOmMFkSLmT6Mc1BCqhqQ1mL4DyU8JwDiubyLtH13XpqQ7f7N0xk7I8pM%2FIcsJWf79AtL%2BN5eUHDZuaVXkUqcWw6SCHNaQvRpZcYJ8dwmyPAHLb0PyX8nqkw2k%2FYNNqzQkn77CgrAtQhquhEEYrgRh0FqJRcRXWMePIrebiMSP5gOSsoZMaigxArUOitmRDorEQZE56PNpg3meF7qcUTfqMubzUMQd7no0TDzquZ0IBZv1MEKejcDUCMzsITN72JYjmOIn2K0KljuwOcGAVygFQWkJSkpQSoIyJygH1SFXtmWrI65sEXvnvnXu%2FWqs894%2BPdR5T6QE1IxgeLWfnZHnZgN0Xr76PbbFtOEK3u56getGYch9rxMGAev4bZ9x348SN4KVFaRdmre7Kyfk1c%2BuIJMT8swv%2F0dMT2DVCZh0QIsXQcsKdKvCbno00KJph%2BC6QpYvI99x9tUZeWG%2BvGtffgHBHpNzAzMVMlPhU%2FmIoKfujm%2Fqkhzc1KUl321muezLXTpb7K2c5uKp%2B9fETqkNX79sR1%2B9w2bELHzwvrD5Bk25THuWfH1Jci7MmjZMkB%2FX7YcivlHYrUuFSYts48a7a%2Bv9zAhrpU5rUHn68T0wOSHP%2FrAx%2F7FvNKaQpoYpKvSLhVKpa7BsDzZb5KwmMGqB48xBWVRj04oXSSUJlFhgGlew%2F8LxIh4bOntNZbVv76JnlkDzO0j7FQamwkBVoGoEW%2FxvnGfm8du%2F%2BXNDrJbGsTJLB7Ey6t58yLPrPqycNnyXh7FIRBiLoB0kgvG43Y5dlrDY51HEkNtJ8tLtP%2F4CAAD%2F%2FwEAAP%2F%2FcK4JaYsEAAA%3D

