Report - streambtw.com/iframe/ch1.php

Report Overview

Visitedpublic

2023-11-26 14:21:17

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
boilingloathe.com	unknown	2023-11-10	2023-11-10 11:12:10	2023-11-10 11:12:10	446 B	26 kB	173.233.137.44
streambtw.com	unknown	2023-10-06	2023-10-08 00:21:16	2023-11-15 17:53:50	1.3 kB	5.4 kB	188.114.97.1
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-11-25 13:54:06	439 B	420 B	18.157.203.0
velocitycdn.com	348860	2017-10-20	2015-05-27 13:30:15	2023-11-13 08:56:06	855 B	287 kB	188.114.96.1
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-11-26 14:13:39	411 B	86 kB	104.21.234.33
six.gettvfree.online	unknown	2023-10-23	2023-10-30 03:16:06	2023-11-17 01:01:08	463 B	5.1 MB	104.21.33.251
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-11-26 05:09:08	918 B	182 kB	151.101.193.229
hls.streambtw.com	unknown	2023-10-06	2023-10-31 06:37:51	2023-11-17 20:51:21	446 B	5.1 MB	188.114.96.1
youradexchange.com	273384	2012-11-09	2013-02-04 17:25:46	2023-11-25 18:35:21	1.2 kB	2.3 kB	172.64.171.19
banquetunarmedgrater.com	unknown	2022-08-04	2022-08-04 17:12:50	2023-11-26 14:13:39	423 B	843 B	104.21.86.121
irondai.com	unknown	2023-09-29	2023-09-30 17:35:38	2023-11-09 12:50:02	420 B	204 kB	188.114.96.1
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-11-26 06:46:41	432 B	94 kB	142.250.74.168
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-11-26 09:26:44	350 B	942 B	54.230.218.11
doruffleton.com	unknown	2023-02-08	2023-02-09 01:02:57	2023-11-24 15:10:00	860 B	31 kB	139.45.197.244
practicalframingfiddle.com	unknown	2023-10-09	2023-10-24 10:41:50	2023-11-23 12:57:09	502 B	467 B	192.243.59.13

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-26	medium	boilingloathe.com	Sinkholed
2023-11-26	medium	doruffleton.com	Sinkholed
2023-11-26	medium	practicalframingfiddle.com	Sinkholed
2023-11-26	medium	doruffleton.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (47)

	URL	From	Size	First Seen	Last Seen
	streambtw.com/microtemplates/source[19]	Function	1.2 kB	2023-05-27	2025-07-23
URL streambtw.com/microtemplates/source[19] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-07-23 Times Seen 224 Size 1.2 kB (1184 bytes) MD5 09b2ee12355ca16350b383fb0253a2c1 SHA1 ec51e028f4d1cd9337160bac617afeb55df50d9a SHA256 bb31fabf4e031706dfdb477a31b4645296ac881c072216e0d5fd81c04365b5b4 Format Code Loading...

	streambtw.com/microtemplates/source[20]	Function	2.4 kB	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[20] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 415 Size 2.4 kB (2400 bytes) MD5 75e79108a32d8198e9c8fdc380beab6d SHA1 1705219b86d194f203dfdd000140342d51d5b7f1 SHA256 fbc4489a0e2c84fb17f43a773522b9d26508befa7b827af3f46918fec5b5404c Format Code Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
URL friendshipmale.com/sfp.js IP / ASN 104.21.234.33 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-23 Last Seen 2024-08-20 Times Seen 6307 Size 86 kB (85468 bytes) MD5 924e967bca1d599992556a8d139b1c5a SHA1 222b09dbf164ddc03d39100fd0524a22018d28b2 SHA256 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Format Code Loading...

	streambtw.com/microtemplates/source[22]	Function	15 kB	2023-05-27	2025-07-23
URL streambtw.com/microtemplates/source[22] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-07-23 Times Seen 201 Size 15 kB (14947 bytes) MD5 830ece2ecf3b3d785d541fc83922164d SHA1 2614c5f5e24ebc6c0945f3f43750eab6463290f2 SHA256 9ff569fb4d30e581ad914b32f200bf2d52c0105e913fd7e4491ddaf211dcc5f3 Format Code Loading...

	streambtw.com/microtemplates/source[26]	Function	265 B	2023-04-16	2025-07-28
URL streambtw.com/microtemplates/source[26] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-16 Last Seen 2025-07-28 Times Seen 301 Size 265 B (265 bytes) MD5 b18d1c3eb98082481114d55d1d30250c SHA1 b962ddd745e64f9867d93ad73619b15098a91c14 SHA256 60fd9710e89a2dd65ef34872ba829bf83f2743836e69088bca1a60ab1c266917 Format Code Loading...

	streambtw.com/microtemplates/source[31]	Function	1.0 kB	2023-10-14	2025-04-18
URL streambtw.com/microtemplates/source[31] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-14 Last Seen 2025-04-18 Times Seen 12 Size 1.0 kB (1031 bytes) MD5 9f25e08d74b3da8fd08c7d7a541c3213 SHA1 73a736d4826227fa0f850c384d7084645a326c9a SHA256 28ad4e3ce5cf8bc4711954ed97470b2d4fdf68d79ec82da86beb92d8be36b30b Format Code Loading...

	streambtw.com/microtemplates/source[5]	Function	1.0 kB	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[5] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 554 Size 1.0 kB (1030 bytes) MD5 69c2e174b203cc6927bb67ed966503e1 SHA1 45fd454a7731e181fc07f0103ef5316a963f048b SHA256 081101b241d33b439d67a5985cb6f1e38d99d903f52d31524ec251f9ce1236c4 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF	ScriptElement	280 kB	2023-11-26	2023-11-26
URL www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF IP / ASN 142.250.74.168 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-26 Last Seen 2023-11-26 Times Seen 1 Size 280 kB (280372 bytes) MD5 29195f16f3b8218a8d6ac47540e56009 SHA1 a2a951e8ada2e47a7b0e54672a07669f02bf2288 SHA256 bf9839df32416ae7e01c20a0862c2cd331dda101b68a33798adfd019ebe46b52 Format Code Loading...

	cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js	ScriptElement	620 kB	2023-05-27	2025-06-21
URL cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js IP / ASN 151.101.193.229 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-06-21 Times Seen 111 Size 620 kB (619678 bytes) MD5 3dbf1ad3535560c4e487d88012784f29 SHA1 6fd8110083e0c387d8fb49a4d6a5264b28c755f8 SHA256 0445a4b98a570af2253cd291c241a2e716e4105ffeec79628e058a8fe77aaedd Format Code Loading...

	streambtw.com/iframe/ch1.php	ScriptElement	3.2 kB	2023-11-20	2024-08-20
URL streambtw.com/iframe/ch1.php IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-20 Last Seen 2024-08-20 Times Seen 35 Size 3.2 kB (3207 bytes) MD5 a47ae2f4f2521222ddb4ad6eac55117f SHA1 b42dbbec235e5d6109ba2d636084de23d41077ff SHA256 fcc8adad6f097bd9bfe2f44df4e8d34448677b9c2ffbab1e71965ee6c98e0c17 Format Code Loading...

	cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js	ScriptElement	30 kB	2023-03-07	2025-07-27
URL cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js IP / ASN 151.101.193.229 #54113 FASTLY Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-27 Times Seen 730 Size 30 kB (30434 bytes) MD5 1b142ebaf5f868c4c11a73ffe9175afb SHA1 aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9 SHA256 df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702 Format Code Loading...

	streambtw.com/microtemplates/source[9]	Function	279 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[9] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 511 Size 279 B (279 bytes) MD5 020ef45dc126b5d78e9885ba8c0e8895 SHA1 c21ea8c7b9827e7232e62d89db29d414771d2855 SHA256 d7875335946dec91d6e6cb18b204a2c5f9306319416ca311c04970483b4b0356 Format Code Loading...

	streambtw.com/microtemplates/source[15]	Function	1.0 kB	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[15] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 416 Size 1.0 kB (1031 bytes) MD5 7714f2e1bdc951dd60161694190a90a8 SHA1 8a69b70fef1732d7937c07180df1442b34ca68bb SHA256 dacd591b9a7aacb25b9b39135b936aa16483a0fbfb835522879bd9970a6bdef4 Format Code Loading...

	velocitycdn.com/script/resource-v31.js	ScriptElement	203 kB	2024-08-20	2024-08-20
URL velocitycdn.com/script/resource-v31.js IP / ASN 188.114.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 3 Size 203 kB (202859 bytes) MD5 fd9e2e8686c5a9a002e3577c62f74cfe SHA1 78f2811c95595e649ef1b4875ccd2cd05b0c1e1e SHA256 f785f6412e463e4613c5d820bfe1337e5209f4adc042d5e8c640c87804909f22 Format Code Loading...

	streambtw.com/microtemplates/source[23]	Function	1.5 kB	2023-04-16	2025-07-27
URL streambtw.com/microtemplates/source[23] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-16 Last Seen 2025-07-27 Times Seen 336 Size 1.5 kB (1481 bytes) MD5 c6420a63caeab46fa6e03dc58135f555 SHA1 dd17e9bd15d7e3fb3f8e00ddb23214059ad89b88 SHA256 574f6245fe4b61aeccca439b2a454d5ddfa91452e16b1f2a2c6ff1fc5c291700 Format Code Loading...

	streambtw.com/microtemplates/source[30]	Function	791 B	2023-10-14	2025-04-18
URL streambtw.com/microtemplates/source[30] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-14 Last Seen 2025-04-18 Times Seen 12 Size 791 B (791 bytes) MD5 a5ef5fac2926cfb404f0e779f99d20e8 SHA1 3addeeffb1274ff361579ad955e0b43f76a5ecc9 SHA256 16365755a980babf4c20fe1eec000fba316d240741788c3653cc8ed20050d68b Format Code Loading...

	boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js	ScriptElement	62 kB	2023-11-26	2023-11-26
URL boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js IP / ASN 173.233.137.44 #7979 SERVERS-COM Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-26 Last Seen 2023-11-26 Times Seen 1 Size 62 kB (62217 bytes) MD5 cfa0ed21efac068242c9858d11757d41 SHA1 3cb3b126d2dfa8a2855169869ec953e8afeb761d SHA256 a39a74bbb0b2d2d58c102876cb5279244ada1e587d032b5002791b87a2fd6ae7 Format Code Loading...

	streambtw.com/microtemplates/source[0]	Function	1.5 kB	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[0] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 552 Size 1.5 kB (1480 bytes) MD5 173b70b85a9658eab15a9110e0b04568 SHA1 3b21823d0aa94ae751cbc7bd0e214f2f7bc3d503 SHA256 c3572efe5f3a33f021ceae7a845d8aac508e2ba4357b40c9d8a05608aff7863b Format Code Loading...

	streambtw.com/microtemplates/source[2]	Function	2.3 kB	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[2] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 553 Size 2.3 kB (2321 bytes) MD5 802eb34ff58dc7c705f3e864ef98c945 SHA1 801fd9cd1a2fd8ced641ae19422182057ba6ff5a SHA256 b1d729a0bbe3e73c3590c607bc3704184115cda68ab355fd7feaf8f0bce7c71b Format Code Loading...

	streambtw.com/microtemplates/source[4]	Function	15 kB	2023-05-27	2025-07-31
URL streambtw.com/microtemplates/source[4] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-07-31 Times Seen 335 Size 15 kB (14946 bytes) MD5 264468ecc510b214524caac850a5a816 SHA1 1d42802acd1534a8d965212fd4bc512639ac1ecc SHA256 05692a592943c76f6d76fca12928fcf366c094f33e16fba77d4f431c6a2718f4 Format Code Loading...

	streambtw.com/microtemplates/source[14]	Function	15 kB	2023-05-27	2025-07-23
URL streambtw.com/microtemplates/source[14] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-07-23 Times Seen 209 Size 15 kB (14947 bytes) MD5 77bcd8a1f4725a3658221d430032b9d6 SHA1 acb15f6adad154ffbcd6b77f8f607d924845ae19 SHA256 18b776af5cdeee3cb04e8a91ab0165215054b0b471591e56158a312a77eac77d Format Code Loading...

	streambtw.com/microtemplates/source[27]	Function	3.5 kB	2023-04-15	2025-04-18
URL streambtw.com/microtemplates/source[27] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-15 Last Seen 2025-04-18 Times Seen 36 Size 3.5 kB (3546 bytes) MD5 278ef07be2bdb3e4aad62c5156ae9ad0 SHA1 7f564ffc7f718da110ae8044344b65c1785040f7 SHA256 568c6cc18be58311817f05ab974cc136738257dc756fe9a44c8852d35f1f051a Format Code Loading...

	streambtw.com/iframe/ch1.php	ScriptElement	152 B	2023-11-20	2025-05-25
URL streambtw.com/iframe/ch1.php IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-20 Last Seen 2025-05-25 Times Seen 129 Size 152 B (152 bytes) MD5 c960aa2b990a2f32a6515fd993ef8d9d SHA1 42aceea1497268b63f6db17ef5b6f36233c590a4 SHA256 4e0c1a7d7371e788eeb96742b5815122fd314a396fc7233fac83ed89d6f03016 Format Code Loading...

	streambtw.com/microtemplates/source[3]	Function	420 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[3] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 634 Size 420 B (420 bytes) MD5 f40933e603a05e3c1f59b8b335ff9a02 SHA1 8bdf38370eab8e6c148cfc2f9f3b6858882ece80 SHA256 eae854849ff9fe52b79b43b513b33644249e07c3db14c00377dda3840b913747 Format Code Loading...

	streambtw.com/microtemplates/source[13]	Function	3.5 kB	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[13] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 501 Size 3.5 kB (3546 bytes) MD5 d2e0aa749903250349b071362de696bd SHA1 d4486ac2045ae74933ad5a1c05fbe30b39eee4cb SHA256 246aa71e2a226caa935b209d8862a0e4716c636e01495898ec20b17ba838119e Format Code Loading...

	streambtw.com/microtemplates/source[18]	Function	791 B	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[18] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 435 Size 791 B (791 bytes) MD5 f1d04d242cbea86f97aa5e1c5e1e460e SHA1 a766ce4a8824caf9a59b204963ad4b5c6ee4478f SHA256 ebc28b0271fc555eb502c694ddc64f7efc9a75d45a03d44e5f5269dcc84387da Format Code Loading...

	doruffleton.com/tag.min.js	ScriptElement	81 kB	2023-11-24	2023-11-28
URL doruffleton.com/tag.min.js IP / ASN 139.45.197.244 #9002 RETN Limited Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-24 Last Seen 2023-11-28 Times Seen 233 Size 81 kB (81167 bytes) MD5 f98d2b56f0a3cb5931f906af99482894 SHA1 24be5bb9d3277835a954809df6e7a894f4d0468b SHA256 e7a07587ad65e34dd4ffd2a7f01167813688c3088860f5d4d89cbb4551f4f326 Format Code Loading...

	streambtw.com/microtemplates/source[21]	Function	3.5 kB	2023-04-16	2025-07-27
URL streambtw.com/microtemplates/source[21] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-16 Last Seen 2025-07-27 Times Seen 404 Size 3.5 kB (3546 bytes) MD5 8f7d8f20a7732f0c7b0346ac8cc5a3b1 SHA1 e759f484c4dad54d86df7d82789263bfa49e13bf SHA256 7be4a2cbabbf34688cf19a92144e0fff8359516d8e8420c26af4cfa1f1f856b5 Format Code Loading...

	streambtw.com/microtemplates/source[25]	Function	1.0 kB	2023-04-16	2025-07-27
URL streambtw.com/microtemplates/source[25] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-16 Last Seen 2025-07-27 Times Seen 294 Size 1.0 kB (1031 bytes) MD5 6d58f0e6396b2706f39269a2af796bcc SHA1 45f38bf9eaa9873bc8de0ebe4400a838c3c2e220 SHA256 0000c42c5dd1b2cc72f59daf434a8474db045cfedc2163773e36c4a2b5a3bdf4 Format Code Loading...

	streambtw.com/iframe/ch1.php	ScriptElement	59 kB	2023-10-22	2024-08-21
URL streambtw.com/iframe/ch1.php IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-10-22 Last Seen 2024-08-21 Times Seen 6 Size 59 kB (58920 bytes) MD5 3c8e35514a2497feeeedc98fffd0fe3c SHA1 45e6dfa2e39caea174ac842b940c735e51fa8f78 SHA256 a7278f73aaf536d111ec86775fd8e138d96fd6612fe30b0403bf28dcc86d8443 Format Code Loading...

	streambtw.com/microtemplates/source[7]	Function	1.0 kB	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[7] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 434 Size 1.0 kB (1043 bytes) MD5 2f83c1d07ad4ff904142ff0e2603d4de SHA1 03b211f488d5076c0fae8527823689f5fa4c2baa SHA256 4f818be92004a6e0fa9fdcf60480269aab421e9ba0afcc5e85f6d07324ccb7a1 Format Code Loading...

	streambtw.com/microtemplates/source[12]	Function	305 B	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[12] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 417 Size 305 B (305 bytes) MD5 51b5641aaec7bf63ee43321963b69a9a SHA1 79490c0ae8ddadaf9b0d584f5ddbc07e99bf5955 SHA256 a17a70a6eb7bcae18f14a1da75e740c82c36ae1af9c183d4a1f93067f00c6c4d Format Code Loading...

