Report - vide0.net/f/6tjxwl7s84

Report Overview

Visited public
2025-06-08 22:40:37
Tags
Submit Tags
URL
vide0.net/f/6tjxwl7s84
Finishing URL
vide0.net/f/6tjxwl7s84
IP / ASN
172.67.69.18
#13335 CLOUDFLARENET
Title
Brother And Sister - DoodStream

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
i.doodcdn.io	unknown	2025-03-05	2025-03-05	2025-06-08	3.0 kB	671 kB	104.26.14.102
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-06-04	892 B	92 kB	104.17.25.14
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-06-04	490 B	19 kB	142.250.178.74
vide0.net	unknown	2025-06-05	2025-06-05	2025-06-05	943 B	26 kB	104.26.2.102

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-06-08	medium	vide0.net	Sinkholed
2025-06-08	medium	vide0.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	ScriptElement	88 kB	2023-03-07	2025-07-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-16 07:12 Times Seen74400 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js	ScriptElement	1.3 kB	2023-03-07	2025-07-16
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-07-16 05:33 Times Seen7997 Hash 4412bf8023109ee9eb1f1f226d391329 c273960aa874a87dd022b5e597887142f1b8e34f d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6 Loading...

HTTP Transactions (11)

URL IP Response Size

GET i.doodcdn.io/theme_2/fonts/avertastd-regular-webfont.woff2

104.26.14.102

200 OK

24 kB

URL GET
i.doodcdn.io/theme_2/fonts/avertastd-regular-webfont.woff2
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23812, version 1.524
Size
24 kB (23812 bytes)
Hash
eb586e5a1b86dbf1c866e3ed80f9d18e
280ee78d19c017ab9335f769595e5157d3c4a343
714e70103deac0d67f52a6285c5fabee6088ce4d710ce7e74353503837038baf

HTTP Headers

GET /theme_2/fonts/avertastd-regular-webfont.woff2 HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vide0.net
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 08 Jun 2025 22:40:17 GMT
content-type: font/woff2
content-length: 23812
cf-ray: 94cbe3dc6900b4f3-OSL
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Mon, 07 Jul 2025 03:24:49 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 79308
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OOmcVeg6z7w7VkgBQCsTU5DFscffIVH4AC4htBEQo%2FCPokqpFARNbqZ2Ai9N5U5ed8k6qVACzRrI6ZQH3Y%2FrEMC4cuq2vQiwYM7RFASOobCzEc9T8UNXIlZ2gYXgFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3198&min_rtt=1950&rtt_var=1118&sent=165&recv=13&lost=0&retrans=0&sent_bytes=184217&recv_bytes=2443&delivery_rate=12089583&cwnd=96000&unsent_bytes=0&cid=9052f91db37f1a38&ts=54&x=1", cfExtPri, cfHdrFlush;dur=5

GET cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js

104.17.25.14

200 OK

1.3 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
JavaScript source, ASCII text, with very long lines (1266)
Size
1.3 kB (1300 bytes)
Hash
4412bf8023109ee9eb1f1f226d391329
c273960aa874a87dd022b5e597887142f1b8e34f
d40efcac911d8964f3728eaa767de281306ff55ba9377435a3364d4d1e1613f6

HTTP Headers

GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
cf-ray: 94cbe3d8a9e056ba-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7516
expires: Fri, 29 May 2026 22:40:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EP5nkarsQM1e3jsWXhCVfcy0%2BnBZUwrJ1rbUI5oA2Md%2BdBltlj2qFUvjWM1OEBTH6IKxI%2B7G%2F6AdWs1%2FEWCljIURHvRD4AGvfEs9snK5nV447rUSyml0ym6kG0j3wDpP7j0ZK2vD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET i.doodcdn.io/theme_2/fonts/avertastd-bold-webfont.woff2

104.26.14.102

200 OK

24 kB

URL GET
i.doodcdn.io/theme_2/fonts/avertastd-bold-webfont.woff2
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23604, version 1.0
Size
24 kB (23604 bytes)
Hash
e9133fd11f14c09a2e4556c395a0ef7d
00fad09605f3342df5c9aeba130156fe19ade8b0
06244cc9cd0c998581b1bf93f5222deee7d2d0b09299190e163961afa973ba91