192.243.59.12

200 OK

7 B

URL GET HTTP/1.1
continuousselfevidentinestimable.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3TPeYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8Yw6nzSCS42zOCtbqfpvt64Kti2Xm25nut6rtdYk0Ykerg6IyGzB12v2XWbQavptQMMzX%2BxLRxY6oAPzsjzkHyy%2FMi5AMlqpP1vLwu7nevszSv9QtFcGwz48QfpdqrLFP1FmBgHSXp8Xg1tT9ceQqeHc7nQg38KYzkhzs8PEafH5yIRDw7mOmMFkSLmT6Mc1BCqhqQ1mL4DyU8JwDiubyLtH13XpqQ7f7N0xk7I8pM%2FIcsJWf79AtL%2BN5eUHDZuaVXkUqcWw6SCHNaQvRpZcYJ8dwmyPAHLb0PyX8nqkw2k%2FYNNqzQkn77CgrAtQhquhEEYrgRh0FqJRcRXWMePIrebiMSP5gOSsoZMaigxArUOitmRDorEQZE56PNpg3meF7qcUTfqMubzUMQd7no0TDzquZ0IBZv1MEKejcDUCMzsITN72JYjmOIn2K0KljuwOcGAVygFQWkJSkpQSoIyJygH1SFXtmWrI65sEXvnvnXu%2FWqs894%2BPdR5T6QE1IxgeLWfnZHnZgN0Xr76PbbFtOEK3u56getGYch9rxMGAev4bZ9x348SN4KVFaRdmre7Kyfk1c%2BuIJMT8swv%2F0dMT2DVCZh0QIsXQcsKdKvCbno00KJph%2BC6QpYvI99x9tUZeWG%2BvGtffgHBHpNzAzMVMlPhU%2FmIoKfujm%2Fqkhzc1KUl321muezLXTpb7K2c5uKp%2B9fETqkNX79sR1%2B9w2bELHzwvrD5Bk25THuWfH1Jci7MmjZMkB%2FX7YcivlHYrUuFSYts48a7a%2Bv9zAhrpU5rUHn68T0wOSHP%2FrAx%2F7FvNKaQpoYpKvSLhVKpa7BsDzZb5KwmMGqB48xBWVRj04oXSSUJlFhgGlew%2F8LxIh4bOntNZbVv76JnlkDzO0j7FQamwkBVoGoEW%2FxvnGfm8du%2F%2BXNDrJbGsTJLB7Ey6t58yLPrPqycNnyXh7FIRBiLoB0kgvG43Y5dlrDY51HEkNtJ8tLtP%2F4CAAD%2F%2FwEAAP%2F%2FcK4JaYsEAAA%3D
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectcontinuousselfevidentinestimable.com
Fingerprint1F:F4:36:85:7F:D7:60:BF:21:DA:52:FF:00:60:97:80:4B:6D:0D:3A
ValidityMon, 15 Apr 2024 12:20:33 GMT - Sun, 14 Jul 2024 12:20:32 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxRev3u9%2BvSiCkpsoAyqouLPd0z3TPeYgxmTDkjUbEkU9SXVV9Wy5NV1NVff07IKwJCA5DgHx2vuZ%2FYExiCJ4M0hvQDAg7Hiag%2BsfIeQsMy6OPqh67%2FM%2Br%2BDz3qvP94sz0kJBp5ff07tSKbrabrqN1z7yvIuNDZkWw8Yw6nzSCS42zOCtbqfpvt64Kti2Xm25nut6rtdYk0Ykerg6IyGzB12v2XWbQavptQMMzX%2BxLRxY6oAPzsjzkHyy%2FMi5AMlqpP1vLwu7nevszSv9QtFcGwz48QfpdqrLFP1FmBgHSXp8Xg1tT9ceQqeHc7nQg38KYzkhzs8PEafH5yIRDw7mOmMFkSLmT6Mc1BCqhqQ1mL4DyU8JwDiubyLtH13XpqQ7f7N0xk7I8pM%2FIcsJWf79AtL%2BN5eUHDZuaVXkUqcWw6SCHNaQvRpZcYJ8dwmyPAHLb0PyX8nqkw2k%2FYNNqzQkn77CgrAtQhquhEEYrgRh0FqJRcRXWMePIrebiMSP5gOSsoZMaigxArUOitmRDorEQZE56PNpg3meF7qcUTfqMubzUMQd7no0TDzquZ0IBZv1MEKejcDUCMzsITN72JYjmOIn2K0KljuwOcGAVygFQWkJSkpQSoIyJygH1SFXtmWrI65sEXvnvnXu%2FWqs894%2BPdR5T6QE1IxgeLWfnZHnZgN0Xr76PbbFtOEK3u56getGYch9rxMGAev4bZ9x348SN4KVFaRdmre7Kyfk1c%2BuIJMT8swv%2F0dMT2DVCZh0QIsXQcsKdKvCbno00KJph%2BC6QpYvI99x9tUZeWG%2BvGtffgHBHpNzAzMVMlPhU%2FmIoKfujm%2Fqkhzc1KUl321muezLXTpb7K2c5uKp%2B9fETqkNX79sR1%2B9w2bELHzwvrD5Bk25THuWfH1Jci7MmjZMkB%2FX7YcivlHYrUuFSYts48a7a%2Bv9zAhrpU5rUHn68T0wOSHP%2FrAx%2F7FvNKaQpoYpKvSLhVKpa7BsDzZb5KwmMGqB48xBWVRj04oXSSUJlFhgGlew%2F8LxIh4bOntNZbVv76JnlkDzO0j7FQamwkBVoGoEW%2FxvnGfm8du%2F%2BXNDrJbGsTJLB7Ey6t58yLPrPqycNnyXh7FIRBiLoB0kgvG43Y5dlrDY51HEkNtJ8tLtP%2F4CAAD%2F%2FwEAAP%2F%2FcK4JaYsEAAA%3D HTTP/1.1
Host: continuousselfevidentinestimable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Cookie: u_pl=19089331; uid_id2=c475e7a7-7477-4742-be8d-c638809fef38:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 16 Apr 2024 13:53:36 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69d8f8220d582c5b5e3b1aca7da61867
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css

104.21.70.253

200 OK

1.7 kB

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
1.7 kB (1723 bytes)
Hash
9b388680bb9d9cf0d8e7e4dad7b39ac5
393a2393f3b96b727a3114d249fffb35bf34d9f5
758934b1fbbad9e578664b4efbb5ee3303482d0d37ec7837b4bb2fa4915be70f

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:35 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:03 GMT
etag: W/"65bbb0c7-e2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 73373
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q6sdpMYxPVd8ZMCDMFyyXgvn%2B%2F7AEBy5SXk%2BRoOfwYe2Su3cC8PVFv4uGMeGhVtlWz7d5CPKbuPl1cbigqQNe2ijlWdtttm%2BVeRH3uUXyl9LUKsPEjqyCz7NEkZgK0e8IK0T8ikxiVK1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a994faf8569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

continuousselfevidentinestimable.com/pixel/sbs?c=1

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
continuousselfevidentinestimable.com/pixel/sbs?c=1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerLet's Encrypt
Subjectcontinuousselfevidentinestimable.com
Fingerprint1F:F4:36:85:7F:D7:60:BF:21:DA:52:FF:00:60:97:80:4B:6D:0D:3A
ValidityMon, 15 Apr 2024 12:20:33 GMT - Sun, 14 Jul 2024 12:20:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: continuousselfevidentinestimable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Cookie: u_pl=19089331; uid_id2=c475e7a7-7477-4742-be8d-c638809fef38:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 16 Apr 2024 13:53:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

voe.sx/https:/streamtape.com/get_video

186.2.163.208

404 Not Found

95 kB

URL User Request GET HTTP/2
voe.sx/https:/streamtape.com/get_video
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type

