{"report_id":"7ff280f2-13ce-42a7-aec8-8c22a53fc330","version":6,"status":"done","tags":[],"date":"2024-07-04T23:19:26Z","url":{"schema":"http","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"104.21.34.152","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"title":"Streamtape.com"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T11:14:14Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ofleafeona.com","ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2023-06-15","domain_rank":0,"first_seen":"2023-06-16 00:19:31","last_seen":"2024-06-29 07:07:55","alert_count":1,"request_count":1,"received_data":43310,"sent_data":406,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.com","ip":{"addr":"142.250.147.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":7,"first_seen":"2015-05-10 13:11:19","last_seen":"2024-06-27 18:13:48","alert_count":0,"request_count":1,"received_data":1383,"sent_data":461,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-03 18:12:42","alert_count":0,"request_count":5,"received_data":4439,"sent_data":1635,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tapeadvertisement.com","ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2024-03-22","domain_rank":0,"first_seen":"2024-03-22 22:46:58","last_seen":"2024-06-16 21:31:01","alert_count":7,"request_count":7,"received_data":264356,"sent_data":3385,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-07-03 18:16:32","alert_count":0,"request_count":4,"received_data":2798,"sent_data":1300,"comment":"","tags":null,"fingerprints":null},{"fqdn":"yy.puffexies.com","ip":{"addr":"23.109.170.59","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2024-04-23","domain_rank":0,"first_seen":"2024-04-30 10:12:13","last_seen":"2024-06-28 10:18:55","alert_count":1,"request_count":1,"received_data":1500,"sent_data":414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"thumb.tapecontent.net","ip":{"addr":"104.21.235.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-01-18","domain_rank":98256,"first_seen":"2020-04-26 00:38:09","last_seen":"2024-06-28 10:18:55","alert_count":0,"request_count":1,"received_data":81411,"sent_data":463,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.gstatic.com","ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2016-07-26 11:37:06","last_seen":"2024-07-04 01:05:44","alert_count":0,"request_count":1,"received_data":216989,"sent_data":492,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"puffexies.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"ofleafeona.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"a3ed15cbb0bfc36aef238cd027dd4bbd","sha1":"4dfae1affcb2a05c8f82b28aaa0425cad15acbfa","sha256":"d4a961855f5fa922e00a6b346ba1e658fdacc9600049a7140f9622b09cf919e2","sha512":"6ef2cd05f58d2365c349ac79ed0a3f2d3cce5dff4ec77d5f151bde4d868696a0b87cf6a09c2c8f250263441074e6ca2b99bb3710e91f1c5d16f0696a02cad46e","ssdeep":"1536:dNouaEpmI6ggLtHY8E+R7yoz3R2IkyfTfMsCGHNausVC:1a+8E6moz3ZkfJDusVC","tlshash":"0183726c7c9260192563e1ba903b31953a327100a85aadf6b414e3d3ed74a8f8dd3fdd","size":87114,"data":"","first_seen":"2024-08-19T18:02:48.83532Z","last_seen":"2024-08-19T18:02:48.83532Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"aa049e2749b8531cb8f233c2f64fc2b2","sha1":"b611a5a62c1813ae5b4763378b3a4a565556530a","sha256":"e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2","sha512":"fa951f3911de780608d6235a597758320388dff58cf18dd584a6941ac88cc36cac7d52caa72b678ee6f4dff47ee23955ab282714d03e713ae2bed4cb73a3c14e","ssdeep":"","tlshash":"afa012c87a99f408423260f04c3b808de0352c20348c544069098c556c711098336d1c","size":79,"data":"","first_seen":"2023-04-11T21:38:58Z","last_seen":"2026-04-04T04:42:26.519402Z","times_seen":203447,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"572cb94037fffc2a0a53b465972e15f1","sha1":"0d679b041a7c1ca45cc99e2d229fc2b86762838d","sha256":"6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35","sha512":"f7c4db7986d362b58ff4b4646cdeb71992c0ce28949773c4471915f2cc8828329445777e228ef248f508f721a33dfea3d5694bc7ec18dc6c00134ee23155ff32","ssdeep":"","tlshash":"8290045c31005004c1773cd0501754d55030443330401d411d45d4444d7151c033d45c","size":34,"data":"","first_seen":"2023-04-11T21:16:40Z","last_seen":"2026-04-04T04:36:49.98491Z","times_seen":81176,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"f0879937c6059ae958804f96adfe7500","sha1":"9979334d196677077f782fee78181a60778fd161","sha256":"ba7f309d9661facaaefbaeddf56f1a8b8bd69ec5c5db3a9995d6eb13594d07d5","sha512":"d5aef5672cbb0c41a3a3df366d3c79a909a2b82c46e09209bd103896fbf20b34c75841f6bb8d5e6f532f357cdf73ed6c6df3016ab72b0e9a15ddd64dddc12871","ssdeep":"","tlshash":"7fd0e77d62475a3d365507d01797305c0f1b5b7750405f4cde8c00d075e0998c5d1b21","size":289,"data":"","first_seen":"2024-08-19T18:02:48.838068Z","last_seen":"2024-08-19T18:02:48.838068Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"326bf869435fdfd3d3e2b6ae92504faa","sha1":"d8f389560a57eebe30e47336c04d60bb0f78642c","sha256":"02dfbc5561a44e0bd21e3eaa85c620c2d76658781f136705c7c2e91a715e87f9","sha512":"c05e071e14613659f7feea97e566df794b7bead69f739a3d5fec5273e247a27b8c5e2aa6bbbe516b53d2d359cf1dcc3f204dc8b4a4889e03a1828e9e963cff7d","ssdeep":"","tlshash":"78d0c913ad0deaf8121424d25d35d1ea753c86e4f913fa27996fb95841dd94c094ac14","size":207,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2025-09-18T21:45:09.743867Z","times_seen":570,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"679004dd3d51d000433350f04c17d4d5f0340c3030541d00750dd4475c7111c4135c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-04-04T04:43:49.409896Z","times_seen":593608,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"41cc58e5da3a06326891b8646afc7548","sha1":"a4a725eadb523ca5dee8b3a9a411357a8ed33976","sha256":"ecbb8b7b69fb79c8909082c10e5d79f11b280d9a089cfde1b89f08f8364d25af","sha512":"5c68fb1b10308a2b8561dcaad54ba92ad0722a8a36315f9a5ddc3aab9194901393878932fa0af3870dec59ee6956e9863a624e1f02b4b23c5b5190d76acbaaf2","ssdeep":"","tlshash":"c8c08036dc60017518e5145f3b17b7cd3976dc41d6026450844b9c5454e8923c5379d4","size":176,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-03-29T21:57:23.817394Z","times_seen":610,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"fd5dd2d6d3e372242315d1bfd1df535c","sha1":"98fcd04257f918c91d641c9e25f5b58ad6c4ab28","sha256":"a2b53b623619c157a2c04cc4eef21a188860e4d89e468bcea591d180b3082896","sha512":"a70c08c539cc9539f59f2a279393833d0b4358afad589e67cbf11d9338b46e1835df1768b757e8714e28523f2f1350653a3115f3a3aa398691fc5861ecf4fa5c","ssdeep":"","tlshash":"ba0104d3f1918a390ca95f776b9c52bc3c9063b25032b6d4fd921570b150fa0b06baa1","size":773,"data":"","first_seen":"2024-08-19T18:02:48.840918Z","last_seen":"2024-08-19T18:02:48.840918Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/js/player.ec3b7e.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1781a0087c11152a2361ca6c84b13fab","sha1":"87360f858b201c3e28f4af24b2fc7c2d8a8d0232","sha256":"00c57c8b0121e3c2154bc0c181a5c01ad10550648cc4835a62dc887d5427c656","sha512":"5bdcdc080e3f121851ba060256b19a967ece5bb5b057064b41ac29453c841d86a282647d1971678c99cedf957f3a946a25c7be309ee76ffbcdfbb2943aa8184b","ssdeep":"1536:vgSnzdHTOfC7IPScxi0n2KSBFkljzZtfWl2tLNGuvjMK2TuxCF0k7ccZHrNFY8RP:HO6VxrQICBkdjJU5oNOpJhuf","tlshash":"b4e309ca738ab171c29730ad503f520a72375b996405c258f839e9d86d7ce4ab277f38","size":148031,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2025-09-18T21:45:09.663713Z","times_seen":653,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"2823d7b7a22610d80a99e65878e70ae8","sha1":"545e80f2fabeb1eb49cebb7088635dcc4a867d44","sha256":"36c7a0369978008d36a90e0e62177759df257606497bcef68e3a0f5b30c65c97","sha512":"3b53c44aabea8db76e07c8ea9710963aba8d1b7dc2e88c9146062c9b497f3cba06f07d1227399549d060904ce37be08ea80c71e4f7e51f099e64db459d2d2352","ssdeep":"","tlshash":"ef90020c6210ce4855ba84086044444405441f62c68d44a60553201ac1425c164b7247","size":54,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-03-27T09:40:43.091204Z","times_seen":585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/adgpt.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"69a305bcdc8e061bbd43294a477a3678","sha1":"506582a1d912d546f5942d95ffae95ec7f4c37ce","sha256":"8964d85afd6d5d84b97872464646809c952ab900cdf5c5d7c3b7b4bdb74202fa","sha512":"feb32ed92acbef86c4ce3cb32637ccdf02519d1725db5af667cfe29b842efe4a195ad0deef44fb6c592a50d7e4759bd4c819c2dc439a4d373ef186cb7d2dc553","ssdeep":"","tlshash":"7b70000222808032c03c8000808800088028000ac083a0223a008000000038200002c3","size":20,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-04-01T22:14:46.352109Z","times_seen":2249,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/js/jquery.min.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88145,"data":"","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-04T04:34:10.786213Z","times_seen":114910,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0b3f8544e15a29c2a15dc1af98210a68","sha1":"ac09e6ba1b671420fc8dcf45dad1d49353f7d5e4","sha256":"8b6b4924d58cb7afa649222900dcb4b470e9a45c4ce55265d3fa980cb5c8e34c","sha512":"1eb192d07e8ffcb1d287dc66f8f9048b97b3b346d2a139024b4aab8866e04131681e77da7671a93a546031cf30476b66da2fe7dfb12155abcdcb9ce428c6b815","ssdeep":"","tlshash":"2ae0c0e63cc4502e13b62269a267811d732a292eb84c7c31c5168813387bcfc0c5f60c","size":370,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-03-27T09:40:43.092173Z","times_seen":585,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.147.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"376d683bf29c8d1f877e34a175bf7293","sha1":"e7809c5be70c89acbca6fceb2e939f27d6b73b9d","sha256":"838d96af9ccd91d04c70004a284d4f3b5b63228e12b83ff5d612ad32a47be0ff","sha512":"215958fddbe1d7e12feb93444dde2fdb3452251591bad0bc96c1bc4ce3b20a479fa7d11186dbe7ee6a44b724b747bc68285aae8d498ffa0a6e9c05a4e4092bd8","ssdeep":"","tlshash":"da1163b70915b0310b6315e1d0bfdfa1f941a42cf10cc8e4d555eac82e39dc7ce05a81","size":904,"data":"","first_seen":"2024-06-28T19:12:12Z","last_seen":"2024-08-19T18:54:06.247668Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"addee8c43175819d7484161b395dd3bd","sha1":"6f95c2fbd4353d5ea3b33912ea8fb085692d041c","sha256":"382bfdfc3c756b0b53f60a293256f3f8792bfd5afd46c5b5c7afbae2eb353bbe","sha512":"f4efb72feece511d9175a6572c2431a877c2c2c6328788e4f6fc161e8e6121ac03b0f85f9a4d802f20876bcc17934ecf89f504b24de7a54a573c3d1d0d0c0cc9","ssdeep":"768:Z1oOR91qKE+Rcbjyfyoz6Yf91CgR2/GOWk2VfTfMsTGnoR3XNau41V09u:U8E+R7yoz3R2IkyfTfMsCGHNausVt","tlshash":"b2532e2c7c9260582953e2bad16b30d53a21b240d86aadf6a404e393dd746df8dd3fcd","size":66117,"data":"","first_seen":"2024-08-19T18:02:48.843708Z","last_seen":"2024-08-19T18:02:48.843708Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"991e31d1267d98ff019b705a3d148ae4","sha1":"ce26bf1efabcfe070f058fbef107ebadbd1d8d40","sha256":"aeb0b57af128c03be119c7203f7a81fb63705ded005926bf8ee2485f75f31aac","sha512":"64bbc86527169a7a01f7c5f225382c1d267938eb5cbca6caaaaf689614013808da606e05686054ebaafb11daecd8c667222f991eb2ed99ceefaeec4ba68df95c","ssdeep":"48:S0LeEAp7ybSjDWo4wlZ7710MkGRq+E/byPIU07gngMWQtCiN29R9neIcab9YsMvH:8rfJ1RQpOQN7ggMcQ29R9echgtP","tlshash":"c6a126cb6ea9f003678e6fb3de1a59b7e06ea7d570843e03532c71cc6854d05f0996a8","size":4895,"data":"","first_seen":"2023-10-21T08:54:01Z","last_seen":"2025-01-19T04:59:00.025032Z","times_seen":593,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"e1f1c9f54666acb1650465e150d3df1b","sha1":"6b7251286fa476ae4e0985f8067cc76006a7cf89","sha256":"490fbee07295a40ddaf64abd25076eb54cd926777e2b307c8a7c537d62f95ec9","sha512":"6fa12fbd04e7b65d5da3f7290c4400da48d75bb2cfc6922fd5d0a27f04128cec81533de8291cd4542f921d8f449de6011885c47cca74709ab8ab3e3adf8f2411","ssdeep":"","tlshash":"0e9004077d05c0f401003cd50434d01d1130c554f133d51551f7740c07dd5cd4cc144c","size":44,"data":"","first_seen":"2023-03-07T01:24:29Z","last_seen":"2025-09-18T21:45:09.788794Z","times_seen":653,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:18:59.277468972Z","timestamp":1720135139277,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"E4778C960B009C229DBB555FF7679B6D245D6F7111FD66FD5C514847B06ACDBB\"\r\nLast-Modified: Wed, 03 Jul 2024 01:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=18860\r\nExpires: Fri, 05 Jul 2024 04:33:19 GMT\r\nDate: Thu, 04 Jul 2024 23:18:59 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"957cd8e6bd774045d4cab550ce76f80a","sha1":"d06d4246273e9ba4fba69494038c77f5c53aadb6","sha256":"e4778c960b009c229dbb555ff7679b6d245d6f7111fd66fd5c514847b06acdbb","sha512":"622e80a3c0127ea2ba7645aa24082f8e9ae5f7df651dcc4beb756a9afae0d5402dbf265b8ca710cfffe466df25151989555956e2f08984e8e09327a6b086dfb5","ssdeep":"","tlshash":"4ef00e9213e77a80aaa009236eece53d1d3c6a6c261502f017e041fb9869bb64184888","first_seen":"2024-07-03T08:47:34Z","last_seen":"2024-08-19T18:16:08.498809Z","times_seen":45866,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:18:59.300881325Z","timestamp":1720135139300,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"3BB2A3698D452F1DE2FF4F283A89FC427D9FE01C02AD968F215BEE1834B1C1E3\"\r\nLast-Modified: Thu, 04 Jul 2024 15:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=12763\r\nExpires: Fri, 05 Jul 2024 02:51:42 GMT\r\nDate: Thu, 04 Jul 2024 23:18:59 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e9a839fbbf2a5bc4f1a01cd5fca04d5e","sha1":"ff4396bb2dcc9211b70f2e3266720172ee2ce085","sha256":"3bb2a3698d452f1de2ff4f283a89fc427d9fe01c02ad968f215bee1834b1c1e3","sha512":"f24e231017d32c1b1604d0d7e6e0ea6cc23cf43026e68b3d1cc81e06370b0b2f07e21840408613f1f3ea44040167afac8575241e3b5a548cd9889c55dbaa1b55","ssdeep":"","tlshash":"7bf00ede1ed93e41b2a8522d1a70d81d6d01beba287008e9248143d62f587e689c4d4e","first_seen":"2024-07-04T17:28:39Z","last_seen":"2024-08-19T18:05:50.120876Z","times_seen":49663,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:18:59.596038781Z","timestamp":1720135139596,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BDCA7CE7BB6FEBD6A6AFB56A828CF4422C1A8971524484E8128CAFAD8E6B3367\"\r\nLast-Modified: Tue, 02 Jul 2024 11:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=15852\r\nExpires: Fri, 05 Jul 2024 03:43:11 GMT\r\nDate: Thu, 04 Jul 2024 23:18:59 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b8ee6ca153df6819132dd5d8a6ba5c76","sha1":"0ed0f0f631777272bd71ba23719e71695c9d95e1","sha256":"bdca7ce7bb6febd6a6afb56a828cf4422c1a8971524484e8128cafad8e6b3367","sha512":"bfa4d85450474abedf68b006d8f30686ac28d6691b099c832135f7f396dc714182b2a3b00a02a1e4d84801d5b94e405e6aaf5d07b1a71b8a9dd156879e3ce268","ssdeep":"","tlshash":"f3f005963377bf6057b01b20689ce77f0e56ad6e644479b8289053927c00bf1454486c","first_seen":"2024-07-02T15:39:03Z","last_seen":"2024-08-19T18:21:34.826446Z","times_seen":54016,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:18:59.742188637Z","timestamp":1720135139742,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"73DFDDABE9477748A0F32D3C2105CC266659ED6CECEE3B16EF8E8908192DE269\"\r\nLast-Modified: Thu, 04 Jul 2024 16:21:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8573\r\nExpires: Fri, 05 Jul 2024 01:41:52 GMT\r\nDate: Thu, 04 Jul 2024 23:18:59 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"7a665c357c9589136708e266c9f9a140","sha1":"e75c705088f540933589402929fb9dcbb39e7747","sha256":"73dfddabe9477748a0f32d3c2105cc266659ed6cecee3b16ef8e8908192de269","sha512":"1a0acb3bf96b7eb4ba3f1e9e06f778efc37eda5216bf5e2d78f45677d6a5d3515d15a391a9c783241aacb6f859fff37aae7c8ca839d453d1375798a74adeab40","ssdeep":"","tlshash":"cff0c45e8cf0fd123a3007085acef60d2d902d8c20240ad2a08043ca93103ffcaec40d","first_seen":"2024-07-04T21:44:56Z","last_seen":"2024-08-19T18:04:35.289979Z","times_seen":10732,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/adgpt.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.295Z","timestamp":1720135140295,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /adgpt.js HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 20\r\nlast-modified: Tue, 28 Mar 2023 18:04:26 GMT\r\netag: \"64232c2a-14\"\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 5111\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Mp9jKH0bvMfd%2F7JozU65V%2FeoA0mYdRFIbzJCiTr%2F%2FmcKZKqRvQxr7DMJ9dz3oaWqcp3z4STEj6T%2FyZy%2FmY5j75j8O3DN8UtgQLU9gHDG12FXPsVEt1%2FIs9QyXb33JkuVlPKeWasXQSQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d672ecfe92ce-CPH\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":20,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"69a305bcdc8e061bbd43294a477a3678","sha1":"506582a1d912d546f5942d95ffae95ec7f4c37ce","sha256":"8964d85afd6d5d84b97872464646809c952ab900cdf5c5d7c3b7b4bdb74202fa","sha512":"feb32ed92acbef86c4ce3cb32637ccdf02519d1725db5af667cfe29b842efe4a195ad0deef44fb6c592a50d7e4759bd4c819c2dc439a4d373ef186cb7d2dc553","ssdeep":"","tlshash":"7b70000222808032c03c8000808800088028000ac083a0223a008000000038200002c3","first_seen":"2023-03-07T01:24:29Z","last_seen":"2026-04-01T22:14:46.352109Z","times_seen":2249,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:19:00.424424323Z","timestamp":1720135140424,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"698CCAEC3976A71D9CA755307E479D77272E1B0FBBF85CC4DFAE7399EC0B293D\"\r\nLast-Modified: Wed, 03 Jul 2024 18:46:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=10653\r\nExpires: Fri, 05 Jul 2024 02:16:33 GMT\r\nDate: Thu, 04 Jul 2024 23:19:00 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cbdf1a4d37ba62d60cb5a56784db9c1c","sha1":"8a5d6a23b0f0618a7f49dc5a728a7dfd57a6ecd7","sha256":"698ccaec3976a71d9ca755307e479d77272e1b0fbbf85cc4dfae7399ec0b293d","sha512":"533be3ed033e13350921c02b110018d73eae6e426459b3ad0addb1ee58d54733a7edd7239a877370b281e6d471ccdb408f19497bb8a1462c5ac9b9d0fe045bed","ssdeep":"","tlshash":"72f00e3119a73e87b3b04a0138e5e2367a507d993c6414e430b685a568a9ffa0b413ee","first_seen":"2024-07-04T06:03:13Z","last_seen":"2024-08-19T18:09:11.029078Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:19:00.428858304Z","timestamp":1720135140428,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 04 Jul 2024 23:19:00 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"3d9e8a510cf9cbf8694aa0b22b563296","sha1":"4ddae52debb646705dd57c95ae934b66607b6400","sha256":"3f20b633ad6f93a610fb47eb78fb5c16614faee16f5f1effeb3ec33f9f149b45","sha512":"3f21db3b4b383040cd56366370cd46d0f5c0eda9b1a14ae5515f091533971dfcaa89cff3fdbc7229c20d593126ac686336d2493a86a80ed85ba993f4fff94f67","ssdeep":"","tlshash":"f2f0d4d843b4fd49df111b4039dcd8ad2c3596a90c542589207a55dafc42ee6ca247b7","first_seen":"2024-07-04T00:03:36Z","last_seen":"2024-08-19T18:10:55.270263Z","times_seen":961,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"yy.puffexies.com/gPOkVLDriGo/58191","fqdn":"yy.puffexies.com","domain":"puffexies.com","tld":"com"},"ip":{"addr":"23.109.170.59","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.305Z","timestamp":1720135140305,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"yy.puffexies.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Mon, 01 Jul 2024 05:41:47 GMT","end":"Sun, 29 Sep 2024 05:41:46 GMT"},"fingerprint":{"sha1":"0B:15:3A:E7:6E:07:24:8C:7D:6A:D2:FC:20:03:3F:1C:08:34:E9:59","sha256":"9C:D0:96:F8:6F:07:26:28:4D:0C:FC:01:D9:5E:5D:52:B8:FE:EE:5B:EE:86:60:2D:9F:88:A5:B7:B0:90:67:19"}}},"request":{"raw":"GET /gPOkVLDriGo/58191 HTTP/1.1\r\nHost: yy.puffexies.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Thu, 04 Jul 2024 23:19:00 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://tapeadvertisement.com\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nX-Frame-Options: SAMEORIGIN\r\nSet-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 05-Jul-2024 23:19:00 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Fri, 05-Jul-2024 23:19:00 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26,"size_decoded":6,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"4fc71bf68a1d477bd1523733e34d1e90","sha1":"15119105cffbe108b6cf290146ab02c9aa8517ba","sha256":"74c1971a5c7f3f1cfb81b7a0a8717cee5a45841844104566e00bbfca271943ce","sha512":"e8e5f5430841f9cdaad492efce3fed11992913ad2b714b27c6fd147c55b2c56dc1b896635f24c2b180d4215c70ba9a042847d7d9cf3ff8a67b636a4c0ca1ce3d","ssdeep":"","tlshash":"4350003303c00000cc300000300300000000000000000c00c000000000000000000303","first_seen":"2023-03-07T01:31:39Z","last_seen":"2026-04-03T12:19:59.158661Z","times_seen":10521,"resource_available":true,"data":null}},"time_used":284,"timings":{"blocked":125,"dns":78,"connect":17,"send":0,"wait":22,"receive":1,"ssl":37},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"puffexies.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"thumb.tapecontent.net/thumb/ZPMBykOz1rfq2wz/BXKm0pPjZbHG6G.jpg","fqdn":"thumb.tapecontent.net","domain":"tapecontent.net","tld":"net"},"ip":{"addr":"104.21.235.147","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.302Z","timestamp":1720135140302,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapecontent.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 10:56:59 GMT","end":"Wed, 11 Sep 2024 10:56:58 GMT"},"fingerprint":{"sha1":"7B:D8:6F:84:D9:D5:39:BE:B6:A1:9B:03:71:D7:86:E4:68:3A:64:56","sha256":"3C:28:42:63:D8:20:21:D4:6B:80:48:58:83:27:E8:CB:AF:20:2C:C5:03:B9:E0:CC:22:B7:75:3E:FF:67:93:2C"}}},"request":{"raw":"GET /thumb/ZPMBykOz1rfq2wz/BXKm0pPjZbHG6G.jpg HTTP/1.1\r\nHost: thumb.tapecontent.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 80327\r\nlast-modified: Wed, 31 Jan 2024 16:50:22 GMT\r\netag: 72143e3399a2\r\naccess-control-allow-origin: *\r\nallow: OPTIONS, GET, HEAD, POST\r\naccess-control-allow-headers: Upgrade-Insecure-Requests,Range,Content-Type,If-Modified-Since\r\naccess-control-expose-headers: ETag,Expires,Location,Content-Length,Accept-Ranges,Content-Encoding,Content-Range\r\ncontent-disposition: inline; filename=\"BXKm0pPjZbHG6G.jpg\"\r\ncache-control: public, max-age=259200\r\nexpires: Sun, 07 Jul 2024 23:18:50 GMT\r\ncf-cache-status: MISS\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=p4DZ8BW8JPYhn1Y1ATnBH%2BvTyyVAUdwpvN5FNAKD5c9Cdp%2BCto64s4yvaSgrDExQoj%2FHitTfb%2F7hLIrQQZGvBAChXzk%2B3pxR9QTcrLQM9M7FjfxQlDlelGm4D9x0LHH8Zc0Al4qS3gA%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d6738b606343-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":80327,"size_decoded":80327,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90\", baseline, precision 8, 1280x720, components 3","md5":"5601740f1a4fc488821bedee452208c8","sha1":"8e86e9201123b5232eaf40fb6ffe2c850e287954","sha256":"27c843a51675fd097681b74b03331d5b8d1ddee7c4847fb517d2ce155beabeaf","sha512":"2b146c7ac87a1df86c252a2f3e77a749388ab0d30209f11f8e72aa8fb96937853168808d58db84207173413442c105b9ab552277c30018daf0204b8563bf3d89","ssdeep":"1536:af6c1dgd1pEHbYF2/MFynWauWGUY23O6CviTO82kIhpebO3tFlRpg47W:GtO1Usp4WzWGUY2FTOlkOTDRaKW","tlshash":"0b73f2a87603cb90aa9d1b2b77fd3c3b9ad75aa158c1c422d15f6d253a41f9c110727c","first_seen":"2024-08-19T18:02:48.814155Z","last_seen":"2024-08-19T18:02:48.814155Z","times_seen":1,"resource_available":false,"data":null}},"time_used":299,"timings":{"blocked":96,"dns":36,"connect":20,"send":0,"wait":71,"receive":26,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:19:00.644502654Z","timestamp":1720135140644,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 04 Jul 2024 23:19:00 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"0c820e320731fe71355204a07e7f95bc","sha1":"240fcce81b2999a1b28a3417bbf5177ff9f229c2","sha256":"5d1af5edc1b5ab0e08d7f580c349a94ca3dafaa1c6ab093e9c604821c30f1874","sha512":"37315f4e22ebec2f0252c5f155df94814d9b46a8dc05ac0761f7653ea6f170ce96a65c45439facfd421e632e8b1eeb6ef8b30721a14409968d28ced61453223d","ssdeep":"","tlshash":"31f054ac0de0bc455e02532ba2edef8c703df428146c33e620144386311076e0401f8a","first_seen":"2024-07-04T00:01:49Z","last_seen":"2024-08-19T18:10:54.258272Z","times_seen":958,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.705Z","timestamp":1720135140705,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"HEAD /e/ZPMBykOz1rfq2wz/Andromeda.mp4 HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"HEAD"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private\r\ncf-cache-status: BYPASS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=5%2FDO2dFMOweUZnXf67QLtVlrsypOOrTO8p4cl9PoRR50rU0sXgP1YZapCMMmk0lXrSScxtBfn9eH8CU%2BuwapKD%2BFVxWZ8K3sMvdg6CjticzNdVkYzIFnEG6lhAc3vxclvZSF5aiJELQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d6757e7d92ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T04:46:10.842589Z","times_seen":13317089,"resource_available":true,"data":null}},"time_used":116,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:19:01.566882243Z","timestamp":1720135141566,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 04 Jul 2024 23:19:01 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"7adb5d21cb7b127aded52edafaccc88c","sha1":"0aa27f20343bfc61c12b9f6006a9400825de4aa1","sha256":"1008cd5bad989f2471b6ab319d2534c45e767ed4680d00a494c291176b90a08e","sha512":"291b53dea5368588401c2cd0ef7ab3a75481da7e6a105edf90a929373e483f156619e48f916d590629f400f1cf02738bbb4a0bfb68feb8d81a7c57f85155aab3","ssdeep":"","tlshash":"4cf0d4453cbe9c96ce365884559ce99af4b059966c2c5552303442a42468bb9350d2f9","first_seen":"2024-07-04T00:04:46Z","last_seen":"2024-08-19T18:10:54.875177Z","times_seen":1563,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.gstatic.com/recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js","fqdn":"www.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:01.501Z","timestamp":1720135141501,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:31:03 GMT","end":"Thu, 05 Sep 2024 16:31:02 GMT"},"fingerprint":{"sha1":"C4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04","sha256":"FE:73:3D:68:5C:A3:33:5A:16:07:35:24:D9:EE:14:5F:33:6E:49:C9:E4:0A:46:C6:D6:34:2D:ED:01:DB:68:14"}}},"request":{"raw":"GET /recaptcha/releases/rKbTvxTxwcw5VqzrtN-ICwWt/recaptcha__en.js HTTP/1.1\r\nHost: www.gstatic.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://tapeadvertisement.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups; report-to=\"recaptcha\"\r\nreport-to: {\"group\":\"recaptcha\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/recaptcha\"}]}\r\ncontent-length: 216123\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 04 Jul 2024 04:44:22 GMT\r\nexpires: Fri, 04 Jul 2025 04:44:22 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Sun, 23 Jun 2024 08:01:07 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding\r\nage: 66879\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":216123,"size_decoded":546598,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (636)","md5":"93e3f7248853ea26232278a54613f93c","sha1":"16100c397972a415bfcfce1a470acad68c173375","sha256":"0ec782544506a0aea967ea044659c633e1ee735b79e5172cb263797cc5cefe3a","sha512":"26aca30de753823a247916a9418aa8bce24059d80ec35af6e1a08a6e931dcf3119e326ec7239a1f8f83439979f39460b1f74c1a6d448e2f0702e91f5ad081df9","ssdeep":"6144:yihcR5I9BggP9ZSmsOjitOxTIuAFBZv51aLyOWNfsjj+LBH:y8MIAgxT0F3Bc/Y","tlshash":"04c419dc759679b64333b4f26037101d937d88aac8080d1e729984f12ff996960bbeb7","first_seen":"2024-06-28T09:04:30Z","last_seen":"2024-09-19T20:36:53.222536Z","times_seen":6637,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":68,"dns":2,"connect":8,"send":0,"wait":9,"receive":29,"ssl":57},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-04T23:19:01.802855646Z","timestamp":1720135141802,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Thu, 04 Jul 2024 23:19:01 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 471\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"7adb5d21cb7b127aded52edafaccc88c","sha1":"0aa27f20343bfc61c12b9f6006a9400825de4aa1","sha256":"1008cd5bad989f2471b6ab319d2534c45e767ed4680d00a494c291176b90a08e","sha512":"291b53dea5368588401c2cd0ef7ab3a75481da7e6a105edf90a929373e483f156619e48f916d590629f400f1cf02738bbb4a0bfb68feb8d81a7c57f85155aab3","ssdeep":"","tlshash":"4cf0d4453cbe9c96ce365884559ce99af4b059966c2c5552303442a42468bb9350d2f9","first_seen":"2024-07-04T00:04:46Z","last_seen":"2024-08-19T18:10:54.875177Z","times_seen":1563,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/player.svg","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.609Z","timestamp":1720135140609,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /player.svg HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Tue, 01 Dec 2020 18:16:59 GMT\r\netag: W/\"5fc6889b-15ac\"\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 4605\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=3WKC3YKpE%2BBMSzjo69pZjuNuUnXpmWJLe5kFjmsGu20byxruS6ZAdSYx1%2FQwCcPXEPcWEut8rCwN1pgMpf1D3QP2DFYJE3EeY4XrI7Zp8L0atEWK2fEFLV5DqhuuVjepbFhHOY5VczY%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d674ee2992ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2717,"size_decoded":5548,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"2c5ea626e326b207c2ab37e330ec798c","sha1":"73f320fab9bae5aaeaf5724cdff2abde897a1efd","sha256":"1b0a89316b4c4edfcaecd47b2cd0a992c29219a6bf57a9f6dcda37a3f037a02e","sha512":"df56396616e9e81e92ada3027d02e210c23c473e7b1d4f16b722739c1da908ab51ac7ff099ba66013599c77c2cdec287e0783310764686ce09d078ac638c4f6f","ssdeep":"96:ymz9/qu/qhsXsVFnqq8CIZ+U0R1QgRA3/CcHlbI0NSJVUqSn06HNJvlKoAAd:yg9SuSogqqTT1QgNAlM00JqXTtV","tlshash":"eeb1747fc638926e8c8785756f25f0e1629f62da74e840bc6065c7a40f9e5d8f902f44","first_seen":"2023-05-26T09:14:30Z","last_seen":"2026-03-29T21:57:23.729089Z","times_seen":323,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/js/jquery.min.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.298Z","timestamp":1720135140298,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 20 Aug 2020 18:55:14 GMT\r\netag: W/\"5f3ec712-15851\"\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 262\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=iJYuwJnrA2NCyBIgJ2fMfasLxjwQ9pi%2BfmWGcydpY%2BdJqHqIwRPiZLrbbQKdhGahbLZ5dhGUfuXVLXcEr6kTfnEsuPfLVE%2B1f%2FjRK23z34TSeieKUpYyE%2BbI0xp%2F8XfL8hW1YBDIljQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d672ed0092ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35330,"size_decoded":88145,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"220afd743d9e9643852e31a135a9f3ae","sha1":"88523924351bac0b5d560fe0c5781e2556e7693d","sha256":"0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a","sha512":"6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d","ssdeep":"1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe","tlshash":"338319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:34Z","last_seen":"2026-04-04T04:34:10.786213Z","times_seen":114910,"resource_available":true,"data":null}},"time_used":91,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":53,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ofleafeona.com/400/6325382","fqdn":"ofleafeona.com","domain":"ofleafeona.com","tld":"com"},"ip":{"addr":"139.45.197.244","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.716Z","timestamp":1720135140716,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ofleafeona.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Apr 2024 05:32:19 GMT","end":"Mon, 29 Jul 2024 05:32:18 GMT"},"fingerprint":{"sha1":"EA:E7:41:04:3A:CE:E7:AD:30:B6:D1:75:69:4C:60:D5:31:24:49:0A","sha256":"10:53:3F:19:2A:3F:AD:C1:3B:7B:B0:91:01:C4:47:C3:CB:3B:C5:D1:CC:69:9E:42:BE:45:99:12:2C:30:C2:33"}}},"request":{"raw":"GET /400/6325382 HTTP/1.1\r\nHost: ofleafeona.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: b2d902c39569cb3190b3b2f810bf6820\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model\r\nset-cookie: OAID=03008fb73da94574e173e1c59bc2c54e; expires=Fri, 04 Jul 2025 23:19:00 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42484,"size_decoded":42484,"mime_type":"application/javascript","magic":"gzip compressed data, max speed, from Unix","md5":"d88b50569e89f25a1e12782c63ee4376","sha1":"737ac48dcd8d9637ed8b3b6bb5f31403f8b7e150","sha256":"154d892fbb2f8a8a907c14e228ea8c28e37aa8b448bf7c5e3095a82699f9c456","sha512":"afbef7e697062bc567d92686654b89c7033a4102560c39c03b5a23da4dc634a34d012fe5beb0a535dbae9f45865291c9293a5aca6a3102cb612d9bcc15f3a1a6","ssdeep":"768:dyKa3RCevHFhwY0ebMwuqJkzg8jHcrz8skIDXzxPQR3qpRlKvEWZ+6fwf2n:QrQg20thKgbrQskIDXCR6pRl+EW+6fCC","tlshash":"0d13f21302b54d936355f97b32c49aa8787e1ad382f2ff5f7432610c049b9855eaabcc","first_seen":"2024-08-19T18:02:48.830576Z","last_seen":"2024-08-19T18:02:48.830576Z","times_seen":1,"resource_available":false,"data":null}},"time_used":269,"timings":{"blocked":105,"dns":18,"connect":26,"send":0,"wait":57,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"ofleafeona.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/favicon.ico","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:01.502Z","timestamp":1720135141502,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:01 GMT\r\ncontent-type: image/x-icon\r\nlast-modified: Fri, 28 Aug 2020 11:07:41 GMT\r\netag: W/\"5f48e57d-a2be\"\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 1075\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=3%2FyC2ggXxaBweUA60tMfg4YtvP6KAMXdTNa6VWsAn02CtzfQspjlt2F3Q36wENs1c03NOnwLGKp9Wwt9OzkomwHYyCJFT2HsK8A8TdXjon9UNZ9k%2FzhhXs2SfnxCHfcM6KX5nEU3NuQ%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d67a796292ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":41662,"size_decoded":41662,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 100x100, 32 bits/pixel","md5":"1f1617bb9d33485e49af9fae638831f9","sha1":"e245af39fd84866e07b7e177fa0ff6d25221252f","sha256":"3fe1701b124953220bd71e61910006cb7c3ae36f6c8975075c842101d97cf513","sha512":"f6a0187ae654a504afb66a7c9c3cdd9456d1047ce8d7498854738da7db8bb96760b0fcd9a01f802af33976b18bfb4b27c613e9df174784aa2297bfbf23b05996","ssdeep":"96:GKWKw9sbx4HVSazmdsiHecXEgpPmeAsa62EXtVc7cSVjD8dHMMMMMMMMMMMMMN:uK/b2YKQHXhFLdVcYWjD/","tlshash":"b613afbff1d58588f687e43c08c4b7a0df9b2e0a5c354f0278a2722b14744a66ae1c4f","first_seen":"2023-05-04T10:50:48Z","last_seen":"2026-03-31T16:52:15.696157Z","times_seen":938,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/js/player.ec3b7e.js","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.416Z","timestamp":1720135140416,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /js/player.ec3b7e.js HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Thu, 04 Feb 2021 09:32:45 GMT\r\netag: W/\"601bbf3d-2423f\"\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 