Report - cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4

Report Overview

Visited public
2025-01-12 03:45:37
Tags
Submit Tags
URL
cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Finishing URL
cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
IP / ASN
23.94.186.250
#36352 AS-COLOCROSSING
Title
Earth-Abides-S01E01-STAGATV-COM.mp4 - Staga TV

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2025-01-08	449 B	32 kB	151.101.2.137
m.stagatv.com	unknown	2018-08-25	2024-08-11	2025-01-11	472 B	41 kB	104.21.61.65
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-01-08	427 B	106 kB	142.250.178.72
whacmoltibsay.net	unknown	2024-12-02	2024-12-03	2025-01-11	407 B	31 kB	104.21.34.49
gutockeewhargo.net	unknown	2024-11-14	2024-11-14	2025-01-06	1.8 kB	7.7 kB	139.45.197.107
my.rtmark.net	9054	2014-10-29	2015-02-04	2025-01-08	475 B	846 B	104.18.18.184
cdn.stagatvfiles.com	unknown	2020-03-30	2020-07-10	2025-01-06	2.9 kB	19 kB	23.94.186.250
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-01-08	479 B	7.7 kB	104.17.24.14
communicatedsuitcompartment.com	unknown	2024-07-27	2024-07-30	2025-01-11	455 B	582 B	192.243.59.12
stagatvfiles.com	unknown	2020-03-30	2020-04-03	2025-01-11	445 B	13 kB	23.94.186.250
use.fontawesome.com	942	2012-10-18	2017-01-30	2025-01-08	2.0 kB	189 kB	104.21.27.152
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-04-05	2025-01-08	970 B	250 kB	104.18.11.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-01-12	medium	whacmoltibsay.net	Sinkholed
2025-01-12	medium	gutockeewhargo.net	Sinkholed
2025-01-12	medium	gutockeewhargo.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-L9P9HQPEW2	ScriptElement	308 kB	2025-01-12	2025-01-12
Pretty URL www.googletagmanager.com/gtag/js?id=G-L9P9HQPEW2 IP 142.250.178.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-12 03:45 Last Seen2025-01-12 03:45 Times Seen1 Hash dd92d33196ded2ed5dbb6b244935daa2 378c794a89fda72864abf7e0d30d96cd4753017f a348355dc1a34f77c8f63eac7e6bf1b2510d5179d46b660904def11224aa842f Loading...

	cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4	ScriptElement	0 B	0001-01-01	2025-07-18
Pretty URL cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4 IP 23.94.186.250 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-18 02:33 Times Seen5449581 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4	ScriptElement	197 B	2024-12-14	2025-06-20
Pretty URL cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4 IP 23.94.186.250 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-14 17:04 Last Seen2025-06-20 18:06 Times Seen32 Hash c138e49b53b77b8299c5e3cbdc930a57 1f869ee01740796f6c67a60b3890e80e617377b4 484aca784d9e14053d751cc3dbb108c60a4259d537cab045134d2d95139faa5b Loading...

	cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4	ScriptElement	0 B	0001-01-01	2025-07-18
Pretty URL cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4 IP 23.94.186.250 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-18 02:33 Times Seen5449581 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-3.6.0.min.js	ScriptElement	90 kB	2023-03-07	2025-07-18
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-18 02:29 Times Seen246702 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js	ScriptElement	58 kB	2023-03-07	2025-07-17
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-17 23:57 Times Seen13525 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/script.js?v=1.6	ScriptElement	1.5 kB	2023-06-05	2025-06-20
Pretty URL cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/script.js?v=1.6 IP 23.94.186.250 ASN #36352 AS-COLOCROSSING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 23:00 Last Seen2025-06-20 18:06 Times Seen42 Hash f1b98da35149ae385c29b1c6338a1621 b327366754b396de09231382ea56f018adb1fd83 9df06d6534b38c208140c33d77c693a54f77a69d842ac53f9f3b420ec187b02f Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js	ScriptElement	21 kB	2023-03-07	2025-07-17
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-07-17 21:53 Times Seen10672 Hash 56456db9d72a4b380ed3cb63095e6022 6dbce88aee15b42f29083df7a07513cf3b486ba0 66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2 Loading...

	whacmoltibsay.net/tag.min.js	ScriptElement	72 kB	2025-01-11	2025-01-12
Pretty URL whacmoltibsay.net/tag.min.js IP 104.21.34.49 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-11 02:15 Last Seen2025-01-12 23:37 Times Seen15 Hash e8df241db315aa8576a5ce968f9f2f56 bd3f7fe0927f4f4004dd6870ed9f7d364cc076f0 dd0105f522f61dbd7bd606acb3dd793593c666f97630e87ff6681fd1c38792c0 Loading...

	unknown	ScriptElement	172 B	2025-01-12	2025-01-12
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-12 03:45 Last Seen2025-01-12 03:45 Times Seen1 Hash a902d04672e7e64063cfe3db64e81917 45f4e2edc59e09b72833b421b2f9a1f55e7cb4ee b825eaecb2ebfa852599a0784f09c58759e5345dd0742a74289fc41118b1cc11 Loading...

HTTP Transactions (21)

URL IP Response Size

GET cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4

23.94.186.250

200 OK

2.8 kB

URL User Request GET HTTP/1.1
cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Certificate
IssuerLet's Encrypt
Subjectcdn.stagatvfiles.com
Fingerprint3F:0E:36:BA:1E:A0:25:13:43:03:06:93:86:93:80:74:F5:5F:09:EF
ValidityFri, 20 Dec 2024 17:37:20 GMT - Thu, 20 Mar 2025 17:37:19 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
2.8 kB (2815 bytes)
Hash
e20663c0808019c9ebe0cafff238f936
2685f737a07de0273dcf01fd543c7fec3aed4717
b0547ee16087846847cf6c774034b3cce2d9f28ec7cec5760528e15c11f19673

HTTP Headers

GET /563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4 HTTP/1.1
Host: cdn.stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, no-cache
Pragma: no-cache
Set-Cookie: filehosting=5909c1df308ff982563685a8490dba39; expires=Mon, 13-Jan-2025 03:45:11 GMT; Max-Age=86400; path=/
Vary: Accept-Encoding
Content-Encoding: br
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 2815
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

GET cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js

104.17.24.14

200 OK

6.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (20831)
Size
6.6 kB (6646 bytes)
Hash
56456db9d72a4b380ed3cb63095e6022
6dbce88aee15b42f29083df7a07513cf3b486ba0
66f3a07e1fa9b64a686b66381e4458dbc8abf3dbbff954720c4eec07b84411c2

HTTP Headers

GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 285003
expires: Fri, 02 Jan 2026 03:45:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2FVuCADXeSAWXFHkyrRj%2FDUP%2F1Slqir6HDyDxrtGoV88zisws6itbt6JPdylowhSyKk%2BFKZAMrqrnwPIefAH0KZVgYTqdHjkC69lZ3wQdqi9ZaUT680NAAVmPz43MVbYv4CaX%2FkL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 900a270349107131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/style.min.css?v=1.0.0

23.94.186.250

200 OK

589 B

URL GET HTTP/1.1
cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/style.min.css?v=1.0.0
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectcdn.stagatvfiles.com
Fingerprint3F:0E:36:BA:1E:A0:25:13:43:03:06:93:86:93:80:74:F5:5F:09:EF
ValidityFri, 20 Dec 2024 17:37:20 GMT - Thu, 20 Mar 2025 17:37:19 GMT

File type
ASCII text, with very long lines (1804), with no line terminators
Size
589 B (589 bytes)
Hash
26cbc435542ee175a55de5f9ee6d61fa
a73b8370fca2e4b56fafe1d677eb14297def7466
befbde3af5b83b671a88ab56063a5df16da71e59e0352318455562a079c31891

HTTP Headers

GET /themes/spirit/assets/frontend/css/v1/style.min.css?v=1.0.0 HTTP/1.1
Host: cdn.stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Cookie: filehosting=5909c1df308ff982563685a8490dba39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:12 GMT
Server: Apache
Last-Modified: Tue, 26 Dec 2023 10:02:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 589
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

GET code.jquery.com/jquery-3.6.0.min.js

151.101.2.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 12 Jan 2025 03:45:12 GMT
age: 2138850
x-served-by: cache-lga21931-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 71, 263383
x-timer: S1736653512.242769,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

GET m.stagatv.com/wp-content/uploads/2022/05/downloadmay22.png

104.21.61.65

200 OK

40 kB

URL GET HTTP/2
m.stagatv.com/wp-content/uploads/2022/05/downloadmay22.png
IP
104.21.61.65:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectstagatv.com
FingerprintDF:10:44:3E:81:8D:E0:D4:9D:6F:48:7E:98:9F:3B:44:A1:1A:EA:D8
ValidityThu, 21 Nov 2024 13:37:13 GMT - Wed, 19 Feb 2025 13:37:12 GMT

File type
PNG image data, 960 x 257, 8-bit colormap, non-interlaced
Size
40 kB (39651 bytes)
Hash
dbf37a3f441d89e023795d83c81c9373
22b12d0c853b91f0c5df856824f25cec15fcd1aa
15144116288a2b916b68071eb112507c9c849fb6575d3c94a56f23f91ca33f74

HTTP Headers

GET /wp-content/uploads/2022/05/downloadmay22.png HTTP/1.1
Host: m.stagatv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: image/png
content-length: 39651
last-modified: Mon, 23 May 2022 21:27:41 GMT
cache-control: max-age=31557600
expires: Sat, 10 Jan 2026 13:37:01 GMT
cf-cache-status: HIT
age: 125173
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DdcQiLha%2B%2Bj6RSAu73wuLaUnyeOSGzHYiU2QGqarklconZLm5cecx625fqDWQBzTnEN0Lej2S3esrxkm3a2IZAoMirlM4LRfbwufXqmOFOGvWK5cKwLVCI3OyegO4Hx5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 900a2703887fb527-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=605&min_rtt=429&rtt_var=339&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3270&recv_bytes=1225&delivery_rate=7702127&cwnd=254&unsent_bytes=0&cid=8ef2a38d75c1136c&ts=36&x=0"
X-Firefox-Spdy: h2

GET cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/script.js?v=1.6

23.94.186.250

200 OK

482 B

URL GET HTTP/1.1
cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/script.js?v=1.6
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectcdn.stagatvfiles.com
Fingerprint3F:0E:36:BA:1E:A0:25:13:43:03:06:93:86:93:80:74:F5:5F:09:EF
ValidityFri, 20 Dec 2024 17:37:20 GMT - Thu, 20 Mar 2025 17:37:19 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
482 B (482 bytes)
Hash
f1b98da35149ae385c29b1c6338a1621
b327366754b396de09231382ea56f018adb1fd83
9df06d6534b38c208140c33d77c693a54f77a69d842ac53f9f3b420ec187b02f

HTTP Headers

GET /themes/spirit/assets/frontend/css/v1/script.js?v=1.6 HTTP/1.1
Host: cdn.stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Cookie: filehosting=5909c1df308ff982563685a8490dba39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:12 GMT
Server: Apache
Last-Modified: Tue, 26 Dec 2023 10:01:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: br
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 482
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript

GET www.googletagmanager.com/gtag/js?id=G-L9P9HQPEW2

142.250.178.72

200 OK

106 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-L9P9HQPEW2
IP
142.250.178.72:443
ASN
#15169 GOOGLE

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintBB:2E:7E:AD:26:E1:69:CA:59:9D:25:40:5F:20:4A:82:34:E8:D2:04
ValidityMon, 09 Dec 2024 08:36:18 GMT - Mon, 03 Mar 2025 08:36:17 GMT

File type
JavaScript source, ASCII text, with very long lines (5268)
Size
106 kB (105453 bytes)
Hash
dd92d33196ded2ed5dbb6b244935daa2
378c794a89fda72864abf7e0d30d96cd4753017f
a348355dc1a34f77c8f63eac7e6bf1b2510d5179d46b660904def11224aa842f