Size
95 kB (95305 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /https:/streamtape.com/get_video HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
date: Tue, 16 Apr 2024 13:53:33 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.138

200 OK

7.0 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with very long lines (7193), with no line terminators
Size
7.0 kB (7004 bytes)
Hash
16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 13:53:35 GMT
date: Tue, 16 Apr 2024 13:53:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jasonresponsemeasure.com/https:/streamtape.com/get_video

186.2.163.111

302 Found

95 kB

URL User Request GET HTTP/2
jasonresponsemeasure.com/https:/streamtape.com/get_video
IP
186.2.163.111:443
ASN
#59692 IQWeb FZ-LLC

Certificate
IssuerLet's Encrypt
Subjectjasonresponsemeasure.com
FingerprintD0:64:AE:17:09:99:FF:F5:B7:83:15:D8:A7:92:A8:32:74:81:62:D1
ValidityThu, 11 Apr 2024 21:23:20 GMT - Wed, 10 Jul 2024 21:23:19 GMT

File type

Size
95 kB (95305 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /https:/streamtape.com/get_video HTTP/1.1
Host: jasonresponsemeasure.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: ddos-guard
strict-transport-security: max-age=2628000
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=V5o2Vz11tORCSq31JWLU; Domain=.jasonresponsemeasure.com; HttpOnly; Path=/; Expires=Wed, 16-Apr-2025 13:53:33 GMT
date: Tue, 16 Apr 2024 13:53:33 GMT
content-type: text/html
location: https://voe.sx/https:/streamtape.com/get_video
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2

voe.sx/https:/streamtape.com/get_video

186.2.163.208

404 Not Found

95 kB

URL User Request GET HTTP/2
voe.sx/https:/streamtape.com/get_video
IP
186.2.163.208:443
ASN
#59692 IQWeb FZ-LLC

Certificate
IssuerLet's Encrypt
Subjectvoe.sx
Fingerprint33:39:04:30:EF:E9:1C:FD:B2:D7:7F:9A:54:B3:FE:23:18:DF:06:4A
ValidityMon, 01 Apr 2024 13:52:16 GMT - Sun, 30 Jun 2024 13:52:15 GMT

File type

Size
95 kB (95305 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /https:/streamtape.com/get_video HTTP/1.1
Host: voe.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=i7UqqXFTK5tyS8AbVv0w; Domain=.voe.sx; HttpOnly; Path=/; Expires=Wed, 16-Apr-2025 13:53:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
date: Tue, 16 Apr 2024 13:53:33 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css

104.21.70.253

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
79 kB (79245 bytes)
Hash
80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:35 GMT
content-type: text/css
last-modified: Thu, 01 Feb 2024 14:55:01 GMT
etag: W/"65bbb0c5-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1486406
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9W3QwGDSel7qDmLvu3BiAh7DlVZD3%2FvaXIEOt%2FFk5eMTDRHv4w%2B%2Bzv6e4Ba20y%2FIEBIxys3fROTZLXIfnFmzgLwkTNC%2Fh7rHIPpGvs1pnIlqHrOERBrX%2B8JOdHC1DhVasucMmz2y2z4K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a994faf2569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js

104.21.70.253

200 OK

386 B

URL GET HTTP/2
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (399), with no line terminators
Size
386 B (386 bytes)
Hash
022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voe.sx
DNT: 1
Connection: keep-alive
Referer: https://voe.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 13:53:35 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2024 14:55:06 GMT
etag: W/"65bbb0ca-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 73373
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=al0bxiIs8FKzccfPERuKIw2TYxytIa6PYgkxrTwXbT0ioEgYI5nU4drGXCaGNH52xoSjlxNSUqE4h0QXqZIivz6kkYP72D1v0gNHco54Q3pIvycGIBSpSwsdP9IUADNUt38rwpTKEMQQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a994fafb569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg

104.21.70.253

200 OK

28 kB

URL GET HTTP/3
cdn.creative-bars1.com//sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://voe.sx/https:/streamtape.com/get_video
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3
Size
28 kB (28348 bytes)
Hash
bd0c89fce24a7f947251ba177af6860b
fae114743fd16313d63c5cc99a220831f88290e6
830443fe11ab663a8c20e09560e69a4a29c8d0266175efc235c3d9882123f209

HTTP Headers

GET //sb/notifications/utility/default/us/blog/ecorious/message_redcircle2/jan24/3/img/1.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 13:53:35 GMT
content-type: image/jpeg
content-length: 28348
last-modified: Thu, 01 Feb 2024 14:55:05 GMT
etag: "65bbb0c9-6ebc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5356240
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RUsgeG2LcTAyu2fxyBE7WA47jrLQWGfYBw5aw2cforPlith6fgrSjInC4KD87sc3k1tr87s%2FgtM19nBlBA2muKJKdHMpg1ACTMGT75WSUbJiuWo0mfHnBTjnuMERgIF459QbBfhbtyFo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8754a9958e110b55-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL