{"report_id":"b3e632b5-8e2e-47ff-bb74-5c826d42b18f","version":0,"status":"done","tags":["netflix","phishing"],"date":"2026-07-04T10:42:52Z","url":{"schema":"http","addr":"procss-membresiaswiiebichekis.sbs","fqdn":"procss-membresiaswiiebichekis.sbs","domain":"procss-membresiaswiiebichekis.sbs","tld":"sbs"},"ip":{"addr":"15.197.162.184","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/login/","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"title":"Netflix","dom":{"size":388289,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (19771)","md5":"94445d883522cd721964762869e0927f","sha1":"7a383013c8e3acc1579013b32d52748f6800f13b","sha256":"c7a98b65cf8f01d06c109905be7adfdb51538d36e9f7d770012aa7ff040bf271","sha512":"a0e2ffe596407c90d61db73ed6cc2e67ca99d11549874726c18a28bf8f49d9bae5ef6553140f59ceb5b6b8f9cb6daf9ea5be8693f6ddc1b0221df5c655b27dcc","ssdeep":"6144:veA8M0k87flfA++VzyJSv3DxNiVD2syrtd:vCR7daVzyJEa0d","tlshash":"e4846d98327911796ea702e5a0af6507b1383413b40d88b1f518fc696bf49d630b7faf","dom_hash":"domhasha8aa0a10fa36aaa39a278509f180c401","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"procss-membresiaswiiebichekis.sbs","fqdn":"procss-membresiaswiiebichekis.sbs","domain":"procss-membresiaswiiebichekis.sbs","tld":"sbs"},"ip":{"addr":"15.197.162.184","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-08T10:42:52Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":7}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]},"summary":[{"fqdn":"streamfix-webappslinkidvid.manus.space","ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-02-28","domain_rank":0,"first_seen":"2026-07-04T06:04:34.113153Z","last_seen":"2026-07-04T06:04:34.113153Z","alert_count":15,"request_count":5,"received_data":1332926,"sent_data":2684,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud Trace","description":"Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.","website":"https://cloud.google.com/trace","common_platform_enumeration":"","icon":"google-cloud-trace.svg","categories":["Performance"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"manus-analytics.com","ip":{"addr":"172.67.195.48","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-10-09","domain_rank":0,"first_seen":"2025-10-19T13:04:57.49856Z","last_seen":"2026-07-02T15:01:54.345413Z","alert_count":0,"request_count":3,"received_data":6237,"sent_data":1565,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"plausible.io","ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"domain_registered":"2018-12-30","domain_rank":8565,"first_seen":"2019-02-01T08:53:03Z","last_seen":"2026-06-29T23:26:21.825476Z","alert_count":0,"request_count":3,"received_data":7262,"sent_data":1580,"comment":"","tags":null,"fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}]},{"fqdn":"files.manuscdn.com","ip":{"addr":"143.204.238.94","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-02-27","domain_rank":1414307,"first_seen":"2025-03-12T08:00:03.578177Z","last_seen":"2026-06-28T01:39:27.85495Z","alert_count":0,"request_count":1,"received_data":8024,"sent_data":626,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"procss-membresiaswiiebichekis.sbs","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2026-07-02","domain_rank":0,"first_seen":"2026-07-04T06:09:38.168376Z","last_seen":"2026-07-04T06:09:38.168376Z","alert_count":10,"request_count":2,"received_data":268,"sent_data":920,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/assets/index-C9EYwVrR.js","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb2477f2a500af8770c1f8cc8f68b0ee","sha1":"c2e4a7af2b848fa6b44657f63eb2bd9984e05640","sha256":"aa489def3eaf202fdc43f7179b4003e312fa2d5c64a7db791e26c7a43a1433c0","sha512":"322e256737f9ad50a225ed0cd18dc4efe1e0df59d541a8c64dec025f553429cca948660da33fd17c768ef0b3a1a36f34fa92283eee182e7ffb3be6312dd81070","ssdeep":"6144:pGp50K7d7A0Lhi7/wWVmZh6g2eDvEF2uEufYcZ6BLZGUon8GL8Mxs9bpB+dkd1Ts:pGK0o79EE/mcMuEufYcZBhn8GYntdlkV","tlshash":"8af45d887588252f9bf345d0943f480571392a24b40d8464fd6cf8996de8aca3a7bf7f","size":790079,"data":"","first_seen":"2026-07-04T06:04:38.033225Z","last_seen":"2026-07-04T10:44:09.619317Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"manus-analytics.com/umami","fqdn":"manus-analytics.com","domain":"manus-analytics.com","tld":"com"},"ip":{"addr":"172.67.195.48","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"72f32e397a4654c165924d8dd2113b1f","sha1":"23c3d68d3c03d544bb9a56ddcc9cd702f74613e4","sha256":"7eba89b02651cb67beefeb8aed5d39402f7994b226114c2c639ae354dc1a94f2","sha512":"35fb2163cff1af85d4133d6e791d867253eb213acaee98470a0e165f870951e50d23a83770e1ca42dafe3825b7ca73d92d329b73795a96168e084fde32a56b22","ssdeep":"","tlshash":"5d51f8f77281f0f13f7938d0c1b96224ba391e72b82f4091b6f91c4b8b0d9165131ea9","size":2618,"data":"","first_seen":"2025-09-23T15:56:30.742447Z","last_seen":"2026-07-04T14:19:44.195407Z","times_seen":629,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"plausible.io/js/script.file-downloads.hash.outbound-links.pageview-props.revenue.tagged-events.js","fqdn":"plausible.io","domain":"plausible.io","tld":"io"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"0f7a9a1023dc6bb9becb01e0c438ee28","sha1":"ad125ddecc6fc1bb83e82a9172362bd32ed950b7","sha256":"7bb63a9c542bbdbb589a43c72eec03eb42342620abbd23d95d9ead9b40839f24","sha512":"6adf1608857a9e4f74f254120ff2e09149d1bdcc2f88ede00beeb89b96fb6c58536e8b007176a4a0a7a3375584dc0a8a6969695dda28a4cf2c81f185a7a8a3f1","ssdeep":"96:ilMyYAtF/vnfesDDFpLG09bTsKUU8LFqlWn/61hB+:wMKf1DDFpLf9XsKB8LFqlWn/6x+","tlshash":"fea1b3edb64271b555fa9126ba6f73027a3b2462300e5400642cddc13d28eef9373d8d","size":5066,"data":"","first_seen":"2026-05-07T01:10:50.547731Z","last_seen":"2026-07-04T11:48:39.16406Z","times_seen":89,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/login/","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c13d517e65b62d1d7a8b04ea03364cba","sha1":"c06ef65776bce2bc000a01a80c38d5237eee01d1","sha256":"58a7da7de1fc0df62dfec00d8d2641838a8b1b990d4d863fbe76abe3f81acf07","sha512":"fbdeca927d112147326bd17694dbcee8f6543d0bd4da69b00ff4a3e587689f1e4f474ba1c7b7a6fa8b279313f3e6f09130be5f36a32c0c9f78f88ea3677282d5","ssdeep":"3072:hAFU0DY/LlE00WTFYaZnJXQHmq09bi8KxeW4Hgcfq7oEKxA/m8vVzyJmD/1v3IQe:s8M0k87flfA++VzyJSv3DxNiVD2syrtK","tlshash":"6e748e98327915796ea302e6a0af6507b1383423b40d88b1f528fc756bf45972077faf","size":367115,"data":"","first_seen":"2026-06-28T06:11:03.112418Z","last_seen":"2026-07-04T11:48:39.169275Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/login/","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"9ea3e8d88fdb43ea9f9ef6492e929933","sha1":"af7e929f0f353afcfc31e9b26c15c0063e0c03bc","sha256":"61643000cf451c53bfbb59f096f367feeb495cd0dce0a089703176ed220251c4","sha512":"087a74127556c02547f9d35c4a6dfb37f9a1c37349dacd4f360cc7eafdddf3f65fc271153b20239121c72da18fceac64b32899b8aad43f86bf42c7c6ef947de2","ssdeep":"","tlshash":"35d0a9a4a38cb32d12bc30844b1f334b702e002a19442a933905d257b428f8f8b34ee8","size":234,"data":"","first_seen":"2026-06-14T07:52:43.93716Z","last_seen":"2026-07-04T11:48:39.169769Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/login/","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-04T10:42:28.573Z","timestamp":1783161748573,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus.space","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 04:26:12 GMT","end":"Tue, 15 Sep 2026 05:26:06 GMT"},"fingerprint":{"sha1":"21:FD:10:A6:1F:E0:96:0A:C4:12:BD:CB:C2:FC:11:B9:AD:DE:6E:6E","sha256":"E2:80:E5:78:18:C5:08:CF:A8:5C:D6:3C:B8:67:22:D6:F7:90:B0:2A:AD:E8:F4:23:6B:43:02:71:D6:30:D8:55"}}},"request":{"raw":"GET /login/ HTTP/1.1\r\nHost: streamfix-webappslinkidvid.manus.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:42:32 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\npragma: no-cache\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a15d86146a7c56c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":369508,"size_decoded":105898,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (34642)","md5":"ce0488d28ee815501e21633b0531bb49","sha1":"95fba8aac2774b83cb5350e8969c6933696fa126","sha256":"642c1a026bb1f2a8421c962743b9453f4a5548dc5f08707e3f2b3ba37fe1daba","sha512":"02ec480f780f0fd015d771c1087507c7720e6d4a8cdff258e22a3341bac1e6bed9f2681e8d00f8ca28b6ac6c0b555a1142d0b44c2dd96a1d5b51f6ead0e3d3d4","ssdeep":"3072:cAFU0DY/LlE00WTFYaZnJXQHmq09bi8KxeW4Hgcfq7oEKxA/m8vVzyJmD/1v3IQB:p8M0k87flfA++VzyJSv3DxNiVD2syrt1","tlshash":"35748f98327915796ea302e6a0af6507b1383413b40d88b1f528fc796bf45972077faf","first_seen":"2026-07-04T06:04:38.031968Z","last_seen":"2026-07-04T10:44:09.605455Z","times_seen":7,"resource_available":true,"data":null}},"time_used":4355,"timings":{"blocked":0,"dns":5,"connect":1,"send":0,"wait":1182,"receive":0,"ssl":3166},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/assets/index-C9EYwVrR.js","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:33.405Z","timestamp":1783161753405,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus.space","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 04:26:12 GMT","end":"Tue, 15 Sep 2026 05:26:06 GMT"},"fingerprint":{"sha1":"21:FD:10:A6:1F:E0:96:0A:C4:12:BD:CB:C2:FC:11:B9:AD:DE:6E:6E","sha256":"E2:80:E5:78:18:C5:08:CF:A8:5C:D6:3C:B8:67:22:D6:F7:90:B0:2A:AD:E8:F4:23:6B:43:02:71:D6:30:D8:55"}}},"request":{"raw":"GET /assets/index-C9EYwVrR.js HTTP/1.1\r\nHost: streamfix-webappslinkidvid.manus.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://streamfix-webappslinkidvid.manus.space/login/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:42:33 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncache-control: max-age=7776000\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a15d861eca8d56c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":790079,"size_decoded":220672,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36028)","md5":"fb2477f2a500af8770c1f8cc8f68b0ee","sha1":"c2e4a7af2b848fa6b44657f63eb2bd9984e05640","sha256":"aa489def3eaf202fdc43f7179b4003e312fa2d5c64a7db791e26c7a43a1433c0","sha512":"322e256737f9ad50a225ed0cd18dc4efe1e0df59d541a8c64dec025f553429cca948660da33fd17c768ef0b3a1a36f34fa92283eee182e7ffb3be6312dd81070","ssdeep":"6144:pGp50K7d7A0Lhi7/wWVmZh6g2eDvEF2uEufYcZ6BLZGUon8GL8Mxs9bpB+dkd1Ts:pGK0o79EE/mcMuEufYcZBhn8GYntdlkV","tlshash":"8af45d887588252f9bf345d0943f480571392a24b40d8464fd6cf8996de8aca3a7bf7f","first_seen":"2026-07-04T06:04:38.033225Z","last_seen":"2026-07-04T10:44:09.619317Z","times_seen":7,"resource_available":true,"data":null}},"time_used":315,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":315,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"manus-analytics.com/umami","fqdn":"manus-analytics.com","domain":"manus-analytics.com","tld":"com"},"ip":{"addr":"172.67.195.48","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:33.411Z","timestamp":1783161753411,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus-analytics.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 21:02:45 GMT","end":"Mon, 31 Aug 2026 22:02:37 GMT"},"fingerprint":{"sha1":"B0:71:D1:28:1F:13:5D:72:66:BD:25:D5:88:45:65:D6:12:8A:52:0D","sha256":"67:72:1A:5C:7B:C4:F1:B9:1F:C8:5A:A0:7A:0F:CE:9F:45:DA:5E:A0:C7:D8:54:C5:3F:C4:7C:A6:27:41:2F:1C"}}},"request":{"raw":"GET /umami HTTP/1.1\r\nHost: manus-analytics.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sat, 04 Jul 2026 10:42:33 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nx-dns-prefetch-control: on\r\ncontent-security-policy: default-src 'self';img-src * data:;script-src 'self' 'unsafe-eval' 'unsafe-inline';style-src 'self' 'unsafe-inline';connect-src 'self' api.umami.is cloud.umami.is;frame-ancestors 'self'\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400, must-revalidate\r\naccept-ranges: bytes\r\nlast-modified: Wed, 04 Feb 2026 09:22:54 GMT\r\netag: W/\"a3a-19c27f639b0\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8J0wL39WAaQAO%2BpWDylFopG6K0aaC%2F01pvm0FWoak0t%2FQf2ONxlQtYSQ3zu4%2B4FewOaY6%2BRwjjeO3%2B%2BzSpo%2Bb2IzMwbEO78y%2FwB69JXEpfQ1G0uQEyyTbO3Vod%2Fjd4Ih97AVP9ge\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\ncf-ray: a15d861ef91f0daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2618,"size_decoded":2504,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (2617)","md5":"72f32e397a4654c165924d8dd2113b1f","sha1":"23c3d68d3c03d544bb9a56ddcc9cd702f74613e4","sha256":"7eba89b02651cb67beefeb8aed5d39402f7994b226114c2c639ae354dc1a94f2","sha512":"35fb2163cff1af85d4133d6e791d867253eb213acaee98470a0e165f870951e50d23a83770e1ca42dafe3825b7ca73d92d329b73795a96168e084fde32a56b22","ssdeep":"","tlshash":"5d51f8f77281f0f13f7938d0c1b96224ba391e72b82f4091b6f91c4b8b0d9165131ea9","first_seen":"2025-09-23T15:56:30.742447Z","last_seen":"2026-07-04T14:19:44.195407Z","times_seen":629,"resource_available":true,"data":null}},"time_used":153,"timings":{"blocked":-1,"dns":6,"connect":14,"send":0,"wait":132,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"plausible.io/js/script.file-downloads.hash.outbound-links.pageview-props.revenue.tagged-events.js","fqdn":"plausible.io","domain":"plausible.io","tld":"io"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:33.415Z","timestamp":1783161753415,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"plausible.io","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Jun 2026 02:01:49 GMT","end":"Sat, 12 Sep 2026 02:01:48 GMT"},"fingerprint":{"sha1":"87:CC:C0:74:0B:75:F2:2C:65:B0:32:3D:4F:55:F5:A1:6C:44:85:EB","sha256":"D8:9B:1F:CC:95:48:5F:7A:5C:6A:99:18:78:21:42:59:89:05:67:64:FD:BF:68:E1:E5:FC:7B:C5:FA:89:7A:90"}}},"request":{"raw":"GET /js/script.file-downloads.hash.outbound-links.pageview-props.revenue.tagged-events.js HTTP/1.1\r\nHost: plausible.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:42:33 GMT\r\ncontent-type: application/javascript\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 682664\r\ncdn-requestcountrycode: NO\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=86400, must-revalidate\r\ncontent-encoding: zstd\r\nvia: 1.1 Caddy\r\napplication: 127.0.0.1\r\ncross-origin-resource-policy: cross-origin\r\npermissions-policy: interest-cohort=()\r\nx-content-type-options: nosniff\r\ncdn-proxyver: 1.58\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 07/03/2026 11:55:07\r\ncdn-edgestorageid: 830\r\naccept-ch: Sec-CH-UA-Platform, Sec-CH-UA\r\ncdn-requestid: c65339fb7214ce1b0fa699e64aa07bd4\r\ncdn-cache: HIT\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":5066,"size_decoded":3088,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (5066), with no line terminators","md5":"0f7a9a1023dc6bb9becb01e0c438ee28","sha1":"ad125ddecc6fc1bb83e82a9172362bd32ed950b7","sha256":"7bb63a9c542bbdbb589a43c72eec03eb42342620abbd23d95d9ead9b40839f24","sha512":"6adf1608857a9e4f74f254120ff2e09149d1bdcc2f88ede00beeb89b96fb6c58536e8b007176a4a0a7a3375584dc0a8a6969695dda28a4cf2c81f185a7a8a3f1","ssdeep":"96:ilMyYAtF/vnfesDDFpLG09bTsKUU8LFqlWn/61hB+:wMKf1DDFpLf9XsKB8LFqlWn/6x+","tlshash":"fea1b3edb64271b555fa9126ba6f73027a3b2462300e5400642cddc13d28eef9373d8d","first_seen":"2026-05-07T01:10:50.547731Z","last_seen":"2026-07-04T11:48:39.16406Z","times_seen":89,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":4,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"plausible.io/api/event","fqdn":"plausible.io","domain":"plausible.io","tld":"io"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.015Z","timestamp":1783161754015,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"plausible.io","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Jun 2026 02:01:49 GMT","end":"Sat, 12 Sep 2026 02:01:48 GMT"},"fingerprint":{"sha1":"87:CC:C0:74:0B:75:F2:2C:65:B0:32:3D:4F:55:F5:A1:6C:44:85:EB","sha256":"D8:9B:1F:CC:95:48:5F:7A:5C:6A:99:18:78:21:42:59:89:05:67:64:FD:BF:68:E1:E5:FC:7B:C5:FA:89:7A:90"}}},"request":{"raw":"POST /api/event HTTP/1.1\r\nHost: plausible.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nContent-Length: 123\r\nOrigin: https://streamfix-webappslinkidvid.manus.space\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 202 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 2\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 682664\r\ncdn-requestcountrycode: NO\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\ncache-control: max-age=0, private, must-revalidate\r\nvia: 1.1 Caddy\r\napplication: 127.0.0.1\r\npermissions-policy: interest-cohort=()\r\nx-plausible-dropped: 1\r\nx-request-id: GL8QKu7BWC5cdF7gkJmG\r\ncdn-proxyver: 1.58\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 202\r\ncdn-cachedat: 07/04/2026 10:42:34\r\ncdn-edgestorageid: 830\r\naccept-ch: Sec-CH-UA-Platform, Sec-CH-UA\r\ncdn-requestid: 6db88ff2883ea6ba33914cf85d2d80c0\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":720,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-07-04T15:29:05.993715Z","times_seen":432449,"resource_available":true,"data":null}},"time_used":96,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":86,"receive":0,"ssl":8},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"manus-analytics.com/api/send","fqdn":"manus-analytics.com","domain":"manus-analytics.com","tld":"com"},"ip":{"addr":"172.67.195.48","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.057Z","timestamp":1783161754057,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus-analytics.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 21:02:45 GMT","end":"Mon, 31 Aug 2026 22:02:37 GMT"},"fingerprint":{"sha1":"B0:71:D1:28:1F:13:5D:72:66:BD:25:D5:88:45:65:D6:12:8A:52:0D","sha256":"67:72:1A:5C:7B:C4:F1:B9:1F:C8:5A:A0:7A:0F:CE:9F:45:DA:5E:A0:C7:D8:54:C5:3F:C4:7C:A6:27:41:2F:1C"}}},"request":{"raw":"OPTIONS /api/send HTTP/1.1\r\nHost: manus-analytics.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nOrigin: https://streamfix-webappslinkidvid.manus.space\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, DELETE, POST, PUT\r\naccess-control-max-age: 86400\r\ncache-control: no-cache\r\nx-dns-prefetch-control: on\r\ncontent-security-policy: default-src 'self';img-src * data:;script-src 'self' 'unsafe-eval' 'unsafe-inline';style-src 'self' 'unsafe-inline';connect-src 'self' api.umami.is cloud.umami.is;frame-ancestors 'self'\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nallow: OPTIONS, POST\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MzicmdjzhwswR95CzJHXlCnFwTSgDcWFcMDkgQ9WbI6xHWHMT1VSqVeylEUJaUUbyI1JKE%2FmPi4h0jiBR5DunB%2BiOj2SM3TsIbBm18dULhpya6MY8dXAZfE3HomQ3YFYkPVXDb8D\"}]}\r\ncf-ray: a15d86234912b51e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":1050,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T15:30:47.656626Z","times_seen":16977903,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":-1,"dns":0,"connect":13,"send":0,"wait":144,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/assets/index-DT9bElAM.css","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:33.408Z","timestamp":1783161753408,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus.space","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 04:26:12 GMT","end":"Tue, 15 Sep 2026 05:26:06 GMT"},"fingerprint":{"sha1":"21:FD:10:A6:1F:E0:96:0A:C4:12:BD:CB:C2:FC:11:B9:AD:DE:6E:6E","sha256":"E2:80:E5:78:18:C5:08:CF:A8:5C:D6:3C:B8:67:22:D6:F7:90:B0:2A:AD:E8:F4:23:6B:43:02:71:D6:30:D8:55"}}},"request":{"raw":"GET /assets/index-DT9bElAM.css HTTP/1.1\r\nHost: streamfix-webappslinkidvid.manus.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://streamfix-webappslinkidvid.manus.space/login/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:42:33 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncache-control: max-age=7776000\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncontent-encoding: gzip\r\nserver: cloudflare\r\ncf-ray: a15d861eda9156c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":171104,"size_decoded":25339,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"5da451caebaa33118ad1a4339b179cf3","sha1":"80f6bc23358def336082f0c85c839f1d72d8cbb7","sha256":"915af6df4fed96a7f93f8c76856b9181ff6bf3cb0e263c4da7ac58523b857992","sha512":"22333764d6c9966cc7739972adcdf31556a0a03ff4e1d57de2f5f55a4b571683f693528ba37848a09839367d721217fb880de4cf6068cdc61fc4feebe86dc2bd","ssdeep":"3072:zVaBhkgQAtchRkfHRSTKJVrvGY/l65EUQPFAgMq+WDhKAjTj17T7:MBhkgQAtchRkfHRSXEUQPFAgMq+WDhKS","tlshash":"e7f381a0b175e53bbd2374fd939ce84ca10ab0c1dd2947edfa25a11217c7bf629a3604","first_seen":"2026-07-04T06:04:38.028883Z","last_seen":"2026-07-04T10:44:09.620251Z","times_seen":7,"resource_available":false,"data":null}},"time_used":324,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":324,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"plausible.io/api/event","fqdn":"plausible.io","domain":"plausible.io","tld":"io"},"ip":{"addr":"194.242.11.186","port":443,"asn":34989,"as":"ServeTheWorld AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.017Z","timestamp":1783161754017,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"plausible.io","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Sun, 14 Jun 2026 02:01:49 GMT","end":"Sat, 12 Sep 2026 02:01:48 GMT"},"fingerprint":{"sha1":"87:CC:C0:74:0B:75:F2:2C:65:B0:32:3D:4F:55:F5:A1:6C:44:85:EB","sha256":"D8:9B:1F:CC:95:48:5F:7A:5C:6A:99:18:78:21:42:59:89:05:67:64:FD:BF:68:E1:E5:FC:7B:C5:FA:89:7A:90"}}},"request":{"raw":"POST /api/event HTTP/1.1\r\nHost: plausible.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nContent-Length: 179\r\nOrigin: https://streamfix-webappslinkidvid.manus.space\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 202 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 2\r\nserver: BunnyCDN-NO1-830\r\ncdn-pullzone: 682664\r\ncdn-requestcountrycode: NO\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\ncache-control: max-age=0, private, must-revalidate\r\nvia: 1.1 Caddy\r\napplication: 127.0.0.1\r\npermissions-policy: interest-cohort=()\r\nx-plausible-dropped: 1\r\nx-request-id: GL8QKu7tmFAvwIHnrFCC\r\ncdn-proxyver: 1.58\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 202\r\ncdn-cachedat: 07/04/2026 10:42:34\r\ncdn-edgestorageid: 830\r\naccept-ch: Sec-CH-UA-Platform, Sec-CH-UA\r\ncdn-requestid: 38f9deab086018ac7c3dd472d1546667\r\ncdn-requesttime: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"202","status_text":"","fingerprints":[{"name":"Bunny","description":"","website":"https://bunny.net","common_platform_enumeration":"","icon":"Bunny.svg","categories":["CDN"]}],"data":{"size":2,"size_decoded":720,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"444bcb3a3fcf8389296c49467f27e1d6","sha1":"7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb","sha256":"2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df","sha512":"9fbbbb5a0f329f9782e2356fa41d89cf9b3694327c1a934d6af2a9df2d7f936ce83717fb513196a4ce5548471708cd7134c2ae99b3c357bcabb2eafc7b9b7570","ssdeep":"","tlshash":"c710000000000000300000000000000000000000000000000000000000000c0000c000","first_seen":"2023-03-08T02:32:37Z","last_seen":"2026-07-04T15:29:05.993715Z","times_seen":432449,"resource_available":true,"data":null}},"time_used":95,"timings":{"blocked":-1,"dns":0,"connect":2,"send":0,"wait":86,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/favicon.ico","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.029Z","timestamp":1783161754029,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus.space","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 04:26:12 GMT","end":"Tue, 15 Sep 2026 05:26:06 GMT"},"fingerprint":{"sha1":"21:FD:10:A6:1F:E0:96:0A:C4:12:BD:CB:C2:FC:11:B9:AD:DE:6E:6E","sha256":"E2:80:E5:78:18:C5:08:CF:A8:5C:D6:3C:B8:67:22:D6:F7:90:B0:2A:AD:E8:F4:23:6B:43:02:71:D6:30:D8:55"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: streamfix-webappslinkidvid.manus.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://streamfix-webappslinkidvid.manus.space/login/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\ncontent-length: 0\r\nlocation: https://files.manuscdn.com/user_upload_by_module/web_dev_logo/310519663806794539/bpvIcgQJxteoDPGQ.png\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: a15d8622be2956c0-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T15:30:47.656626Z","times_seen":16977903,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"manus-analytics.com/api/send","fqdn":"manus-analytics.com","domain":"manus-analytics.com","tld":"com"},"ip":{"addr":"172.67.195.48","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.052Z","timestamp":1783161754052,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus-analytics.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 02 Jun 2026 21:02:45 GMT","end":"Mon, 31 Aug 2026 22:02:37 GMT"},"fingerprint":{"sha1":"B0:71:D1:28:1F:13:5D:72:66:BD:25:D5:88:45:65:D6:12:8A:52:0D","sha256":"67:72:1A:5C:7B:C4:F1:B9:1F:C8:5A:A0:7A:0F:CE:9F:45:DA:5E:A0:C7:D8:54:C5:3F:C4:7C:A6:27:41:2F:1C"}}},"request":{"raw":"POST /api/send HTTP/1.1\r\nHost: manus-analytics.