HTTP Headers

GET /theme_2/fonts/avertastd-bold-webfont.woff2 HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vide0.net
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 08 Jun 2025 22:40:17 GMT
content-type: font/woff2
content-length: 23604
cf-ray: 94cbe3dc68fcb4f3-OSL
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Mon, 07 Jul 2025 03:24:49 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 79308
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iTbshbNLlEiI%2BOfthhM16jtQ9TIHHjkG%2FUDhh6%2FHtf6kvXLDexk60SCzt%2FCJbLAe4NnKhA6KqWdlow8FYJ0b6RiJy%2FJ0zvI%2BaXErCSRnIYYahm7E5YJfv9JuEt%2BgKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3372&min_rtt=2042&rtt_var=1503&sent=44&recv=11&lost=0&retrans=0&sent_bytes=40217&recv_bytes=2352&delivery_rate=989209&cwnd=24000&unsent_bytes=0&cid=9052f91db37f1a38&ts=45&x=1", cfExtPri, cfHdrFlush;dur=2

GET i.doodcdn.io/theme_2/fonts/avertastd-semibold-webfont.woff2

104.26.14.102

200 OK

24 kB

URL GET
i.doodcdn.io/theme_2/fonts/avertastd-semibold-webfont.woff2
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23800, version 1.524
Size
24 kB (23800 bytes)
Hash
3ec2d18c5a3d480b0161ce3c9a69aa5c
a12a5815c1ec2eb7c04dab567ba99c82d7b3d2e0
eca03a9512b9c95df8bc4589fc70bd8ca33319245b95d67e84b5cb584a9fc5fe

HTTP Headers

GET /theme_2/fonts/avertastd-semibold-webfont.woff2 HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vide0.net
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 08 Jun 2025 22:40:17 GMT
content-type: font/woff2
content-length: 23800
cf-ray: 94cbe3dc68feb4f3-OSL
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Tue, 08 Jul 2025 03:24:51 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 66542
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0RYPStWl3kytzYvJR1dCrHXpR1JsPcic05nQ%2Bae1%2FeMTNg9Qk8NC2%2BGBFmNc9xsnoLqrDSHbo4Gzwdtd%2FYVPgr%2Fh8RLd0vYzXoracN488JlRnU0R5s6FCNh3kwG%2BPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3563&min_rtt=3463&rtt_var=1497&sent=23&recv=10&lost=0&retrans=0&sent_bytes=16217&recv_bytes=2309&delivery_rate=149939&cwnd=12000&unsent_bytes=0&cid=9052f91db37f1a38&ts=44&x=1", cfExtPri, cfHdrFlush;dur=1

GET fonts.googleapis.com/css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap

142.250.178.74

200 OK

18 kB

URL GET
fonts.googleapis.com/css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT

File type
ASCII text
Size
18 kB (18255 bytes)
Hash
098bd4a50b80805ded43d1255a6e7ca6
fb7e94397d3ed96906d42acf7dfb9793f06f2fac
98006921f609ce704d3226263ea608b5a5b56ea6bcd532dc7cd92cbcf853099e

HTTP Headers

GET /css?family=Nunito:200,300,300i,400,600,600i,700,700i,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jun 2025 22:40:17 GMT
date: Sun, 08 Jun 2025 22:40:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET i.doodcdn.io/theme_2/css/style.css?v=0.1

104.26.14.102

200 OK

249 kB

URL GET
i.doodcdn.io/theme_2/css/style.css?v=0.1
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
ASCII text
Size
249 kB (249272 bytes)
Hash
59b293159a38ec92d8bd5fa4d09f8d59
7167b460de2cb4d2534163de707b0aa0e84b73cf
3f81f845eb11d647c4bd80b76d7af054203e52eab24bc359ddd5cb4f33efddd4

HTTP Headers

GET /theme_2/css/style.css?v=0.1 HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:16 GMT
content-type: text/css
content-encoding: br
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: public, max-age=2592000
expires: Mon, 08 Jun 2026 03:24:50 GMT
vary: Accept-Encoding,User-Agent
access-control-allow-origin: *
cf-cache-status: HIT
age: 68573
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aA4I2peQs%2FncbvY89P%2BQTTUX%2Fbt9RH2NoSO4GPwz%2BJVUol3FVvkrmqEpLV65kbNYkW5Y8JZF6sAteWPlI8%2F4u7nOX11CoYBJpfxec%2FTtiBIQM51XtFwz5blYzA0FCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 94cbe3d8ba0a1c12-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=477&min_rtt=379&rtt_var=155&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3268&recv_bytes=1263&delivery_rate=7133004&cwnd=254&unsent_bytes=0&cid=41a147c2cf447049&ts=101&x=0"
X-Firefox-Spdy: h2

GET vide0.net/favicon.ico

104.26.2.102

200 OK

15 kB

URL GET
vide0.net/favicon.ico
IP
104.26.2.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectvide0.net
Fingerprint20:78:20:2F:2F:3F:97:4F:9D:EC:84:EF:FA:97:5A:F3:EC:A4:9D:70
ValidityThu, 05 Jun 2025 13:46:39 GMT - Wed, 03 Sep 2025 14:44:19 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15406 bytes)
Hash
30d3656f43c817e38c3e7d70b2bfbdad
1aa43b43755e7cba5e145d0978517f7bedad7da6
a558a4796f60f07743027eec96b538b2e7758cca8c544ed796ff745837478555

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vide0.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/f/6tjxwl7s84
Cookie: lang=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:17 GMT
content-type: image/x-icon
content-length: 15406
cf-ray: 94cbe3dc0f3b56a9-OSL
last-modified: Mon, 03 Jan 2022 15:38:36 GMT
etag: "61d3187c-3c2e"
expires: Sat, 05 Jul 2025 20:17:03 GMT
cache-control: public, max-age=2592000, no-transform
access-control-allow-origin: *
cf-cache-status: HIT
age: 267794
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q5aNyyUrPwVyvD7W0OfkdwrURwwnThMq4wQyxjbAT5IehFw%2F%2FA0Lcro1hCItg4TNKFRFYQdfnL4%2FO0KSHjJmBG308HgupQUJwbFTUuLYEXoKZP0TMVBhyhFRfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=4160&min_rtt=465&rtt_var=7354&sent=10&recv=15&lost=0&retrans=0&sent_bytes=5627&recv_bytes=1402&delivery_rate=8000000&cwnd=257&unsent_bytes=0&cid=2431b2f0affcd92a&ts=1095&x=0"
X-Firefox-Spdy: h2

GET i.doodcdn.io/theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2

104.26.14.102

200 OK

184 kB

URL GET
i.doodcdn.io/theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 184476, version 330.-16253
Size
184 kB (184476 bytes)
Hash
2a6dec1227f9970376f578270a642d06
150a6a7ffdec6e2e2ff4c712d7cee8bd9b930284
e228b909313044a18dec1a674cfd4935071c36eb3eb6a0cd38a45afac6ae3996

HTTP Headers

GET /theme_2/css/fontawesome/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vide0.net
DNT: 1
Connection: keep-alive
Referer: https://i.doodcdn.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 08 Jun 2025 22:40:17 GMT
content-type: font/woff2
content-length: 184476
cf-ray: 94cbe3dc68fbb4f3-OSL
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: max-age=2592000
expires: Tue, 08 Jul 2025 03:24:50 GMT
vary: User-Agent,Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 67144
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dpG1G0urDw%2FR9hYKSGGSqLKeVw5FpdPQssK6fFVcnxe7PafJcRZ6FB0UWEMEpUfeYGDuMknDdXvUClCw%2FGbaZ7aEde9HaxCjaGZmO23ONBvbOQROZPMk9FoXxqrhHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3563&min_rtt=3463&rtt_var=1497&sent=13&recv=10&lost=0&retrans=0&sent_bytes=4217&recv_bytes=2309&delivery_rate=149939&cwnd=12000&unsent_bytes=0&cid=9052f91db37f1a38&ts=43&x=1", cfExtPri, cfHdrFlush;dur=0