	streambtw.com/microtemplates/source[32]	Function	265 B	2023-10-14	2025-04-18
URL streambtw.com/microtemplates/source[32] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-14 Last Seen 2025-04-18 Times Seen 15 Size 265 B (265 bytes) MD5 c07ab9f730742fbd9010538e4c7b3e3c SHA1 8cf257c3a2c1ac78d6fcebd698461d0603cc6861 SHA256 aced0c43233f913524f119ae49b3117a6f70f043a7d63a2533520491cf420376 Format Code Loading...

	velocitycdn.com/script/ut.js?cb=1701008464559	ScriptElement	82 kB	2023-11-21	2024-08-20
URL velocitycdn.com/script/ut.js?cb=1701008464559 IP / ASN 188.114.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-11-21 Last Seen 2024-08-20 Times Seen 51 Size 82 kB (82131 bytes) MD5 93f41847ccf819cdbc26dbb1ea39ca04 SHA1 cf9dcd090457199c53eb055ee4f0c7e03bc9a68b SHA256 0deb4e0267dc5199b38dca2e698efbb216a6f5e70753cc21a9b0fa58dae15031 Format Code Loading...

	streambtw.com/microtemplates/source[1]	Function	790 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[1] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 1018 Size 790 B (790 bytes) MD5 e22017c2e9c001bce109bfe2fe68c380 SHA1 e5a75a55df382896aa8aff43bc37e72566edf401 SHA256 0852bba61d02a2d08e06f623e1934f3c17d6d1e84b53d9ffcdc4524402733a54 Format Code Loading...

	streambtw.com/microtemplates/source[8]	Function	251 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[8] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 435 Size 251 B (251 bytes) MD5 7fc9ba20cae0848cf3a946374da072d2 SHA1 d697e65a6ec0f44b5745a1d1a2f26886413d8819 SHA256 63d509f07a5692ddb41099673c767f50ed4f99f1c3c01e7e298629ff22edcbdd Format Code Loading...

	streambtw.com/microtemplates/source[10]	Function	1.1 kB	2023-05-27	2025-07-31
URL streambtw.com/microtemplates/source[10] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-05-27 Last Seen 2025-07-31 Times Seen 240 Size 1.1 kB (1105 bytes) MD5 ec1e8f92a63a7e752b9845f024a56cb0 SHA1 8e2dca2a34443bb4e7d012a34af4e6cce4adde0a SHA256 6e38d26061a6bcc18d40b6267f87e12a54b14de0648c3e1418c8fca822b4dcd7 Format Code Loading...

	streambtw.com/microtemplates/source[11]	Function	526 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[11] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 428 Size 526 B (526 bytes) MD5 bb1191112e52272bde802d80749d1b9c SHA1 a57c542d3f972968c70c0a16e7b8016b878e284d SHA256 e0cba6e029fec740108a7ad86a5461ee9e4959937fa4ff27ce356e04c35e5850 Format Code Loading...

	streambtw.com/microtemplates/source[24]	Function	791 B	2023-04-16	2025-07-27
URL streambtw.com/microtemplates/source[24] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-16 Last Seen 2025-07-27 Times Seen 367 Size 791 B (791 bytes) MD5 60d712708b983f5789f2a8aaa1870dbe SHA1 5e0ad9bd5d3e98d4afa868c9a7fbee38d2e7b0e3 SHA256 9cd6d70f9cda4f328223ee7fd22021f2ffa2196b314a383cfa187ae7cce6f16a Format Code Loading...

	streambtw.com/microtemplates/source[6]	Function	264 B	2023-04-13	2025-07-31
URL streambtw.com/microtemplates/source[6] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-31 Times Seen 595 Size 264 B (264 bytes) MD5 0fef0cfef9acd9068f428da4adfc868d SHA1 e04a20aca5ac9bf6b4a15128882153326525c6c7 SHA256 2c4d4a81081cd404eed42504e246cc951e5dc5b9b2772d75ee1bc3e4eef51b87 Format Code Loading...

	streambtw.com/iframe/ch1.php	ScriptElement	450 B	2023-10-22	2024-08-21
URL streambtw.com/iframe/ch1.php IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-10-22 Last Seen 2024-08-21 Times Seen 6 Size 450 B (450 bytes) MD5 68b185f22cc6513d37cb455a503014ba SHA1 575c2839f438d68cb8daa3df01ecfb4f37323e2f SHA256 47ea43f21d7e08a0d5c3062f47af108c529d9a1622832eaadfb65fd269315587 Format Code Loading...

	streambtw.com/microtemplates/source[16]	Function	265 B	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[16] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 507 Size 265 B (265 bytes) MD5 bf9620c080385c4190d481970b97f451 SHA1 c338fb77d77e634c51755c220a11f84864fcf88b SHA256 66094161d62295d9d0e3b2c232d0f9c1007a297b0435d1049ab18252e6895051 Format Code Loading...

	streambtw.com/microtemplates/source[17]	Function	1.5 kB	2023-04-13	2025-07-27
URL streambtw.com/microtemplates/source[17] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-04-13 Last Seen 2025-07-27 Times Seen 414 Size 1.5 kB (1481 bytes) MD5 c8a1fa4de07a4ee5744b88bf3243034b SHA1 695bf56fa4c73b5e316cb97727018f41aaaa15f1 SHA256 b72c1d237c0e1d148fae25d5648691b7d4d485c6cde2cfea65236680208c2ac5 Format Code Loading...

	streambtw.com/microtemplates/source[28]	Function	15 kB	2023-10-14	2025-04-18
URL streambtw.com/microtemplates/source[28] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-14 Last Seen 2025-04-18 Times Seen 11 Size 15 kB (14947 bytes) MD5 80838a0b6b5dcd3c9afa72641ec8ba44 SHA1 40584ce0f32b8350903012898aded484f04b6eaf SHA256 41c51a103b1c4f216935bf07eacb8e9f228f231f7bc0ce3f4dc31ac8f7a81320 Format Code Loading...

	streambtw.com/microtemplates/source[29]	Function	1.5 kB	2023-10-14	2025-04-18
URL streambtw.com/microtemplates/source[29] IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-14 Last Seen 2025-04-18 Times Seen 12 Size 1.5 kB (1481 bytes) MD5 870fabb17c86bc5ad09fb6b85ce25907 SHA1 2dbe68baaa4219b795a67824c957d1a0b297be87 SHA256 36bd93b33125d099ba85b749a31e9652b57fdb71e7f4270c450c061f9c146e64 Format Code Loading...

	streambtw.com/iframe/ch1.php	ScriptElement	473 B	2023-11-26	2024-08-20
URL streambtw.com/iframe/ch1.php IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-11-26 Last Seen 2024-08-20 Times Seen 5 Size 473 B (473 bytes) MD5 a5165c7f3c8930484032441aa668b3a6 SHA1 e77585af4729a97ba6c2d13a43d99e8440f93a18 SHA256 7cb675dba99a3423da3868ab9b420972bdf444183b070abe0ac27f4b38b15102 Format Code Loading...

HTTP Transactions (20)

URL IP Response Size

GET cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js

151.101.193.229

200 OK

11 kB

URL

cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js

IP / ASN

151.101.193.229

#54113 FASTLY

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeHTML document, ASCII text, with very long lines (30387)

First Seen2023-03-07

Last Seen2025-07-27

Times Seen730

Size11 kB (10804 bytes)

MD51b142ebaf5f868c4c11a73ffe9175afb

SHA1aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9

SHA256df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702

Certificate Info

IssuerGlobalSign nv-sa

Subjectjsdelivr.net

Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09

ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

HTTP Headers

GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Sun, 26 Nov 2023 14:20:59 GMT
age: 1478
x-served-by: cache-fra-eddf8230055-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10804
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js

151.101.193.229

200 OK

169 kB

URL

cdn.jsdelivr.net/npm/@clappr/player@latest/dist/clappr.min.js

IP / ASN

151.101.193.229

#54113 FASTLY

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeASCII text, with very long lines (65536), with no line terminators

First Seen2023-05-27

Last Seen2025-06-21

Times Seen111

Size169 kB (169275 bytes)

MD53dbf1ad3535560c4e487d88012784f29

SHA16fd8110083e0c387d8fb49a4d6a5264b28c755f8

SHA2560445a4b98a570af2253cd291c241a2e716e4105ffeec79628e058a8fe77aaedd

Certificate Info

IssuerGlobalSign nv-sa

Subjectjsdelivr.net

Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09

ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

HTTP Headers

GET /npm/@clappr/player@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.5.0
x-jsd-version-type: version
etag: W/"9749e-b9gRAIPgw4fY+0mk1qUmSyjHVfg"
content-encoding: br
accept-ranges: bytes
date: Sun, 26 Nov 2023 14:20:59 GMT
age: 25896
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 169275
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF

142.250.74.168

200 OK

93 kB

URL

www.googletagmanager.com/gtag/js?id=G-PQ1PJ56MMF

IP / ASN

142.250.74.168

#15169 GOOGLE

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeASCII text, with very long lines (5955)

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size93 kB (93003 bytes)

MD529195f16f3b8218a8d6ac47540e56009

SHA1a2a951e8ada2e47a7b0e54672a07669f02bf2288

SHA256bf9839df32416ae7e01c20a0862c2cd331dda101b68a33798adfd019ebe46b52

Certificate Info

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34

ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

HTTP Headers

GET /gtag/js?id=G-PQ1PJ56MMF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 26 Nov 2023 14:20:59 GMT
expires: Sun, 26 Nov 2023 14:20:59 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93003
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js

173.233.137.44

200 OK

25 kB

URL

boilingloathe.com/02/04/fc/0204fc8fde3b32723ae3602a79727408.js

IP / ASN

173.233.137.44

#7979 SERVERS-COM

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeASCII text, with very long lines (62217), with no line terminators

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size25 kB (24753 bytes)

MD5cfa0ed21efac068242c9858d11757d41

SHA13cb3b126d2dfa8a2855169869ec953e8afeb761d

SHA256a39a74bbb0b2d2d58c102876cb5279244ada1e587d032b5002791b87a2fd6ae7

Certificate Info

IssuerLet's Encrypt

Subjectboilingloathe.com

Fingerprint3C:44:55:2A:C8:DE:3C:20:64:B8:62:87:F3:F9:49:E8:27:0A:67:73

ValidityFri, 10 Nov 2023 09:11:40 GMT - Thu, 08 Feb 2024 09:11:39 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /02/04/fc/0204fc8fde3b32723ae3602a79727408.js HTTP/1.1
Host: boilingloathe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:21:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f71a8df1bbac77c5827ea80761bd235c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

HEAD streambtw.com/iframe/ch1.php

188.114.97.1

200 OK

0 B

URL

streambtw.com/iframe/ch1.php

IP / ASN

188.114.97.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services LLC

Subjectstreambtw.com

Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C

ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT

HTTP Headers

HEAD /iframe/ch1.php HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/ch1.php
Cookie: pp_show_on_0204fc8fde3b32723ae3602a79727408=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=las1zwjWFjwX8gTrlcv2AtgJjRRB8bl68w8fRgjHvxHc25Z4KnZIyR9FVyyeHLOp987%2F9nEKuXH3nnOwEyUombyxa6RG2Opkjoa696%2BsNFilMKLddP55H%2F1fYk4tGTjo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c67fcad1b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.r2m03.amazontrust.com/

54.230.218.11

471 B

URL

ocsp.r2m03.amazontrust.com/

IP / ASN

54.230.218.11

#16509 AMAZON-02

Requested byN/A

Resource Info

File typedata

First Seen2023-11-26

Last Seen2023-11-26

Times Seen17

Size471 B (471 bytes)