HTTP Headers

GET /gtag/js?id=G-L9P9HQPEW2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 12 Jan 2025 03:45:12 GMT
expires: Sun, 12 Jan 2025 03:45:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 105453
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET communicatedsuitcompartment.com/fa/44/22/fa44222e6e9d5eac9b9fce277e4fad19.js

192.243.59.12

403 Forbidden

0 B

URL GET HTTP/1.1
communicatedsuitcompartment.com/fa/44/22/fa44222e6e9d5eac9b9fce277e4fad19.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectcommunicatedsuitcompartment.com
Fingerprint58:CE:CA:29:DA:81:3B:AC:42:3D:5C:2D:97:86:C0:D1:8F:F8:E2:8E
ValidityMon, 25 Nov 2024 21:27:05 GMT - Sun, 23 Feb 2025 21:27:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fa/44/22/fa44222e6e9d5eac9b9fce277e4fad19.js HTTP/1.1
Host: communicatedsuitcompartment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Sun, 12 Jan 2025 03:45:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: communicatedsuitcompartment.com

GET stagatvfiles.com/videos/downloader/logo-st.png

23.94.186.250

200 OK

12 kB

URL GET HTTP/1.1
stagatvfiles.com/videos/downloader/logo-st.png
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectstagatvfiles.com
Fingerprint81:8B:F7:87:50:49:16:2F:A0:57:CE:A9:F9:F6:A8:7B:7B:2C:FA:AA
ValidityTue, 07 Jan 2025 05:36:43 GMT - Mon, 07 Apr 2025 05:36:42 GMT

File type
PNG image data, 300 x 143, 8-bit/color RGBA, non-interlaced
Size
12 kB (12323 bytes)
Hash
7752b8f3665c71dd9e4a37b5dd5f9c6d
7ce514886fdc4aca0fb19a5e5c1b3257eb93e73b
c465f572740b5683e25d49a8e76beb58170e6f29eb8d6e1b5d6ea148db8a99b6

HTTP Headers

GET /videos/downloader/logo-st.png HTTP/1.1
Host: stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:12 GMT
Server: Apache
Last-Modified: Mon, 14 Feb 2022 18:59:21 GMT
Accept-Ranges: bytes
Content-Length: 12323
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

GET use.fontawesome.com/releases/v5.8.1/webfonts/fa-regular-400.woff2

104.21.27.152

200 OK

14 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-regular-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13552, version 329.-17761
Size
14 kB (13552 bytes)
Hash
e6257a726a0cf6ec8c6fec22821c055f
8583a4f0dd12e15a48b3395593307a84d971cc33
ccf4db1eeb68c96e05e74f8ebfa75cc60c3a0fed862dae6b0ad85d4e1b5b4e4f

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: font/woff2
content-length: 13552
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "e6257a726a0cf6ec8c6fec22821c055f"
last-modified: Fri, 22 Sep 2023 01:45:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 1275038
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mZxxztAXgpCO43dnY%2BC6y41eUigJRsAm426WatYpzf%2BxqS2LjqYBg%2BNryIQcNQlmP%2BApQYb7DdZRGMJrYmEIVUPJgc9QTP06fSW1xbpGdQzmhJtClOVdhjo3uqXcI%2FyaujacMQtv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 900a27071e1cb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=538&min_rtt=438&rtt_var=218&sent=7&recv=12&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1249&delivery_rate=7180165&cwnd=254&unsent_bytes=0&cid=124fdf20d793edc5&ts=52&x=0"
X-Firefox-Spdy: h2

GET stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js

104.18.11.207

200 OK

92 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint4C:46:68:E4:35:94:CF:F1:17:E4:0B:28:EF:F8:44:64:A1:01:5A:ED
ValidityMon, 18 Nov 2024 00:43:34 GMT - Sun, 16 Feb 2025 00:43:33 GMT

File type
gzip compressed data, from Unix
Size
92 kB (92333 bytes)
Hash
40cc723821f7b290bc13ddd2e49255b9
13b3fe279719701aa66a89f0e3585554d954892c
280722ec45227eb18037147f50f8177655c0e9e0b1c5f99c519a561c1a1171d4

HTTP Headers

GET /bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"e1d98d47689e00f8ecbc5d9f61bdb42e"
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 08/21/2023 18:50:34
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1079
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: b427445433402b622e1e23d19a54a63a
cdn-cache: HIT
cf-cache-status: HIT
age: 1905963
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 900a27033f5d56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

75 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761
Size
75 kB (74768 bytes)
Hash
5e2f92123d241cabecf0b289b9b08d4a
7f6c682ade204e641aed8f471064c56b6eddc263
dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: font/woff2
content-length: 74768
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "5e2f92123d241cabecf0b289b9b08d4a"
last-modified: Fri, 22 Sep 2023 01:45:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 198798
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gsFg41lrC1%2BpER0HgzPt4ZBPgQZUwCibgxzNHQSwOAPTTjEPv%2F4Dmgwuhs1mdBYp4N%2FbGukx2Eqj6cO5QVSHSMkqyZ1pjHo6LsHd0uBYrZYRHE63gxFQqgdZDj8FFCYW5O8jgGL7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 900a27072e23b4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=604&min_rtt=438&rtt_var=138&sent=74&recv=20&lost=0&retrans=0&sent_bytes=93360&recv_bytes=1348&delivery_rate=34579104&cwnd=254&unsent_bytes=0&cid=124fdf20d793edc5&ts=61&x=0"
X-Firefox-Spdy: h2

GET whacmoltibsay.net/tag.min.js

104.21.34.49

200 OK

30 kB

URL GET HTTP/2
whacmoltibsay.net/tag.min.js
IP
104.21.34.49:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectwhacmoltibsay.net
FingerprintAF:15:62:E6:E1:05:11:0A:B4:31:67:08:40:17:07:84:76:78:1F:86
ValidityMon, 02 Dec 2024 15:44:23 GMT - Sun, 02 Mar 2025 15:44:22 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29679 bytes)
Hash
e8df241db315aa8576a5ce968f9f2f56
bd3f7fe0927f4f4004dd6870ed9f7d364cc076f0
dd0105f522f61dbd7bd606acb3dd793593c666f97630e87ff6681fd1c38792c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: whacmoltibsay.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: c6a50792a565a6a206a6cbdc347e8721
cache-control: max-age=86400
last-modified: Fri, 10 Jan 2025 12:35:55 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Sun, 12 Jan 2025 12:40:03 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 54308
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SVCRFLH4PRnzGzEOh2yckkPcMceIgtMpxZLfrSVjwVZyOTa%2BhS72FEps8PekH%2F6kmp95%2B0Vd7U7oBVEo6e%2FbOV4cXtEM0Zjo7aLw4TLdlzmUo2y5jLQXTqnuxqiTyRZzthtt8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 900a27065c6db4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=491&min_rtt=457&rtt_var=99&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3294&recv_bytes=1192&delivery_rate=8014760&cwnd=254&unsent_bytes=0&cid=71f4c3821362e086&ts=30&x=0"
X-Firefox-Spdy: h2

GET cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/favicon/apple-touch-icon.png

23.94.186.250

200 OK

13 kB

URL GET HTTP/1.1
cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/favicon/apple-touch-icon.png
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectcdn.stagatvfiles.com
Fingerprint3F:0E:36:BA:1E:A0:25:13:43:03:06:93:86:93:80:74:F5:5F:09:EF
ValidityFri, 20 Dec 2024 17:37:20 GMT - Thu, 20 Mar 2025 17:37:19 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced
Size
13 kB (12933 bytes)
Hash
9e0fe3d86d925a6d6c0e5aaaa457881c
020c3566a67cbc090b6b220370ed989145f4c165
4097be7e303ad66153e43a56d2bd418c501ab5f7fd57c70645967f360ecfb438

HTTP Headers

GET /themes/spirit/assets/frontend/css/v1/favicon/apple-touch-icon.png HTTP/1.1
Host: cdn.stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Cookie: filehosting=5909c1df308ff982563685a8490dba39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:12 GMT
Server: Apache
Last-Modified: Tue, 26 Dec 2023 10:04:14 GMT
Accept-Ranges: bytes
Content-Length: 12933
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

GET gutockeewhargo.net/5/8149156/?oo=1&js_build=iclick-v1.1032.0&dmn=whacmoltibsay.net&tt=2&ix=0

139.45.197.107

200 OK

2.2 kB

URL GET HTTP/2
gutockeewhargo.net/5/8149156/?oo=1&js_build=iclick-v1.1032.0&dmn=whacmoltibsay.net&tt=2&ix=0
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectgutockeewhargo.net
Fingerprint4F:98:FA:E6:1A:26:CF:55:06:DD:89:00:FE:C9:0F:12:AA:11:21:0C
ValidityThu, 14 Nov 2024 02:44:55 GMT - Wed, 12 Feb 2025 02:44:54 GMT

File type
gzip compressed data, max speed, from Unix
Size
2.2 kB (2223 bytes)
Hash
b271622efbf07eecc33bccd5c9d0fe55
bf50384e4678b8a7897d28a5becd7966d6b52871
0a072f34a582602299479b8f2c55fe141d4a2791119a27a36fa2a2107aac1e8b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/8149156/?oo=1&js_build=iclick-v1.1032.0&dmn=whacmoltibsay.net&tt=2&ix=0 HTTP/1.1
Host: gutockeewhargo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 12 Jan 2025 03:45:13 GMT
content-type: application/json
x-trace-id: c0826f4b0bdee732574e0f5c60a6f86f
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://cdn.stagatvfiles.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00814f5fb4484abfe1b6ef123b7a407c; expires=Mon, 12 Jan 2026 03:45:13 GMT; path=/; secure; SameSite=None
oaidts=1736653513; expires=Mon, 12 Jan 2026 03:45:13 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v5.8.1/css/all.css

104.21.27.152

200 OK

23 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/css/all.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
ASCII text, with very long lines (54926)
Size
23 kB (22741 bytes)
Hash
e4c542a7f6bf6f74fdd8cdf6e8096396
3a0571a695a35f238026b9398386dc99d9a0c56d
eeb17a45a48aca1d7adbcf04de155dcd0b47cb36ad036310446bb471fea9aaa3

HTTP Headers

GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
last-modified: Fri, 22 Sep 2023 01:45:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1909327
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9UHibdXp3diXVTSQF1GbO44aE575S%2FJnuC4fRfOBEJ7tmz2Xnwx8m4w74Eb3u%2FWahZixbgx4%2F3BCX90X3G9cnJE0tPvnEd1uysTZ%2FafeSZxP8R5ukJ4Qgo3K%2FGrgDWWLdO%2BGm1lA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 900a27032f9c0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=433&rtt_var=513&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3199&recv_bytes=1086&delivery_rate=9087866&cwnd=239&unsent_bytes=0&cid=75a92956518e5304&ts=48&x=0"
X-Firefox-Spdy: h2

GET stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css

104.18.11.207

200 OK

156 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectbootstrapcdn.com
Fingerprint4C:46:68:E4:35:94:CF:F1:17:E4:0B:28:EF:F8:44:64:A1:01:5A:ED
ValidityMon, 18 Nov 2024 00:43:34 GMT - Sun, 16 Feb 2025 00:43:33 GMT

File type
ASCII text, with very long lines (65324)
Size
156 kB (155758 bytes)
Hash
a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36

HTTP Headers

GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"a15c2ac3234aa8f6064ef9c1f7383c37"
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 03/18/2024 12:46:56
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1055
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e34fc17796fa2b031aeb17299b861914
cdn-cache: HIT
cf-cache-status: HIT
age: 98237
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 900a27032f5a56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET my.rtmark.net/gid.js?userId=00814f5fb4484abfe1b6ef123b7a407c

104.18.18.184

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=00814f5fb4484abfe1b6ef123b7a407c
IP
104.18.18.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint56:7F:53:10:57:2F:C3:F4:06:8B:DB:2F:C1:F7:6A:1D:68:59:14:3F
ValiditySat, 04 Jan 2025 10:02:11 GMT - Fri, 04 Apr 2025 11:00:33 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
36df6624b5d9bd27ffcb1437c8fc8cb0
b7b98bacc7f70a55f20e60ec3f890bb2f4514899
b40d95eadb3c36c17ec77d6a31509911a155531920b905423d73991f4379e4f6

HTTP Headers

GET /gid.js?userId=00814f5fb4484abfe1b6ef123b7a407c HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:13 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cdn.stagatvfiles.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
timing-allow-origin: *, *
set-cookie: ID=00814f5fb4484abfe1b6ef123b7a407c; expires=Mon, 12 Jan 2026 03:45:13 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 900a270959a5b4ff-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET gutockeewhargo.net/?rb=o4xHfs5NaXhmIrT5VT9LggN5AJl4paDbCFbDJVue43gV7ZK6RHuEvPVYfLbwEHjtBoZFi5zWdvVofqID7vAIF-xGX799VQQ7F4YKs23QdDJgovV10_z2xqxvsfpDgc8t56_261UsC6Je62UVXrOGIaR6_S6RX-eUGuolnv8lT1oUEFKICMGyYhiAgDIB2M1qyBswTROEGF1lnZG79TyCZx5X-mAB8SPuxGoTMsrPfV5qslEifiJW84H0TkkZTCLT1Jjr9b_Xkq1_xJM-reJ-d6LIOrBEyUZR&request_ab2=0&zoneid=8149156&js_build=iclick-v1.1032.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcdn.stagatvfiles.com%2F563d22b616e52ddce16d6c46e4328755%2FEarth-Abides-S01E01-STAGATV-COM.mp4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1032.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=b4e676f3-4b24-45d7-9e25-d38b53d4efae&wasm=1&userId=00814f5fb4484abfe1b6ef123b7a407c&m=link

139.45.197.107

200 OK

3.1 kB

URL GET HTTP/2
gutockeewhargo.net/?rb=o4xHfs5NaXhmIrT5VT9LggN5AJl4paDbCFbDJVue43gV7ZK6RHuEvPVYfLbwEHjtBoZFi5zWdvVofqID7vAIF-xGX799VQQ7F4YKs23QdDJgovV10_z2xqxvsfpDgc8t56_261UsC6Je62UVXrOGIaR6_S6RX-eUGuolnv8lT1oUEFKICMGyYhiAgDIB2M1qyBswTROEGF1lnZG79TyCZx5X-mAB8SPuxGoTMsrPfV5qslEifiJW84H0TkkZTCLT1Jjr9b_Xkq1_xJM-reJ-d6LIOrBEyUZR&request_ab2=0&zoneid=8149156&js_build=iclick-v1.1032.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcdn.stagatvfiles.com%2F563d22b616e52ddce16d6c46e4328755%2FEarth-Abides-S01E01-STAGATV-COM.mp4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1032.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=b4e676f3-4b24-45d7-9e25-d38b53d4efae&wasm=1&userId=00814f5fb4484abfe1b6ef123b7a407c&m=link
IP
139.45.197.107:443
ASN
#9002 RETN Limited

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectgutockeewhargo.net
Fingerprint4F:98:FA:E6:1A:26:CF:55:06:DD:89:00:FE:C9:0F:12:AA:11:21:0C
ValidityThu, 14 Nov 2024 02:44:55 GMT - Wed, 12 Feb 2025 02:44:54 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3122), with no line terminators
Size
3.1 kB (3093 bytes)
Hash
59c122e2ad717ec2af4dd812f05120e5
19dbb9f32822a1aaf941b2ff8852086fc6ac3716
c137b3e3377901dbef0ec71325be84ca7cff4c2ba81c6c1d1687d4363673dfb2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=o4xHfs5NaXhmIrT5VT9LggN5AJl4paDbCFbDJVue43gV7ZK6RHuEvPVYfLbwEHjtBoZFi5zWdvVofqID7vAIF-xGX799VQQ7F4YKs23QdDJgovV10_z2xqxvsfpDgc8t56_261UsC6Je62UVXrOGIaR6_S6RX-eUGuolnv8lT1oUEFKICMGyYhiAgDIB2M1qyBswTROEGF1lnZG79TyCZx5X-mAB8SPuxGoTMsrPfV5qslEifiJW84H0TkkZTCLT1Jjr9b_Xkq1_xJM-reJ-d6LIOrBEyUZR&request_ab2=0&zoneid=8149156&js_build=iclick-v1.1032.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=0&pl=https%3A%2F%2Fcdn.stagatvfiles.com%2F563d22b616e52ddce16d6c46e4328755%2FEarth-Abides-S01E01-STAGATV-COM.mp4&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=2&wgl=&js_build=iclick-v1.1032.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=b4e676f3-4b24-45d7-9e25-d38b53d4efae&wasm=1&userId=00814f5fb4484abfe1b6ef123b7a407c&m=link HTTP/1.1
Host: gutockeewhargo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.stagatvfiles.com/
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Cookie: OAID=00814f5fb4484abfe1b6ef123b7a407c; oaidts=1736653513
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 12 Jan 2025 03:45:13 GMT
content-type: application/json
x-trace-id: 5afe456254a73d521d3b8e19f82eac47
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://cdn.stagatvfiles.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00814f5fb4484abfe1b6ef123b7a407c; expires=Mon, 12 Jan 2026 03:45:13 GMT; path=/; secure; SameSite=None
oaidts=1736653513; expires=Mon, 12 Jan 2026 03:45:13 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sun, 19 Jan 2025 03:45:13 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

GET use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

74 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerGoogle Trust Services
Subjectuse.fontawesome.com
FingerprintC3:0F:A8:70:18:47:83:79:64:E6:D2:14:74:73:F9:8F:85:B6:37:86
ValiditySun, 05 Jan 2025 23:52:55 GMT - Sun, 06 Apr 2025 00:52:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cdn.stagatvfiles.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 12 Jan 2025 03:45:12 GMT
content-type: font/woff2
content-length: 74256
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "418dad87601f9c8abd0e5798c0dc1feb"
last-modified: Fri, 22 Sep 2023 01:45:57 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
age: 198798
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aphraQFYXB0tKe2ETKgvPEt7Zrjexwi%2BdlY8hfQxX0TMs6wKphar4f4AUyge%2FgicWKkU31S3JBUW%2FU9ZUcGNHjC7Vd2vg96sqjntr3trIe2qtE%2B8UZpdtf5vYo3wJfAQZjfCLsAe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 900a27071e1eb4fa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=545&min_rtt=438&rtt_var=177&sent=19&recv=14&lost=0&retrans=0&sent_bytes=17704&recv_bytes=1348&delivery_rate=29301854&cwnd=254&unsent_bytes=0&cid=124fdf20d793edc5&ts=57&x=0"
X-Firefox-Spdy: h2

GET cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/favicon/favicon-16x16.png

23.94.186.250

200 OK

665 B

URL GET HTTP/1.1
cdn.stagatvfiles.com/themes/spirit/assets/frontend/css/v1/favicon/favicon-16x16.png
IP
23.94.186.250:443
ASN
#36352 AS-COLOCROSSING

Requested by
https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Certificate
IssuerLet's Encrypt
Subjectcdn.stagatvfiles.com
Fingerprint3F:0E:36:BA:1E:A0:25:13:43:03:06:93:86:93:80:74:F5:5F:09:EF
ValidityFri, 20 Dec 2024 17:37:20 GMT - Thu, 20 Mar 2025 17:37:19 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
665 B (665 bytes)
Hash
0ec79cb31a612169e858a86dec3a877e
f440c180d63efcbfa67848345abd6fc0b5c1ca14
c66a9d4e76adab16e31faf11e77b3e2e3a08438329f882b042c4a524d4187b35

HTTP Headers

GET /themes/spirit/assets/frontend/css/v1/favicon/favicon-16x16.png HTTP/1.1
Host: cdn.stagatvfiles.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.stagatvfiles.com/563d22b616e52ddce16d6c46e4328755/Earth-Abides-S01E01-STAGATV-COM.mp4
Cookie: filehosting=5909c1df308ff982563685a8490dba39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 12 Jan 2025 03:45:12 GMT
Server: Apache
Last-Modified: Tue, 26 Dec 2023 10:04:14 GMT
Accept-Ranges: bytes
Content-Length: 665
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)