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: application/json\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nContent-Length: 263\r\nOrigin: https://streamfix-webappslinkidvid.manus.space\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\ncontent-type: application/json\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, DELETE, POST, PUT\r\naccess-control-max-age: 86400\r\ncache-control: no-cache\r\nx-dns-prefetch-control: on\r\ncontent-security-policy: default-src 'self';img-src * data:;script-src 'self' 'unsafe-eval' 'unsafe-inline';style-src 'self' 'unsafe-inline';connect-src 'self' api.umami.is cloud.umami.is;frame-ancestors 'self'\r\nvary: rsc, next-router-state-tree, next-router-prefetch, next-router-segment-prefetch\r\nserver: cloudflare\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncontent-encoding: zstd\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6smwftvi6FP9zORHYftb5dt3WpZE%2B0EWjaYhqa064K4GaDyQ2yj6dT7A%2BXS2wMyhiwUskItAAoNNOcYnhyvCzsH7%2FwrNzYjaIhkN61AGyXbkKLCeJLpoqiUelUNS9AHykpeJBrxi\"}]}\r\ncf-ray: a15d8624492eb51e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":419,"size_decoded":1447,"mime_type":"application/json","magic":"JSON text data","md5":"9dfb34878847d67119d416ac03421fa4","sha1":"190177b87c4e2387a3db87b25ab9e74695428fc3","sha256":"2abd3e9a000e2d5b3da539f77120f717a773eddc525cb9ca8c58fd0166d5deba","sha512":"73a95450f8227f14e2b33420aa83170f0d555db62df13a23b793d8420a1a2515fa11d87e2dbd837b9ca5d4737e4fd3b847cd14b86853f0f4bb20f5eb190f961f","ssdeep":"","tlshash":"08e081ae40e88acb0232bf804d4436a94028c8e22a9024a505f33271af28c0b104782c","first_seen":"2026-07-04T10:42:54.057906Z","last_seen":"2026-07-04T10:42:54.057906Z","times_seen":1,"resource_available":false,"data":null}},"time_used":141,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":141,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"streamfix-webappslinkidvid.manus.space/api/v2/telemetry/ping","fqdn":"streamfix-webappslinkidvid.manus.space","domain":"manus.space","tld":"space"},"ip":{"addr":"104.19.169.112","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.085Z","timestamp":1783161754085,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manus.space","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Jun 2026 04:26:12 GMT","end":"Tue, 15 Sep 2026 05:26:06 GMT"},"fingerprint":{"sha1":"21:FD:10:A6:1F:E0:96:0A:C4:12:BD:CB:C2:FC:11:B9:AD:DE:6E:6E","sha256":"E2:80:E5:78:18:C5:08:CF:A8:5C:D6:3C:B8:67:22:D6:F7:90:B0:2A:AD:E8:F4:23:6B:43:02:71:D6:30:D8:55"}}},"request":{"raw":"POST /api/v2/telemetry/ping HTTP/1.1\r\nHost: streamfix-webappslinkidvid.manus.space\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://streamfix-webappslinkidvid.manus.space/login/\r\nContent-Type: application/json\r\nOrigin: https://streamfix-webappslinkidvid.manus.space\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 04 Jul 2026 10:42:34 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 25\r\ncf-ray: a15d86233e9b56c0-OSL\r\ncf-cache-status: DYNAMIC\r\ncache-control: no-store, no-cache, must-revalidate, proxy-revalidate\r\netag: W/\"19-tJsAaC6TrUdf+W6N0OxLQ4832G0\"\r\nexpires: 0\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\npragma: no-cache\r\npermissions-policy: camera=(), microphone=(), geolocation=()\r\nreferrer-policy: strict-origin-when-cross-origin\r\nx-cloud-trace-context: 3b1c5ac573e5c927f7be772067714508\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nx-netflix-request-timeout: 20000\r\nx-originating-url: /api/v2/telemetry/ping\r\nx-request-id: a0f0859d-f043-ea38-b7ac-85d422b258ba\r\nx-xss-protection: 1; mode=block\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Google Cloud Trace","description":"Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.","website":"https://cloud.google.com/trace","common_platform_enumeration":"","icon":"google-cloud-trace.svg","categories":["Performance"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":25,"size_decoded":848,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"8f206aef2f41471b68ad28268c6e950e","sha1":"b49b00682e93ad475ff96e8dd0ec4b438f37d86d","sha256":"8993d1943e734788039b4619f1b01350b8c1cbca09880296fb3b5febfa6298ac","sha512":"1dd8a3f7b1c493f741e40e47fe6ba79768e469ad23fe4123b905647ba3d4d76b4480c6f3090a86cdb1aa7b7e682291f21ee4f1f63909e4131303c03fd25bb0b1","ssdeep":"","tlshash":"9b70002030088028880a0a20b000fa200e2a20220220a208a08e2200833008e0022803","first_seen":"2026-07-04T10:42:54.060085Z","last_seen":"2026-07-04T10:42:54.060085Z","times_seen":1,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":27,"dns":0,"connect":0,"send":0,"wait":135,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"streamfix-webappslinkidvid.manus.space","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Netflix","verdict":"phishing","severity":"medium","comment":"Associated