MD5202e8c2fbcaca36c4320ef15b80456f4

SHA1e4d2370c6fc247f93ca68e5718618ddcf0a0ddb9

SHA2560638ce23f7fa1305977a402e0e8d8f612d002194da3efaa47c9d4e1a984144cb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 26 Nov 2023 14:21:00 GMT
Last-Modified: Sun, 26 Nov 2023 13:49:09 GMT
Server: ECAcc (ska/F6CC)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vRGMwYCrcs8dsTGxzP8cfMxjfz3v0ku59bP-GS4ntnrL7cgV9I2hTg==
Age: 1911

GET proftrafficcounter.com/stats

18.157.203.0

200 OK

40 B

URL

proftrafficcounter.com/stats

IP / ASN

18.157.203.0

#16509 AMAZON-02

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeASCII text, with no line terminators

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size40 B (40 bytes)

MD529c298c48c250dfc70c4b0e37375b158

SHA1fa62e3f58f5e0232daf3932988c11fadba733a06

SHA25673d093424944aba46dd767c620dcc5d8b7e099c17c9a59a90dfad568e9008a71

Certificate Info

IssuerAmazon

Subjectproftrafficcounter.com

FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6

ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://streambtw.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=f6b13ace-20e3-41b5-89b7-e29870de99fc:2:1; expires=Wed, 23 Nov 2033 14:21:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET doruffleton.com/tag.min.js

139.45.197.244

200 OK

26 kB

URL

doruffleton.com/tag.min.js

IP / ASN

139.45.197.244

#9002 RETN Limited

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeASCII text, with very long lines (65536), with no line terminators

First Seen2023-11-24

Last Seen2023-11-28

Times Seen233

Size26 kB (25606 bytes)

MD5f98d2b56f0a3cb5931f906af99482894

SHA124be5bb9d3277835a954809df6e7a894f4d0468b

SHA256e7a07587ad65e34dd4ffd2a7f01167813688c3088860f5d4d89cbb4551f4f326

Certificate Info

IssuerLet's Encrypt

Subjectdoruffleton.com

Fingerprint8D:99:65:BD:FF:22:4C:6B:41:72:27:BC:29:02:01:7C:6F:06:33:89

ValiditySat, 07 Oct 2023 07:17:50 GMT - Fri, 05 Jan 2024 07:17:49 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: doruffleton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/javascript; charset=utf-8
content-length: 25606
content-encoding: br
x-trace-id: 66ddfbf1fe957f736aeabca180d556a6
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 24 Nov 2023 13:03:58 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

GET practicalframingfiddle.com/pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70

192.243.59.13

200 OK

0 B

URL

practicalframingfiddle.com/pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70

IP / ASN

192.243.59.13

#39572 DataWeb Global Group B.V.

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectpracticalframingfiddle.com

Fingerprint27:D6:2E:0C:05:4C:F2:6D:9A:7D:9B:61:69:3A:FF:61:28:3B:8F:87

ValidityMon, 09 Oct 2023 12:38:45 GMT - Sun, 07 Jan 2024 12:38:44 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1270&rd=1270&fd=883&bv=23.11.v.3&tmpl=70 HTTP/1.1
Host: practicalframingfiddle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 26 Nov 2023 14:21:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET hls.streambtw.com/live/stream_1.m3u8

188.114.96.1

200 OK

5.1 MB

URL

hls.streambtw.com/live/stream_1.m3u8

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeM3U playlist, ASCII text

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size5.1 MB (5111691 bytes)

MD590ce9756890bbdaf13c0278eb3704c68

SHA15ac7e088694e2dd942028af5254f2fcc40f68d79

SHA256d5072b98c0c7d453cf5f94421848d15ff8959cb30e7d1765285e052574067e3a

Certificate Info

IssuerGoogle Trust Services LLC

Subjectstreambtw.com

Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C

ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT

HTTP Headers

GET /live/stream_1.m3u8 HTTP/1.1
Host: hls.streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/vnd.apple.mpegurl
last-modified: Sun, 26 Nov 2023 14:21:00 GMT
etag: W/"6563544c-34e"
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dXawttP9ekZaC9IzfB%2BAY7GRcdfdg8Y0gl3tfiMqlAb4WHLXZTzfOD%2BhcNb0sgnVXbFtL4Zdz%2FNAUvKlnIESxlEfX5NgPX3wED81XOLqbZuydoSrla0OaRbPQyISP0GZB%2B12CA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c6822d7f56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST youradexchange.com/ut/hb.php?cb=0.7049615376118161&v=1

172.64.171.19

204 No Content

0 B

URL

youradexchange.com/ut/hb.php?cb=0.7049615376118161&v=1

IP / ASN

172.64.171.19

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services LLC

Subjectyouradexchange.com

FingerprintFD:52:FD:E8:62:0A:DE:66:86:28:19:39:64:21:57:5C:CB:8A:59:D9

ValidityTue, 17 Oct 2023 07:21:58 GMT - Mon, 15 Jan 2024 07:21:57 GMT

HTTP Headers

POST /ut/hb.php?cb=0.7049615376118161&v=1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 738
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sun, 26 Nov 2023 14:21:01 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nYt3%2FqIcnhWNMZz7UVEmbCuRystMeNGH1lIByKknTTuXTZt1TVoeupJ1qjzeBPBrJClaCQSGjVFx6P%2B7L9KhgjOGSA316LoFxoTdG%2FRc6BZWkKZDzYeOIztVXrs2sLn%2BgGNy%2Bns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c684be0163ba-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET banquetunarmedgrater.com/advertisers.js

104.21.86.121

200 OK

0 B

URL

banquetunarmedgrater.com/advertisers.js

IP / ASN

104.21.86.121

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services LLC

Subjectbanquetunarmedgrater.com

Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57

ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 3fa85a30b7e9fda4c7fc7d16a02c9378
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 26 Nov 2023 14:21:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JcQgFwH624J%2BxdkssVzfQ4x%2BizNCymUsKMxTA8p6BsCxuU%2Fan42MTn5XowVXbIbMOtho%2BT8r0P6IRmf8S47sdCncNH9EZJbC4zXde7S1Smbl4MCVxSQle%2FtfrU75pUna2EQV4Fjs2ZLOdjA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6848d84568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET velocitycdn.com/script/ut.js?cb=1701008464559