4510\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=HGeiLqKwb7%2Bd8QsjKYLwgccUAp%2F8CXHx7YUMT6OmdX5xyH7exHOs1sRC7DNDc%2BDYPUTUmtw9KMK5WeRei%2FJsm3ESGKV80I%2FhT1EuVxGCK1oGXBAP5yRDO1YItkqcdcx%2FbcRCCZL5MQ0%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d673ad7c92ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":148031,"size_decoded":148031,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (57504)","md5":"1781a0087c11152a2361ca6c84b13fab","sha1":"87360f858b201c3e28f4af24b2fc7c2d8a8d0232","sha256":"00c57c8b0121e3c2154bc0c181a5c01ad10550648cc4835a62dc887d5427c656","sha512":"5bdcdc080e3f121851ba060256b19a967ece5bb5b057064b41ac29453c841d86a282647d1971678c99cedf957f3a946a25c7be309ee76ffbcdfbb2943aa8184b","ssdeep":"1536:vgSnzdHTOfC7IPScxi0n2KSBFkljzZtfWl2tLNGuvjMK2TuxCF0k7ccZHrNFY8RP:HO6VxrQICBkdjJU5oNOpJhuf","tlshash":"b4e309ca738ab171c29730ad503f520a72375b996405c258f839e9d86d7ce4ab277f38","first_seen":"2023-03-07T01:24:29Z","last_seen":"2025-09-18T21:45:09.663713Z","times_seen":653,"resource_available":true,"data":null}},"time_used":66,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":39,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tapeadvertisement.com/scss/player.ec3b7d.css","fqdn":"tapeadvertisement.com","domain":"tapeadvertisement.com","tld":"com"},"ip":{"addr":"172.67.162.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.299Z","timestamp":1720135140299,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tapeadvertisement.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 May 2024 19:54:41 GMT","end":"Sun, 18 Aug 2024 19:54:40 GMT"},"fingerprint":{"sha1":"6A:31:EE:2A:79:D3:F8:55:1C:6F:75:B6:29:AF:98:88:BF:EA:6E:1B","sha256":"88:FF:8C:B8:49:D3:DE:8F:DC:60:72:46:F8:C6:60:B3:99:3D:71:B1:95:45:B0:86:DD:62:D6:31:84:2E:44:73"}}},"request":{"raw":"GET /scss/player.ec3b7d.css HTTP/1.1\r\nHost: tapeadvertisement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4\r\nCookie: _b=kube14\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncontent-type: text/css\r\ncf-bgj: minify\r\netag: W/\"622bf673-7b0c\"\r\nlast-modified: Sat, 12 Mar 2022 01:25:07 GMT\r\ncache-control: max-age=432000\r\ncf-cache-status: HIT\r\nage: 116\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=qrsnFanlJSMAT7sJspFFZJP0SIU8pvt6CUYuLuAnjHppIAeoIv1gXop3Pq7IVF8xdubQ%2B6vQTufsCW5CplgYlGh%2BVfJPJu1P3S4fZiFaawRYh0CTOTBCZ3wID5E9Bv3uxDf%2F0wMC%2FH4%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 89e2d672ed0192ce-CPH\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":31831,"size_decoded":31831,"mime_type":"text/css","magic":"ASCII text, with very long lines (31831), with no line terminators","md5":"dc2cffa80d365e1efd4a88a462260a60","sha1":"b0dd95d0afb3c518fc5251cc23c2106cbc9d4fc2","sha256":"0946d6f8aabb3d1ce41416563689d0e2468a898bda8a2fc190e9b0634288d005","sha512":"23d3fd50e60f02885d45d918a48bffab6cd1491128e084d90020a8741a3e203c795534fd23aef140b2b75db0c32139019b55081af3ee97e2e3c41ca9f184c863","ssdeep":"768:Ub+jnsDN8LO/C4nGl86I+pbWr5/RTjgWF1+InO6p/uPxsP:XjnsDN8C/nnGlz2","tlshash":"f8e25771756d1278a033866e3bf1c6ce33bcc202f6d62a5a7255b6708ece29782b7541","first_seen":"2023-05-13T23:22:45Z","last_seen":"2024-10-14T17:45:15.806732Z","times_seen":495,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-04","alert":"Sinkholed","trigger":"tapeadvertisement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.google.com/recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs","fqdn":"www.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.147.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://tapeadvertisement.com/e/ZPMBykOz1rfq2wz/Andromeda.mp4","date":"2024-07-04T23:19:00.304Z","timestamp":1720135140304,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:36:10 GMT","end":"Thu, 05 Sep 2024 16:36:09 GMT"},"fingerprint":{"sha1":"7D:D9:03:2A:D5:D4:39:E1:4F:69:08:1C:64:E9:F9:16:1C:B1:5B:CF","sha256":"40:49:A0:7A:8C:B4:07:C6:8E:08:17:26:13:38:98:D4:E6:D8:71:F1:EE:EF:30:31:28:DE:B2:04:60:5F:2F:FD"}}},"request":{"raw":"GET /recaptcha/api.js?render=6LfDWNsUAAAAAGaxIiiQpfv-5_b8zWR4mgv7RKvs HTTP/1.1\r\nHost: www.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://tapeadvertisement.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript; charset=utf-8\r\nexpires: Thu, 04 Jul 2024 23:19:00 GMT\r\ndate: Thu, 04 Jul 2024 23:19:00 GMT\r\ncache-control: private, max-age=300\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\ncontent-security-policy: frame-ancestors 'self'\r\nx-xss-protection: 1; mode=block\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":904,"size_decoded":904,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (904), with no line terminators","md5":"376d683bf29c8d1f877e34a175bf7293","sha1":"e7809c5be70c89acbca6fceb2e939f27d6b73b9d","sha256":"838d96af9ccd91d04c70004a284d4f3b5b63228e12b83ff5d612ad32a47be0ff","sha512":"215958fddbe1d7e12feb93444dde2fdb3452251591bad0bc96c1bc4ce3b20a479fa7d11186dbe7ee6a44b724b747bc68285aae8d498ffa0a6e9c05a4e4092bd8","ssdeep":"","tlshash":"da1163b70915b0310b6315e1d0bfdfa1f941a42cf10cc8e4d555eac82e39dc7ce05a81","first_seen":"2024-06-28T19:12:12Z","last_seen":"2024-08-19T18:54:06.247668Z","times_seen":56,"resource_available":true,"data":null}},"time_used":311,"timings":{"blocked":126,"dns":1,"connect":35,"send":0,"wait":47,"receive":1,"ssl":97},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}