with Netflix phishing","tags":["netflix","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"files.manuscdn.com/user_upload_by_module/web_dev_logo/310519663806794539/bpvIcgQJxteoDPGQ.png","fqdn":"files.manuscdn.com","domain":"manuscdn.com","tld":"com"},"ip":{"addr":"143.204.238.94","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://streamfix-webappslinkidvid.manus.space/login/","date":"2026-07-04T10:42:34.186Z","timestamp":1783161754186,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manuscdn.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 28 Jan 2026 00:00:00 GMT","end":"Fri, 26 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"68:26:53:A4:8F:42:CA:32:56:77:AB:8D:05:F6:35:79:D5:77:6B:C5","sha256":"62:A5:BB:25:A0:6D:BC:C1:7F:C7:5B:97:44:4F:7D:57:48:3F:08:9B:73:C5:D4:BF:83:F0:3B:31:7E:4D:AC:C1"}}},"request":{"raw":"GET /user_upload_by_module/web_dev_logo/310519663806794539/bpvIcgQJxteoDPGQ.png HTTP/1.1\r\nHost: files.manuscdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://streamfix-webappslinkidvid.manus.space/\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/png\r\ncontent-length: 7373\r\nlast-modified: Thu, 02 Jul 2026 06:27:35 GMT\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sat, 04 Jul 2026 10:42:17 GMT\r\netag: \"174066a885fbeae8074b0dc7904950e4\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 67f9655de5330e95e25b0cf3ebeeccb2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P4\r\nx-amz-cf-id: jJ4wRCTEvPhXtrEvnbnnxhA-k42rpKZqPs6SnfokzthSLdSV2yLBpw==\r\nage: 18\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: max-age=31536000\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":7373,"size_decoded":8024,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced","md5":"174066a885fbeae8074b0dc7904950e4","sha1":"72b8cd95bfde7f46efddd56678548bfb7025e257","sha256":"72687c41f819946331d2ff8a5572db6f2d0e58d73e3662506dc06d94b2164506","sha512":"dfea8b1f8abc3081ba42f7aa6964375f4c5e0b675310238e2b321ceb146bc66bd84b3436f98a1d024180f0aadba99ef359e434b8eb6402f812cec5a75b7c25dd","ssdeep":"96:DaZzYr6xWzfVxojZQUvlyN24+2dJ8NOB1snZQUbHjP4vGfjo+clNMWMb9IFvqAVD:D0zYGeQ5tS24+2dJ8OkzDn3oyA2dy","tlshash":"bae1f9c5d43286740d15508b2c64ee1a3962776785bce5e8c306adf8b0cba1eaf4f937","first_seen":"2026-04-29T08:29:54.448133Z","last_seen":"2026-07-04T10:44:09.617993Z","times_seen":10,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":0,"dns":13,"connect":8,"send":0,"wait":11,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"procss-membresiaswiiebichekis.sbs/","fqdn":"procss-membresiaswiiebichekis.sbs","domain":"procss-membresiaswiiebichekis.sbs","tld":"sbs"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-04T10:42:28.293Z","timestamp":1783161748293,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: procss-membresiaswiiebichekis.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T15:30:47.656626Z","times_seen":16977903,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"procss-membresiaswiiebichekis.sbs/","fqdn":"procss-membresiaswiiebichekis.sbs","domain":"procss-membresiaswiiebichekis.sbs","tld":"sbs"},"ip":{"addr":"15.197.162.184","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-04T10:42:28.521Z","timestamp":1783161748521,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: procss-membresiaswiiebichekis.sbs\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 04 Jul 2026 10:42:28 GMT\r\nContent-Length: 75\r\nConnection: keep-alive\r\nz-urlredirect-redirected-for: 2027822845\r\nLocation: https://streamfix-webappslinkidvid.manus.space/login/\r\nServer: urlredirect\r\nContent-type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-04T15:30:47.656626Z","times_seen":16977903,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":3,"connect":1,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-04","alert":"Phishing Block","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-07-04","alert":"Sinkholed","trigger":"procss-membresiaswiiebichekis.sbs","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}}]}