188.114.96.1

200 OK

82 kB

URL

velocitycdn.com/script/ut.js?cb=1701008464559

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size82 kB (82131 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectvelocitycdn.com

FingerprintB2:86:11:E9:51:C0:CA:58:5A:2A:DB:15:B2:E9:FA:BE:B0:8F:29:29

ValidityFri, 27 Oct 2023 15:57:57 GMT - Thu, 25 Jan 2024 15:57:56 GMT

HTTP Headers

GET /script/ut.js?cb=1701008464559 HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq6jiRYW__krik0aeW02JdN7D2ClcTuaHVV97KG93ulAw9q5ZIgTSQtVKkPWu8AIhihoRiP9HfqXwCwAd-Xuaevrw
x-goog-generation: 1700559366468515
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 82131
x-goog-hash: crc32c=4mnTgA==, md5=k/QYR8z4Gc28Jtux6jnKBA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:35:37 GMT
cache-control: public, max-age=3600
last-modified: Tue, 21 Nov 2023 09:36:06 GMT
etag: W/"93f41847ccf819cdbc26dbb1ea39ca04"
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LOE5IkFiVET4xIPCX%2F61%2FnTJHGiq4BANgWsf8Ma8gDSbyiKft58aEyZ3rrQP5XcSLKlGz9nHtKUu9cQREf16nAt%2FkgIeV%2BT1MVflntaeV7L1ewzHYT5hoMeB3btfSvkspWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6826b0eb518-OSL
content-encoding: br

GET irondai.com/script/resource-v31.js

188.114.96.1

200 OK

203 kB

URL

irondai.com/script/resource-v31.js

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size203 kB (202859 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectirondai.com

Fingerprint5C:7D:02:B7:7C:CE:5F:9C:FC:65:41:9A:40:6A:EB:20:A5:D4:B1:70

ValidityFri, 29 Sep 2023 00:35:38 GMT - Thu, 28 Dec 2023 00:35:37 GMT

HTTP Headers

GET /script/resource-v31.js HTTP/1.1
Host: irondai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPp49_xoYh7r8Cr5HrYqQG0fV1JzgC2x06Pdw7ZraTMScyPlN2fLcXQGnSwEDp22Pl4RwEOYJ6w9EXaTJXiWBG9sdtV-5WJY
x-goog-generation: 1700559236995904
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 202859
x-goog-hash: crc32c=rCiXbQ==, md5=/Z4uhobFqaAC41d8YvdM/g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:41:34 GMT
cache-control: public, max-age=14400
last-modified: Tue, 21 Nov 2023 09:33:57 GMT
etag: W/"fd9e2e8686c5a9a002e3577c62f74cfe"
age: 1142
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QvxHu41cwSilrsFA49FJfWnNHEriE0CwvqgnXkyXLgxRgKQun%2BlTEuhyOhUy%2BODQhiEhV061JUk7GQwMCZ8%2BRIZ8rQ4GrZfSo34WxFQHWB95H8BwFyx%2BdU8W8K1jAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c6836a2556c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET streambtw.com/favicon.ico

188.114.97.1

200 OK

4.2 kB

URL

streambtw.com/favicon.ico

IP / ASN

188.114.97.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4418), with no line terminators

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size4.2 kB (4197 bytes)

MD550251022c0ad42f54cee4e5102c60c1b

SHA1e0973fcfb7f95f2460086efc47473402f42495c9

SHA256001f64a3647a027b91bb56f041aaf25213e160297622f0f661166ce9e9676b79

Certificate Info

IssuerGoogle Trust Services LLC

Subjectstreambtw.com

Fingerprint2D:81:70:63:02:CC:B7:4C:35:5F:BE:53:92:8D:3A:01:81:59:47:1C

ValidityFri, 06 Oct 2023 17:37:18 GMT - Thu, 04 Jan 2024 17:37:17 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: streambtw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/iframe/ch1.php
Cookie: pp_show_on_0204fc8fde3b32723ae3602a79727408=1; _ga_PQ1PJ56MMF=GS1.1.1701008464.1.0.1701008464.0.0.0; _ga=GA1.1.404246162.1701008465; pp_main_0204fc8fde3b32723ae3602a79727408=1; pp_exp_0204fc8fde3b32723ae3602a79727408=1701015664743; dom3ic8zudi28v8lr6fgphwffqoz0j6c=f6b13ace-20e3-41b5-89b7-e29870de99fc%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
last-modified: Sun, 26 Nov 2023 12:56:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1933
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxL8LjF5ppqwRFALhLYiD18pB%2FbPsf8MwZcroC%2BVCna7K6h4nIEYh3tWLOXeq7sFRLTCjpQDHI867REO%2Bf6g2DzHtR6PpGF2hr1cIGUAAoAv7mKZ%2BgNp1OLcLDZtksE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c685a8ecb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET velocitycdn.com/script/resource-v31.js

188.114.96.1

200 OK

203 kB

URL

velocitycdn.com/script/resource-v31.js

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size203 kB (202859 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectvelocitycdn.com

FingerprintB2:86:11:E9:51:C0:CA:58:5A:2A:DB:15:B2:E9:FA:BE:B0:8F:29:29

ValidityFri, 27 Oct 2023 15:57:57 GMT - Thu, 25 Jan 2024 15:57:56 GMT

HTTP Headers

GET /script/resource-v31.js HTTP/1.1
Host: velocitycdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoBATB9EOnfoGagiyvb5U9q7jLzTUtIAEo1CpAdxtFE8fk_3Q-ZT-yWljxOQSOaIf1SrQUOPphQC5KAPzb1mLy_9w
x-goog-generation: 1700559236995904
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 202859
x-goog-hash: crc32c=rCiXbQ==, md5=/Z4uhobFqaAC41d8YvdM/g==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 26 Nov 2023 14:41:34 GMT
cache-control: public, max-age=3600
last-modified: Tue, 21 Nov 2023 09:33:57 GMT
etag: W/"fd9e2e8686c5a9a002e3577c62f74cfe"
age: 1148
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bqo8K1PNNVERK5gBFLoZMrgmCFMDPaQLNLbmD5ksTcCWvF0D3f%2BwgqHcF9DqXXyvW1phqcHpQkoamx1d4dWd0IHrbAXntK2mtdWFbe7v9K1q%2FrvxaB7NHzXIhGqx5SMch6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c67fdae5b527-OSL
content-encoding: br
X-Firefox-Spdy: h2

GET doruffleton.com/5/6210454/?oo=1&aab=1

139.45.197.244

200 OK

2.8 kB

URL

doruffleton.com/5/6210454/?oo=1&aab=1

IP / ASN

139.45.197.244

#9002 RETN Limited

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typetroff or preprocessor input, ASCII text, with very long lines (3064), with no line terminators

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size2.8 kB (2820 bytes)

MD5e5772bea24b55b15aad87ac6f52fe1d9

SHA16bea2dcaf6675553f9f4a184c02a7f28cf44a05e

SHA256d7316ef371838195fc57965492cbec499997a7714b9550c6ee497c9b96cb1214

Certificate Info

IssuerLet's Encrypt

Subjectdoruffleton.com

Fingerprint8D:99:65:BD:FF:22:4C:6B:41:72:27:BC:29:02:01:7C:6F:06:33:89

ValiditySat, 07 Oct 2023 07:17:50 GMT - Fri, 05 Jan 2024 07:17:49 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6210454/?oo=1&aab=1 HTTP/1.1
Host: doruffleton.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: application/json
x-trace-id: 268ec4dbd3768e6afce4683159599765
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://e2ertt.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://streambtw.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b817f4ae37e043e29e6d95a81ee86b8e; expires=Mon, 25 Nov 2024 14:21:00 GMT; path=/; secure; SameSite=None
oaidts=1701008460; expires=Mon, 25 Nov 2024 14:21:00 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET youradexchange.com/script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947

172.64.171.19

200 OK

980 B

URL

youradexchange.com/script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947

IP / ASN

172.64.171.19

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typetroff or preprocessor input, ASCII text, with very long lines (1018), with no line terminators

First Seen2023-11-26

Last Seen2023-11-26

Times Seen1

Size980 B (980 bytes)

MD580138a94ddfb4f73f0f970c56c115279

SHA1fd4176742860f52f2efd5d09611edc734dc8fdaa

SHA256d0578781adacfcf184a4fb128f733c6fed3b8f07a202cd5add42dcc5dd3f64a0

Certificate Info

IssuerGoogle Trust Services LLC

Subjectyouradexchange.com

FingerprintFD:52:FD:E8:62:0A:DE:66:86:28:19:39:64:21:57:5C:CB:8A:59:D9

ValidityTue, 17 Oct 2023 07:21:58 GMT - Mon, 15 Jan 2024 07:21:57 GMT

HTTP Headers

GET /script/suurl4.php?r=7102142&abtg=1&cbur=0.3487142801023786&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=StreamBTW%20%7C%201&cbpage=https%3A%2F%2Fstreambtw.com%2Fiframe%2Fch1.php&cbref=&cbdescription=&cbkeywords=&cbcdn=velocitycdn.com&aggr=0&ts=1701008464566&atv=38.2-suv4&srs=beb12c60a3aab6462d58685a60800947 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://streambtw.com/
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYPtcfss65OiaCw576BXyu8IF7WAI%2B%2FwbQMOWu4WojVuwoUe2HkWGk0O9YdgyEPn9B1VYtrucDjqjM2H55G1DnixTJSnUo0pApVFS1qOw3q1QtrZXIeSr1oAzXxqoc0gKmGTDpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2c6836a844170-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET friendshipmale.com/sfp.js

104.21.234.33

200 OK

86 kB

URL

friendshipmale.com/sfp.js

IP / ASN

104.21.234.33

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size86 kB (85468 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37

ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:00 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fd407bf7d434f119e09002b6ee11ff16
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 26 Nov 2023 14:21:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tyyMX7xBwtFyGiz8YYjl6G9NkwisvZHz0VYiLdRWQg0pTVxF6HOC%2BVjj7v6dDVXgKs4qkJsPLDDxqujxxb%2BUTfT23kUtCg1dijf0nMrtd2k7HGf%2BQlJ4P3EGOAk5ioDd98%2BfEMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c67fff930b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET six.gettvfree.online/static/stream_1_5544_2767.png

104.21.33.251

200 OK

5.1 MB

URL

six.gettvfree.online/static/stream_1_5544_2767.png

IP / ASN

104.21.33.251

#13335 CLOUDFLARENET

Requested byhttps://streambtw.com/iframe/ch1.php

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606371

Size5.1 MB (5111532 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectgettvfree.online

Fingerprint93:2B:B3:82:4E:D0:FB:B2:C2:02:AC:00:A8:77:C8:8A:A6:61:B4:95

ValidityMon, 23 Oct 2023 20:01:03 GMT - Sun, 21 Jan 2024 20:01:02 GMT

HTTP Headers

GET /static/stream_1_5544_2767.png HTTP/1.1
Host: six.gettvfree.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://streambtw.com
DNT: 1
Connection: keep-alive
Referer: https://streambtw.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:21:01 GMT
content-type: image/png
content-length: 5111532
last-modified: Sun, 26 Nov 2023 14:20:44 GMT
etag: "6563543c-4dfeec"
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uIOVhvMAVgyz8EgOT5DaWq4uxeMnoyECH8BjwgLu1g5%2FrpvPPgFMMfoq1L2EP%2FSHIZ5jmzYtXIp2XcxRnDC59pq1J8bhOts0JKdVoN6%2FsDJyvBnV1%2F87hSYCTiZcAul2V8tQMg%2Ba0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2c682edb9b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2