GET vide0.net/f/6tjxwl7s84

104.26.2.102

200 OK

8.2 kB

URL User Request GET
vide0.net/f/6tjxwl7s84
IP
104.26.2.102:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectvide0.net
Fingerprint20:78:20:2F:2F:3F:97:4F:9D:EC:84:EF:FA:97:5A:F3:EC:A4:9D:70
ValidityThu, 05 Jun 2025 13:46:39 GMT - Wed, 03 Sep 2025 14:44:19 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (610)
Size
8.2 kB (8240 bytes)
Hash
aa501e143d55c3089075ff83a2a2d512
95c7aeddb15733c7c29dab79f56f2ea8d8c7a71f
10eb814be64671662aedb21b5b4620ed87cc2ad180741ac9a97285aa4fcbb971

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /f/6tjxwl7s84 HTTP/1.1
Host: vide0.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:16 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
expires: Sat, 07 Jun 2025 22:40:16 GMT
set-cookie: lang=1; domain=.vide0.net; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trEoY1RH026DYTTLxCDRGMihBOphmSMKsOe395yTPAQl2lY4s2q%2FRkMqu3%2FJM1qhmm682hI6YW1xkjiimQKNdmSjLDYWysm0XoR6kNvBdDCNEHybND%2BhiF02DA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 94cbe3d598fe56a9-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=5969&min_rtt=494&rtt_var=10979&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3266&recv_bytes=1252&delivery_rate=8000000&cwnd=254&unsent_bytes=0&cid=2431b2f0affcd92a&ts=138&x=0"
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

88 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
88 kB (88145 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 94cbe3d879c356ba-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 414705
expires: Fri, 29 May 2026 22:40:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pwd17ApP%2F85iym8UkjlCufnWqNu1WqPvwW68krcmjxBoai4OnKTdlQ3CZEvjPA0V5RDnqe8plzvDCxEWOjn%2Ba7pQmKD%2BGorN0VAFcrF8hR%2FZEt%2BXcsVhA9w6FARmoDr4n9JVRXqZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET i.doodcdn.io/theme_2/css/bootstrap.min.css

104.26.14.102

200 OK

160 kB

URL GET
i.doodcdn.io/theme_2/css/bootstrap.min.css
IP
104.26.14.102:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vide0.net/f/6tjxwl7s84
Certificate
IssuerGoogle Trust Services
Subjectdoodcdn.io
FingerprintD7:74:16:AE:C7:53:36:51:22:9F:FC:25:D0:8F:92:65:94:13:9E:8B
ValiditySat, 03 May 2025 19:51:57 GMT - Fri, 01 Aug 2025 20:51:51 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

HTTP Headers

GET /theme_2/css/bootstrap.min.css HTTP/1.1
Host: i.doodcdn.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vide0.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 08 Jun 2025 22:40:16 GMT
content-type: text/css
content-encoding: br
last-modified: Mon, 03 Jan 2022 15:43:40 GMT
cache-control: public, max-age=2592000
expires: Sun, 07 Jun 2026 03:24:49 GMT
vary: Accept-Encoding,User-Agent
access-control-allow-origin: *
cf-cache-status: HIT
age: 73519
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOspJougYjwCLAWCzg%2B0iFpnMubcUDVFerX%2FP2j9SxLgQ4T9QNbDdC3eQNBO9wd%2F1CbLFl3RDnewI6Ky%2FbhtSdwrmhgpZezSVDZdhcRMIcxub3yQTuzXz6n1mIA9wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 94cbe3d8ca121c12-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=853&min_rtt=379&rtt_var=532&sent=38&recv=17&lost=0&retrans=0&sent_bytes=43814&recv_bytes=1294&delivery_rate=8610211&cwnd=256&unsent_bytes=0&cid=41a147c2cf447049&ts=109&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (11)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash