Report - simpcity.tv/

Report Overview

Visited public
2025-01-04 17:14:06
Tags
Submit Tags
URL
simpcity.tv/
Finishing URL
simpcity.tv/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
SimpCity TV - Free Leaks Porn Videos and Images and 4K Sex Movies

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
service.supercounters.com	unknown	2004-03-20	2022-03-04	2025-01-01	547 B	265 B	172.104.29.90
widget.supercounters.com	168845	2004-03-20	2012-06-27	2024-12-29	802 B	17 kB	104.21.96.1
cdn.erocdn.co	unknown	2022-10-13	2022-11-14	2024-12-29	7.7 kB	81 kB	185.76.9.27
thothd.com	unknown	2022-02-21	2021-02-01	2024-12-29	424 B	9.1 kB	104.27.205.87
waust.at	38137	unknown	2016-01-28	2024-12-28	352 B	4.9 kB	172.67.71.57
statics.simpcity.tv	unknown	unknown	2024-04-04	2024-10-08	2.1 kB	149 kB	188.114.97.1
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-01-01	2.1 kB	137 kB	142.250.74.35
x-video.tube	unknown	2023-02-23	2023-03-02	2024-12-29	1.3 kB	252 kB	188.114.96.1
media-cdn.erohive.com	unknown	2023-06-28	2023-07-11	2024-12-23	1.3 kB	16 kB	185.76.9.12
t.dtscout.com	11951	2013-11-01	2017-01-30	2024-12-28	871 B	9.1 kB	141.101.120.10
simpcity.tv	unknown	unknown	2023-01-29	2024-10-08	262 B	869 B	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-01-04	medium	simpcity.tv	Sinkholed
2025-01-04	medium	simpcity.tv	Sinkholed
2025-01-04	medium	simpcity.tv	Sinkholed
2025-01-04	medium	simpcity.tv	Sinkholed
2025-01-04	medium	simpcity.tv	Sinkholed
2025-01-04	medium	simpcity.tv	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	simpcity.tv/	ScriptElement	99 B	2025-01-04	2025-01-04
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-04 17:14 Last Seen2025-01-04 17:14 Times Seen1 Hash 5388e535c4de21e01d47a530d4399d24 abeabb480d0a8671475e90b9c7791e3467ab0a8d 3ca0b887da616023da43019126771d5a231c12be4f13a890fe7c0c34f01e505d Loading...

	simpcity.tv/	ScriptElement	240 B	2024-06-17	2025-07-19
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-17 00:00 Last Seen2025-07-19 06:58 Times Seen30 Hash 5516c1d16e6bb43d824440b73952c4be 90e71f32c7852cbb78b7075e8093ece9801a74f3 a7d9937c371e0cb73a82e3f84b54f3465f2ce29a1b0570acd8cf28cf5b0df2c0 Loading...

	service.supercounters.com/fc.php?id=566666&w=1&v=2&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Fsimpcity.tv%2F&sw=1280&sh=1024&rand=82	ScriptElement	30 B	2025-01-04	2025-01-04
Pretty URL service.supercounters.com/fc.php?id=566666&w=1&v=2&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Fsimpcity.tv%2F&sw=1280&sh=1024&rand=82 IP 172.104.29.90 ASN #63949 Akamai Connected Cloud Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-04 17:14 Last Seen2025-01-04 17:14 Times Seen1 Hash afd0f49f743022a9efb9834895ffad60 cfdc57fd3b71d4241c3d3fe7d7b222a264e3b877 b7a2570c90a82d94fa57d1c44c862aad6abdcb13f2d41a51ac970b3499c0f06a Loading...

	t.dtscout.com/pv/?_a=v&_h=simpcity.tv&_ss=o5hkprbmbx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3wz0&_cb=_dtspv.c	ScriptElement	51 B	2025-01-04	2025-01-04
Pretty URL t.dtscout.com/pv/?_a=v&_h=simpcity.tv&_ss=o5hkprbmbx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3wz0&_cb=_dtspv.c IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-04 17:14 Last Seen2025-01-04 17:14 Times Seen1 Hash 4fd18acdbc23facd7df591edeeedafe4 47d3bb1949ceaca87be46098dc2320389c0a2f1f b7df67be1c3d66cd74ecf6149012befcbf344fc5a24441e6cafbb8c7eac77d03 Loading...

	t.dtscout.com/i/?l=https%3A%2F%2Fsimpcity.tv%2F&j=	ScriptElement	2.1 kB	2023-03-07	2025-07-21
Pretty URL t.dtscout.com/i/?l=https%3A%2F%2Fsimpcity.tv%2F&j= IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-21 05:11 Times Seen4628 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	simpcity.tv/	ScriptElement	205 B	2024-02-23	2025-01-04
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-23 18:21 Last Seen2025-01-04 22:40 Times Seen19 Hash 196df5feaaee5be70bc887348b4b4c57 15475ee749a4764c24c84b9e79386be7e18421af b989499fc0f66909b162792f977c67cf208cfc2a54a72c3909b1de80bb6398b4 Loading...

	statics.simpcity.tv/assets/js/main.js?v=12	ScriptElement	87 kB	2024-06-17	2025-01-04
Pretty URL statics.simpcity.tv/assets/js/main.js?v=12 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-17 00:00 Last Seen2025-01-04 22:40 Times Seen15 Hash 7659ae05acf70a71450531336c8d90e7 5ec9f8c041ffa482d1fd27452c152c9908ae2ab1 40b3bf7bfbddb807d25d141ad548de2c1391e37db8d056025c19c9294635590a Loading...

	simpcity.tv/	ScriptElement	63 B	2024-06-17	2025-01-04
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-17 00:00 Last Seen2025-01-04 22:40 Times Seen15 Hash b14b9c708ab186c26bfaae61020fa794 6c8d1efeb58efcaeaf96c7423d6ddd106dc5a9cc 6bc380eb25ef0b75650e6b7103d69cb471a1e882da087ff163adddd830829130 Loading...

	simpcity.tv/	ScriptElement	430 B	2024-06-17	2025-01-04
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-17 00:00 Last Seen2025-01-04 22:40 Times Seen15 Hash c4098d0d4fd47245a67a5970901b782e 9398520ed46e375e19ae1f1a62b4fdf363d80f81 71f09ab8d11c1666029278f7fd8f2315f7ec63fcfb4244bb9f49ec6ce20da71c Loading...

	widget.supercounters.com/ssl/online_i.js	ScriptElement	4.3 kB	2023-03-07	2025-07-18
Pretty URL widget.supercounters.com/ssl/online_i.js IP 104.21.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25 Last Seen2025-07-18 06:38 Times Seen369 Hash 56aa3ba75fa3a9e8b9c26e6f8d5cb61a febb33025cdbfef7810afc35e0d57ab3d78600b5 ee80e1799cfa522898910f9b955030eb967d87ff400bf423561b6fa8b05d666a Loading...

	simpcity.tv/	ScriptElement	38 B	2024-06-17	2025-01-04
Pretty URL simpcity.tv/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-17 00:00 Last Seen2025-01-04 22:40 Times Seen15 Hash 1a1c46bd466c28237aaa652ad18f4367 fe18f6dc7e543035de2fd720c5863ccf7793e293 9c86469b3edaa38b57fd5162bf94b681c34141ac2b38bc34e655ab50a3d91be8 Loading...

	waust.at/s.js	ScriptElement	8.6 kB	2023-03-08	2025-07-15
Pretty URL waust.at/s.js IP 172.67.71.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29 Last Seen2025-07-15 05:07 Times Seen1859 Hash a41caf5294227669425cd5135a26b2a0 a26a13f88c51c37b58fbd8a6b444e9b9150fae16 2052a227c361a7e99ea70f5bdcf54cd9e6c6b493dd4d20b73b376d94ce0dc0d1 Loading...

HTTP Transactions (40)

URL IP Response Size

GET simpcity.tv/

188.114.97.1

302 Found

42 B

URL User Request GET HTTP/2
simpcity.tv/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
ASCII text, with no line terminators
Size
42 B (42 bytes)
Hash
1f3670f74f0e7419d035f6a58592c1a2
d9ebb08a153d75e90a58384d12aa52394df9f2f8
6119757fb7dd8fc458ca6abffd5be5c8b09c2b3152ac107ce121fd523750f0f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Sat, 04 Jan 2025 17:13:43 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 42
Connection: keep-alive
Location: https://simpcity.tv/
Vary: Accept, Accept-Encoding
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dw5P6HjWnkIXrRKmXsOyjz0usLY0BWx6jTTlx4ag1qZ8%2FkCTzZzCvdkgk2vYI9vSoyEjhSxjAbbPzPuEPxEpFY43QiS89lHrOUIxMdrHivGZOioN6VX708oxhvXv9g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8fccdc5e98e156af-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=499&min_rtt=499&rtt_var=249&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=264&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"

GET statics.simpcity.tv/icons/6/apple-icon-57x57.png?v=1

188.114.97.1

200 OK

2.2 kB

URL GET HTTP/3
statics.simpcity.tv/icons/6/apple-icon-57x57.png?v=1
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
PNG image data, 57 x 57, 8-bit colormap, non-interlaced
Size
2.2 kB (2234 bytes)
Hash
b18a85c65058de558fcd3287c73154c1
a9b105b6f97348be3fb8be5f212abf8d9da53d79
80751738f36bd0d817b906adae8fe43ece25f1e9319df6679a133297daf34d17

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icons/6/apple-icon-57x57.png?v=1 HTTP/1.1
Host: statics.simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:45 GMT
content-type: image/png
content-length: 2234
last-modified: Thu, 15 Feb 2024 20:23:32 GMT
etag: "65ce72c4-8ba"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4411
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xZGDr2q68QRTsgteAI6bnr8O8wXC3ujDu%2B4nmEbdmR3fy%2B%2FVE9i89DT3%2B1hAMug79I5JCtI45AT%2Fk4crA3tYTgvULeDkhSqofEmRQI9Fur%2Fs%2Bi54fTbRGkUFq4GnLhAmy0m70Mxs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc6c1e3456ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3863&min_rtt=1955&rtt_var=2095&sent=22&recv=8&lost=0&retrans=0&sent_bytes=15858&recv_bytes=1624&delivery_rate=303705&cwnd=12000&unsent_bytes=0&cid=7605256efce868bf&ts=318&x=1", cfExtPri, cfHdrFlush;dur=13

GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2

142.250.74.35

200 OK

39 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39188, version 1.0
Size
39 kB (39188 bytes)
Hash
91c3bc1f55db641843550a62e39f0031
555923ddb4702bb7da14e810ac929f447fabd9d7
dd1d87a3e43058c21090e00341b2ccce34653e9ca3e67c33e4ad7ac9ab6bc883

HTTP Headers

GET /s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://simpcity.tv
DNT: 1
Connection: keep-alive
Referer: https://statics.simpcity.tv/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Jan 2025 04:16:53 GMT
expires: Sun, 04 Jan 2026 04:16:53 GMT
cache-control: public, max-age=31536000
age: 46612
last-modified: Thu, 14 Sep 2023 00:02:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET waust.at/s.js

172.67.71.57

200 OK

4.0 kB

URL GET HTTP/2
waust.at/s.js
IP
172.67.71.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectwaust.at
FingerprintF8:FD:9C:DC:A3:BE:F5:EA:38:7D:BB:BB:E6:23:02:5A:83:9C:DB:FB
ValidityThu, 26 Dec 2024 08:20:07 GMT - Wed, 26 Mar 2025 09:20:04 GMT

File type
gzip compressed data, max speed, from Unix
Size
4.0 kB (3959 bytes)
Hash
7832c78604eda7403adbbd1715637f82
8d07f32f85f7d87954266f2e63f94fa0217429af
77b6861952d34f834833664a39dc60d27be0816c8c4d68199198db19e3f2a60c

HTTP Headers

GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:45 GMT
content-type: application/x-javascript
last-modified: Thu, 26 Dec 2024 22:59:38 GMT
etag: W/"676ddfda-2170"
expires: Sun, 05 Jan 2025 16:43:40 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 1805
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aq6Uoqh2gLaGzUoQ2TDVgch3ZoKEfaxqKz62Uvs%2FSx545u6JGUKahC9BJzZ1nSttdW%2BXsTS%2FwjkDbjleqejR9XcQhjOOchp%2BSmc%2FOAAZ6V9hqNNNbZ0Z8RMc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc6c3cc55690-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1930&min_rtt=464&rtt_var=2460&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3263&recv_bytes=1150&delivery_rate=5409713&cwnd=254&unsent_bytes=0&cid=01d31be8d49e8186&ts=48&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIO-aBTMnFcQIG.woff2

142.250.74.35

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIO-aBTMnFcQIG.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 34464, version 1.0
Size
34 kB (34464 bytes)
Hash
8699475078b0c1b86dbe7ad907bb4e81
e729d67d3c51a07d7e1442d2834014e4602847af
8f81887bcc6a8e017ba3927ea11e3c79f3712c94c1b3a02fd1b78f3a90bcd683

HTTP Headers

GET /s/nunito/v26/XRXV3I6Li01BKofIO-aBTMnFcQIG.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://simpcity.tv
DNT: 1
Connection: keep-alive
Referer: https://statics.simpcity.tv/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Jan 2025 04:09:52 GMT
expires: Sun, 04 Jan 2026 04:09:52 GMT
cache-control: public, max-age=31536000
age: 47033
last-modified: Wed, 13 Sep 2023 23:24:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2

142.250.74.35

200 OK

39 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39188, version 1.0
Size
39 kB (39188 bytes)
Hash
91c3bc1f55db641843550a62e39f0031
555923ddb4702bb7da14e810ac929f447fabd9d7
dd1d87a3e43058c21090e00341b2ccce34653e9ca3e67c33e4ad7ac9ab6bc883

HTTP Headers

GET /s/nunito/v26/XRXV3I6Li01BKofINeaBTMnFcQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://simpcity.tv
DNT: 1
Connection: keep-alive
Referer: https://statics.simpcity.tv/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Jan 2025 04:16:53 GMT
expires: Sun, 04 Jan 2026 04:16:53 GMT
cache-control: public, max-age=31536000
age: 46612
last-modified: Thu, 14 Sep 2023 00:02:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIMeaBTMnFcQIG.woff2

142.250.74.35

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIMeaBTMnFcQIG.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20784, version 1.0
Size
21 kB (20784 bytes)
Hash
f8a4d4cec8704b696ec245377c0e188e
9c5ffb7d0e18d3def7560fd4c7d819952658ccaf
cf6e8088cfdb86de521b68868d92af9c7d2d791490866b7b07a420ce1d3dbcf7

HTTP Headers

GET /s/nunito/v26/XRXV3I6Li01BKofIMeaBTMnFcQIG.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://simpcity.tv
DNT: 1
Connection: keep-alive
Referer: https://statics.simpcity.tv/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20784
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Jan 2025 20:41:57 GMT
expires: Fri, 02 Jan 2026 20:41:57 GMT
cache-control: public, max-age=31536000
age: 160309
last-modified: Wed, 13 Sep 2023 23:54:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET service.supercounters.com/fc.php?id=566666&w=1&v=2&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Fsimpcity.tv%2F&sw=1280&sh=1024&rand=82

172.104.29.90

200 OK

47 B

URL GET HTTP/1.1
service.supercounters.com/fc.php?id=566666&w=1&v=2&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Fsimpcity.tv%2F&sw=1280&sh=1024&rand=82
IP
172.104.29.90:443
ASN
#63949 Akamai Connected Cloud

Requested by
https://simpcity.tv/
Certificate
IssuerDigiCert Inc
Subject*.supercounters.com
Fingerprint14:87:00:FD:88:4C:34:FC:54:93:6C:E2:7A:A6:29:8E:D3:A3:89:F7
ValidityWed, 16 Oct 2024 00:00:00 GMT - Sun, 16 Nov 2025 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
47 B (47 bytes)
Hash
afd0f49f743022a9efb9834895ffad60
cfdc57fd3b71d4241c3d3fe7d7b222a264e3b877
b7a2570c90a82d94fa57d1c44c862aad6abdcb13f2d41a51ac970b3499c0f06a

HTTP Headers

GET /fc.php?id=566666&w=1&v=2&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&ref=&url=https%3A%2F%2Fsimpcity.tv%2F&sw=1280&sh=1024&rand=82 HTTP/1.1
Host: service.supercounters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sat, 04 Jan 2025 17:13:46 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.13
Content-Encoding: gzip

GET widget.supercounters.com/images/online/e61c1c.png

104.21.96.1

200 OK

568 B

URL GET HTTP/3
widget.supercounters.com/images/online/e61c1c.png
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsupercounters.com
Fingerprint0A:C1:7D:39:EB:98:E1:AC:6B:1C:25:B5:F5:74:47:29:DF:DA:67:4D
ValidityTue, 03 Dec 2024 22:56:50 GMT - Mon, 03 Mar 2025 22:56:49 GMT

File type
PNG image data, 80 x 21, 8-bit/color RGBA, non-interlaced
Size
568 B (568 bytes)
Hash
aa26d8f28a16835e0f082608a8e88a24
052cc028e83e5a222c657fa20c8b42689f8def2e
946f17cbf7585ff68bf58c1ef9d340c59760d3b1a7ab4a264590ae10cc1b2294

HTTP Headers

GET /images/online/e61c1c.png HTTP/1.1
Host: widget.supercounters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/png
content-length: 568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=icO3WOAwStxRJBriblrtbIGWg4aYxsEmer32noMY%2Fo3T6ErNmvHBXRzGlScOSQQ102RUQId770FBW%2B3y2fe2SAwPQKRfbdTYEGJHX9GuwvoLMSwYz6v7MqJA9FWHwPPywxISn3YBk%2F%2BSy2M%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 09 Dec 2024 04:31:22 GMT
etag: "6756729a-238"
cache-control: max-age=300
cf-cache-status: HIT
age: 4250
accept-ranges: bytes
cf-ray: 8fccdc7018f056a4-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400

GET statics.simpcity.tv/icons/6/favicon-16x16.png

188.114.97.1

200 OK

1.1 kB

URL GET HTTP/3
statics.simpcity.tv/icons/6/favicon-16x16.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.1 kB (1098 bytes)
Hash
24a79ac8c493c19ef7b04bdb1b78a695
92c3b9ac3fa4fe93acd84c54e9592914978f2d5f
2e949adb27c7a1ae2a0621a613e0a0cb5ad6ddbf640648e206a160abd857f71d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icons/6/favicon-16x16.png HTTP/1.1
Host: statics.simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/png
content-length: 1098
last-modified: Thu, 15 Feb 2024 20:23:31 GMT
etag: "65ce72c3-44a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 830
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W3VPWTqTVHbFoUutlZ7ruJjJBehnw%2B1Y7fl4%2Ft%2Bb%2FeI29YS3esfJs5DXA7wsNPdFPUc41i6KEOKFuHiqrL08EmlsyAK7vEeYLx9M7jzxWFvSZZ9wCJi0VohNSogewXsQ45VAtUHp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc706b5256ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4958&min_rtt=1955&rtt_var=3280&sent=55&recv=14&lost=0&retrans=0&sent_bytes=52192&recv_bytes=2340&delivery_rate=10263&cwnd=48000&unsent_bytes=0&cid=7605256efce868bf&ts=1009&x=1", cfExtPri, cfHdrFlush;dur=0

GET statics.simpcity.tv/icons/6/android-icon-192x192.png

188.114.97.1

200 OK

8.1 kB

URL GET HTTP/3
statics.simpcity.tv/icons/6/android-icon-192x192.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
8.1 kB (8104 bytes)
Hash
cb377353acb088f4e8d7014d163c2181
9f1fc14a64be96a499aee2df4a61169091c8b23c
0389ca397d94ed76a1b49742384a86e48a5a2e11934cc73f77b05bbd14029493

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icons/6/android-icon-192x192.png HTTP/1.1
Host: statics.simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/png
content-length: 8104
last-modified: Thu, 15 Feb 2024 20:23:32 GMT
etag: "65ce72c4-1fa8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 830
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BF0cHoyiZ4nJbTqHRoKrXhm6x2LcIMCf%2FLM%2B%2Bm0s4ummsE3UeVn4eWFfGCW1hPQyfq%2BMBmu89ip5sVWdmNcv8fQVcIjlhb6sjXdzd5GozXwRh56IYH6zOQ9HEdaoHYwLBGzJC5bP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc706b4f56ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4525&min_rtt=1493&rtt_var=3326&sent=57&recv=15&lost=0&retrans=0&sent_bytes=54020&recv_bytes=2384&delivery_rate=142054&cwnd=48000&unsent_bytes=0&cid=7605256efce868bf&ts=1013&x=1", cfExtPri, cfHdrFlush;dur=0

GET x-video.tube/contents/videos_screenshots/19000/19209/576x460/4.jpg

188.114.96.1

200 OK

87 kB

URL GET HTTP/2
x-video.tube/contents/videos_screenshots/19000/19209/576x460/4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectx-video.tube
Fingerprint2A:7C:92:BC:1B:1A:C6:EB:E9:AC:26:E8:B4:D7:F0:1C:A5:E4:71:5E
ValidityWed, 27 Nov 2024 03:38:52 GMT - Tue, 25 Feb 2025 03:38:51 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 576x460, components 3
Size
87 kB (87447 bytes)
Hash
cf5a339ed03781edcda9fc852273950e
ab1345794468c71bb4f2572a5567dabf8e76de8c
8ee4cf955b2371c896bc4b767e50290901e0b52febf4dab3b3bbb7228d379985

HTTP Headers

GET /contents/videos_screenshots/19000/19209/576x460/4.jpg HTTP/1.1
Host: x-video.tube
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/jpeg
content-length: 87447
last-modified: Mon, 22 May 2023 22:10:25 GMT
etag: "646be851-15597"
expires: Mon, 22 Sep 2025 20:34:27 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8973559
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BRUKZ1hgsciYfuoCorORvV8fqqpVDVi16ajwStN77ITk7CyHf%2Bx38jXrDBGET5LC4vCAm2wkha7hx0S4hmXtSFg6vTMX5aVq0dW2GHm%2FSgZwTQJmXyZ9Jp64tscI4eM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc7158a30b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=4945&min_rtt=342&rtt_var=9092&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3278&recv_bytes=1176&delivery_rate=5547892&cwnd=254&unsent_bytes=0&cid=6496d1fa271e603c&ts=89&x=0"
X-Firefox-Spdy: h2

GET x-video.tube/contents/videos_screenshots/427000/427039/576x460/3.jpg

188.114.96.1

200 OK

81 kB

URL GET HTTP/2
x-video.tube/contents/videos_screenshots/427000/427039/576x460/3.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectx-video.tube
Fingerprint2A:7C:92:BC:1B:1A:C6:EB:E9:AC:26:E8:B4:D7:F0:1C:A5:E4:71:5E
ValidityWed, 27 Nov 2024 03:38:52 GMT - Tue, 25 Feb 2025 03:38:51 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 576x460, components 3
Size
81 kB (80717 bytes)
Hash
0b771cb52e821d656098a6142cf7dcbc
7ecd4fe0be119301dec82afd80336ff10abc5a72
a48ed510c34f03b7140b3c76fd83006b555374594f3e095c609211ca597130ef

HTTP Headers

GET /contents/videos_screenshots/427000/427039/576x460/3.jpg HTTP/1.1
Host: x-video.tube
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/jpeg
content-length: 80717
last-modified: Sun, 03 Mar 2024 20:24:41 GMT
etag: "65e4dc89-13b4d"
expires: Sun, 28 Sep 2025 14:38:48 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 8476498
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iWD9bEn0HBxX3KnBGEAaa2MpA5zI0ZzJkqWyImtZSnzZLHzxuUAPx5E0rMilZKmY4fWtR3jelamDqsHoHorkQFaWPrYWKbuFrfSy0%2Bx6t3Md4MxnVMyRcQ2CAf0iQbY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc7188da0b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1715&min_rtt=342&rtt_var=2296&sent=75&recv=30&lost=0&retrans=1&sent_bytes=93633&recv_bytes=1417&delivery_rate=18564102&cwnd=257&unsent_bytes=0&cid=6496d1fa271e603c&ts=118&x=0"
X-Firefox-Spdy: h2

GET x-video.tube/contents/videos_screenshots/264000/264628/576x460/4.jpg

188.114.96.1

200 OK

81 kB

URL GET HTTP/2
x-video.tube/contents/videos_screenshots/264000/264628/576x460/4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectx-video.tube
Fingerprint2A:7C:92:BC:1B:1A:C6:EB:E9:AC:26:E8:B4:D7:F0:1C:A5:E4:71:5E
ValidityWed, 27 Nov 2024 03:38:52 GMT - Tue, 25 Feb 2025 03:38:51 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 576x460, components 3
Size
81 kB (80673 bytes)
Hash
ca2a08976364ca0ae922c80d4fffe15a
2d8a7cadc8d546c159887dc2660bfb89c1ac20e1
2c289e4eebfe11873a9e3748568ccbb867674a6689998872bd215cb7b4ad82fb

HTTP Headers

GET /contents/videos_screenshots/264000/264628/576x460/4.jpg HTTP/1.1
Host: x-video.tube
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/jpeg
content-length: 80673
last-modified: Mon, 18 Dec 2023 05:42:08 GMT
etag: "657fdbb0-13b21"
expires: Sat, 20 Dec 2025 06:48:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1333540
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZA8pn70VE5RR5S%2BIFOqZ9C4o9EFaXvYvUNBDQUIRlp9P9%2ByiSX%2BrNBN7epNHtJm41rJjaddb3ln59SBdewXk2K7w5FMjXATcgjmGv1PZseFtCfuG5lL4p5MmdMFRQXY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc7188de0b49-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=726&min_rtt=342&rtt_var=113&sent=136&recv=60&lost=0&retrans=1&sent_bytes=175405&recv_bytes=1417&delivery_rate=126116129&cwnd=257&unsent_bytes=0&cid=6496d1fa271e603c&ts=119&x=0"
X-Firefox-Spdy: h2

GET cdn.erocdn.co/eTbOizGv80qnd1WJ-pdqPg==,1736021620/s2/video/b/i/bicjcgwu/thumb.webp

185.76.9.27

200 OK

2.6 kB

URL GET HTTP/2
cdn.erocdn.co/eTbOizGv80qnd1WJ-pdqPg==,1736021620/s2/video/b/i/bicjcgwu/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.6 kB (2566 bytes)
Hash
577e7afd5332f89a72e30928397dbd46
fead474b07f12d93a3c67b6153397ef7c6fd0a43
4df56675f30d5817a882aea5a19bab48fa3bc33f73ad9550fe97d4e3db1d846b

HTTP Headers

GET /eTbOizGv80qnd1WJ-pdqPg==,1736021620/s2/video/b/i/bicjcgwu/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 2566
last-modified: Thu, 24 Oct 2024 04:52:05 GMT
x-rgw-object-type: Normal
etag: "577e7afd5332f89a72e30928397dbd46"
x-amz-request-id: tx000005d20a6ee20ddb290-006719d34d-79fc2a4-nyc
x-77-nzt: BLlMCRs3Nzf/b6kAALlMChM3Nzf/bDYBAJySIR83NzffgxoAAM/T1GbAlNcA
x-77-nzt-ray: fdb541234af9f7314a6c796780651421
x-77-cache: HIT
x-77-age: 43375
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET media-cdn.erohive.com/6Q96bcmes5zD013EQjKpLA==,1736021620/s/thumb/rzpvwiaurea/thumb.webp

185.76.9.12

200 OK

2.4 kB

URL GET HTTP/2
media-cdn.erohive.com/6Q96bcmes5zD013EQjKpLA==,1736021620/s/thumb/rzpvwiaurea/thumb.webp
IP
185.76.9.12:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.4 kB (2416 bytes)
Hash
ca9c4a387c97c7c60da3e7937b261923
f167dbf13679a7eb5b5a0985b78de5664320f693
37dde3683bbe7ad290c87b13e7d653a172e82f8885817084ddd090ef5d04e739

HTTP Headers

GET /6Q96bcmes5zD013EQjKpLA==,1736021620/s/thumb/rzpvwiaurea/thumb.webp HTTP/1.1
Host: media-cdn.erohive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 2416
last-modified: Sat, 27 Jan 2024 13:00:46 GMT
x-rgw-object-type: Normal
etag: "ca9c4a387c97c7c60da3e7937b261923"
x-amz-request-id: tx00000776b3ded65b231e3-00671435d4-9f56a4c-nyc
x-77-nzt: BLlMCQo3NzfvKUoGALlMCgw3Nzf/AwMAANRmOBE3Nzfft1QHAJySOhe6EK4A
x-77-nzt-ray: e2f75420179e2e124a6c7967a8381421
x-77-cache: HIT
x-77-age: 412201
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET thothd.com/contents/videos_screenshots/14000/14291/320x180/5.jpg

104.27.205.87

200 OK

8.0 kB

URL GET HTTP/2
thothd.com/contents/videos_screenshots/14000/14291/320x180/5.jpg
IP
104.27.205.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectthothd.com
FingerprintDC:B9:FA:81:05:27:94:D3:21:9B:EE:15:D7:66:1C:69:75:6F:E6:E7
ValidityMon, 16 Dec 2024 21:37:21 GMT - Sun, 16 Mar 2025 22:37:10 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.0 kB (8032 bytes)
Hash
d2a878adfd462756ea54686e8ce0f8df
7356822722f19dd2d5bdaf1cd477025565d6235e
96328b4711606142637ec805d9a493944e7e297cbd4a8d8befd9a5845d14a416

HTTP Headers

GET /contents/videos_screenshots/14000/14291/320x180/5.jpg HTTP/1.1
Host: thothd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 8032
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=9558
content-disposition: inline; filename="5.webp"
etag: "2556-5e88598003c80"
last-modified: Tue, 13 Sep 2022 02:16:02 GMT
vary: Accept
cache-control: max-age=2678400
cf-cache-status: HIT
age: 827
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oyTI2vziDQivI8nZfB7ehbRsqMa183%2BVXFBBacK5bdLTI9hBNf%2BD43BX6FY2ZorBH9GhFdRG5qu%2FtLj9qLkR8JeARyuAwXyhvHDnJMPUThY%2B13c5jUfzrO7EOTQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fccdc71efda56aa-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=805&min_rtt=421&rtt_var=763&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3272&recv_bytes=1203&delivery_rate=7674911&cwnd=254&unsent_bytes=0&cid=7ae8331dc099cfc7&ts=164&x=0"
X-Firefox-Spdy: h2

GET cdn.erocdn.co/8ePI4OX0HVnDIalYQaOUnA==,1736021620/s2/video/f/l/fliihwnurc/thumb.webp

185.76.9.27

200 OK

7.2 kB

URL GET HTTP/2
cdn.erocdn.co/8ePI4OX0HVnDIalYQaOUnA==,1736021620/s2/video/f/l/fliihwnurc/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.2 kB (7154 bytes)
Hash
a53dd72f68b0c312c3e2b2ae49858892
67e2f1a2ee03e162e153d7c20ecd0a8a8aa84445
f48bccaa6e9fcde974d9c4bc84e90b7859ec1da2cccecbee6dccb91a80a93568

HTTP Headers

GET /8ePI4OX0HVnDIalYQaOUnA==,1736021620/s2/video/f/l/fliihwnurc/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 7154
last-modified: Sun, 20 Oct 2024 09:42:00 GMT
x-rgw-object-type: Normal
etag: "a53dd72f68b0c312c3e2b2ae49858892"
x-amz-request-id: tx000006604015389d7cd85-006714d240-9f56a4c-nyc
x-77-nzt: BLlMCRs3Nzfvrq0FALlMCgw3Nzf/RDEBAJySISc3NzffvgAAAJySOhchF5sA
x-77-nzt-ray: fdb541234af9f7314a6c7967a5b22121
x-77-cache: HIT
x-77-age: 372142
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/Pm3MnHmUplCrLGSW8nWFXg==,1736021620/thumbs/v/d/vdnohqcdv/thumb.webp

185.76.9.27

200 OK

4.7 kB

URL GET HTTP/2
cdn.erocdn.co/Pm3MnHmUplCrLGSW8nWFXg==,1736021620/thumbs/v/d/vdnohqcdv/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.7 kB (4660 bytes)
Hash
1dff67608c4bb5b87b2370822c5a7240
f0b997069f5a8956919ea2ea61ac05cb11422299
0bb32a275ad40c2c1024d976b7d546c1491169fde292837a1a275840aa263737

HTTP Headers

GET /Pm3MnHmUplCrLGSW8nWFXg==,1736021620/thumbs/v/d/vdnohqcdv/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 4660
last-modified: Sat, 27 Jan 2024 15:59:13 GMT
x-rgw-object-type: Normal
etag: "1dff67608c4bb5b87b2370822c5a7240"
x-amz-request-id: tx0000040b2aec72317a37b-00671423d7-aef81a4-nyc
x-77-nzt: BLlMCRs3NzfvIlwGALlMCgw3Nzf/fAMAAIrHJcQ3NzffORAAAM/T1GZjJBEA
x-77-nzt-ray: fdb541234af9f7314a6c7967eb382a21
x-77-cache: HIT
x-77-age: 416802
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET media-cdn.erohive.com/j-TiABbg8yLVZo6g3miXsQ==,1736021620/s/thumb/eogvhwnkes/thumb.webp

185.76.9.12

200 OK

5.1 kB

URL GET HTTP/2
media-cdn.erohive.com/j-TiABbg8yLVZo6g3miXsQ==,1736021620/s/thumb/eogvhwnkes/thumb.webp
IP
185.76.9.12:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.1 kB (5120 bytes)
Hash
5c7debe74df2381136e93ff89b1b9764
b1c41266ce1a8c4a679237f36ccb892698ce1ad1
b9dea7295235625a7e28226ea10963e6e2c24539cbd5266613bc4f00c83ad70d

HTTP Headers

GET /j-TiABbg8yLVZo6g3miXsQ==,1736021620/s/thumb/eogvhwnkes/thumb.webp HTTP/1.1
Host: media-cdn.erohive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 5120
last-modified: Sat, 27 Jan 2024 08:54:14 GMT
x-rgw-object-type: Normal
etag: "5c7debe74df2381136e93ff89b1b9764"
x-amz-request-id: tx00000f43d7cbf909fda84-00671433ee-79fc2a4-nyc
x-77-nzt: BLlMCQo3Nzf/RUwGALlMCgw3Nzf/rAEAACUTwi43NzffsFYHAM/T1Gbg/k8A
x-77-nzt-ray: e2f75420179e2e124a6c7967b9fc6c21
x-77-cache: HIT
x-77-age: 412741
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/bsp4VBxrm7BeWCQyJmU_AQ==,1736021620/s2/video/g/h/ghkxrxtk/thumb.webp

185.76.9.27

200 OK

2.9 kB

URL GET HTTP/2
cdn.erocdn.co/bsp4VBxrm7BeWCQyJmU_AQ==,1736021620/s2/video/g/h/ghkxrxtk/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.9 kB (2864 bytes)
Hash
abafdb9dc9967700826971a3af6e27b6
a8cc667c8d9f60abea88bb5a59d3f933f5357f9c
5a07f6e4862af670f04a60f1d3704bde731c4f0b647208e5ef012e1c043fee11

HTTP Headers

GET /bsp4VBxrm7BeWCQyJmU_AQ==,1736021620/s2/video/g/h/ghkxrxtk/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 2864
last-modified: Sun, 20 Oct 2024 02:35:12 GMT
x-rgw-object-type: Normal
etag: "abafdb9dc9967700826971a3af6e27b6"
x-amz-request-id: tx000001d7dbb485d2e9c5b-0067146c9c-85c8189-nyc
x-77-nzt: BLlMCRs3Nzf/OhMGALlMChM3Nzf//QcBAMO1rwY3NzffWAEAAJySOhSezOMA
x-77-nzt-ray: fdb541234af9f7314a6c796716872e21
x-77-cache: HIT
x-77-age: 398138
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/7RqL3qZdYpdk82K61L_RuA==,1736021620/s2/video/b/v/bvcrqpmumxvk/thumb.webp

185.76.9.27

200 OK

2.4 kB

URL GET HTTP/2
cdn.erocdn.co/7RqL3qZdYpdk82K61L_RuA==,1736021620/s2/video/b/v/bvcrqpmumxvk/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.4 kB (2432 bytes)
Hash
4c68cdfce991ac77385ba6485db81b46
2b9effddad18ec4481a233b4828403826b8b2a12
96f6e4a47c87a6b46ae0cb8433ddda586a662cbe7647772a340bff1ff3e56050

HTTP Headers

GET /7RqL3qZdYpdk82K61L_RuA==,1736021620/s2/video/b/v/bvcrqpmumxvk/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 2432
last-modified: Mon, 07 Oct 2024 22:52:00 GMT
x-rgw-object-type: Normal
etag: "4c68cdfce991ac77385ba6485db81b46"
x-amz-request-id: tx00000cd81fe8a6cd7d6d2-0067143401-85c8182-nyc
x-77-nzt: BLlMCRs3NzfvN0wGALlMChM3Nzf/+QAAAMO1rwY3NzffAgAAAJySOhca2vQA
x-77-nzt-ray: fdb541234af9f7314a6c7967c57b3221
x-77-cache: HIT
x-77-age: 412727
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET t.dtscout.com/i/?l=https%3A%2F%2Fsimpcity.tv%2F&j=

141.101.120.10

200 OK

7.1 kB

URL GET HTTP/2
t.dtscout.com/i/?l=https%3A%2F%2Fsimpcity.tv%2F&j=
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectdtscout.com
Fingerprint2F:5F:E7:78:84:44:5D:26:91:70:62:E3:13:C3:AB:74:6E:71:E4:26
ValidityFri, 08 Nov 2024 20:54:26 GMT - Thu, 06 Feb 2025 20:54:25 GMT

File type
ASCII text, with very long lines (2077)
Size
7.1 kB (7117 bytes)
Hash
51bd741af3fcc4984d1a753eebfa1141
534664acf69cbbb5c9b97c96b63dd37bdc580da2
3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c

HTTP Headers

GET /i/?l=https%3A%2F%2Fsimpcity.tv%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: application/javascript
x-s: mtl2
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 04-Jan-2025 18:37:06 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1736010826; Domain=dtscout.com; Expires=Mon, 14-Apr-2025 17:13:46 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.246
expires: Sat, 04 Jan 2025 17:13:45 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BY5lywTsta71j7ZOTN%2F9%2F3odrs67L7PzIuKPoN2He3QPYB2xhtjaUg6NH8EJ0ZeIsokP4%2FaIqdF%2FPaRPkkI%2BOHGxR3fNh9G1i91AG4TIH9Mlv9IbULa%2FRbLAsleeFOg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fccdc6e59a8d937-HEL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=31669&min_rtt=26339&rtt_var=13748&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3274&recv_bytes=1182&delivery_rate=164788&cwnd=254&unsent_bytes=0&cid=46caa369f00f9ccf&ts=326&x=0"
X-Firefox-Spdy: h2

GET media-cdn.erohive.com/z06DSZRYnvSHcvoqLvCkfA==,1736021620/s/thumb/opgvcduf/thumb.webp

185.76.9.12

200 OK

6.6 kB

URL GET HTTP/2
media-cdn.erohive.com/z06DSZRYnvSHcvoqLvCkfA==,1736021620/s/thumb/opgvcduf/thumb.webp
IP
185.76.9.12:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.6 kB (6568 bytes)
Hash
293e86e0adcf03b4d25a2a61b7c9a093
b057b67b7fa79662bb81dee0c2778dd022937adb
545b6d7c7dcd770c5de0f1a69aafa660184fb24002991fa7f2ac3bdb708d56b4

HTTP Headers

GET /z06DSZRYnvSHcvoqLvCkfA==,1736021620/s/thumb/opgvcduf/thumb.webp HTTP/1.1
Host: media-cdn.erohive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 6568
last-modified: Sat, 27 Jan 2024 11:59:47 GMT
x-rgw-object-type: Normal
etag: "293e86e0adcf03b4d25a2a61b7c9a093"
x-amz-request-id: tx0000079610b72beeaecfd-0067143422-85c8182-nyc
x-77-nzt: BLlMCQo3Nzf/30sGALlMCgE3Nzf/rAEAAJySISc3NzffflYHAM/T1GaatvYA
x-77-nzt-ray: e2f75420179e2e124a6c7967bb3a8622
x-77-cache: HIT
x-77-age: 412639
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/fnofmLdh9NFjeDv001thZQ==,1736021620/s2/video/m/n/mntvhohggab/thumb.webp

185.76.9.27

200 OK

3.2 kB

URL GET HTTP/2
cdn.erocdn.co/fnofmLdh9NFjeDv001thZQ==,1736021620/s2/video/m/n/mntvhohggab/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.2 kB (3218 bytes)
Hash
3cd7d4845ae2b08a7075fbf851e68521
fee736cf4376dd90e7f8d7d404ba05bd6ac12f9c
e4c2c15aabe428d988a238af0ff7522e6417832a50ccfaab53560a7f5fd0ae20

HTTP Headers

GET /fnofmLdh9NFjeDv001thZQ==,1736021620/s2/video/m/n/mntvhohggab/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 3218
last-modified: Wed, 20 Nov 2024 01:50:26 GMT
x-rgw-object-type: Normal
etag: "3cd7d4845ae2b08a7075fbf851e68521"
x-amz-request-id: tx00000e8e6dd2275e85481-00673d4079-79fc2a4-nyc
x-77-nzt: FAwBuUwJGwH3p7UMAAwBuUwKCQH3b1QAAAwBJRPCLgG3EgAAAAgBnJI6FAAA
x-77-nzt-ray: fdb541234af9f7314a6c796757163a21
x-77-cache: HIT
x-77-age: 832935
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/YnYGLe6qV07SYYqz1HHiCg==,1736021620/s2/video/n/r/nrjyrqeuoby/thumb.webp

185.76.9.27

200 OK

4.2 kB

URL GET HTTP/2
cdn.erocdn.co/YnYGLe6qV07SYYqz1HHiCg==,1736021620/s2/video/n/r/nrjyrqeuoby/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.2 kB (4212 bytes)
Hash
5b9b4ca0161376038d5455230938e764
6fbe15f827b21177d51a1df3e7a62204041ea703
88f8c4c788a9fa5ffb25c65adc6958a4d151b09483ec6b9492e2881f7057db20

HTTP Headers

GET /YnYGLe6qV07SYYqz1HHiCg==,1736021620/s2/video/n/r/nrjyrqeuoby/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 4212
last-modified: Fri, 25 Oct 2024 14:11:27 GMT
x-rgw-object-type: Normal
etag: "5b9b4ca0161376038d5455230938e764"
x-amz-request-id: tx00000e2f445b31a4a79ac-00671ba75b-85c8182-nyc
x-77-nzt: BLlMCRs3Nzfvv6oOALlMChM3Nzf/HigAAJySIR83NzffYAEAAM/T1GaRQVIA
x-77-nzt-ray: fdb541234af9f7314a6c7967cc5e3d21
x-77-cache: HIT
x-77-age: 961215
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/gY2Hui7zoXk6LSuE5jkBtw==,1736021620/s2/video/f/s/fsthwjvg/thumb.webp

185.76.9.27

200 OK

1.9 kB

URL GET HTTP/2
cdn.erocdn.co/gY2Hui7zoXk6LSuE5jkBtw==,1736021620/s2/video/f/s/fsthwjvg/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.9 kB (1870 bytes)
Hash
16ef119ea17d655c8777f1b54c5a90f7
0fd53c2e2b0b1f7cdd502e1f2dc69e197a82a18d
969ea535e388254e168f7c40933672ca6df4834dc0b086c03dee59961e13aec4

HTTP Headers

GET /gY2Hui7zoXk6LSuE5jkBtw==,1736021620/s2/video/f/s/fsthwjvg/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 1870
last-modified: Tue, 19 Nov 2024 15:32:54 GMT
x-rgw-object-type: Normal
etag: "16ef119ea17d655c8777f1b54c5a90f7"
x-amz-request-id: tx00000755b2bae13b66aea-00673cafb5-9f56a4c-nyc
x-77-nzt: FAwBuUwJGwHXnkUNAAwBuUwKEwH3EtcAAAwBnJIhHwG3EgEAAAgBnJI6FwAA
x-77-nzt-ray: fdb541234af9f7314a6c79676d9d7d22
x-77-cache: HIT
x-77-age: 869790
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/rGBG-_VpTBMw18K7tW1YOw==,1736021620/s2/video/n/p/npaaakvknl/thumb.webp

185.76.9.27

200 OK

2.1 kB

URL GET HTTP/2
cdn.erocdn.co/rGBG-_VpTBMw18K7tW1YOw==,1736021620/s2/video/n/p/npaaakvknl/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.1 kB (2090 bytes)
Hash
12f78dcdee4ccdf75fc56a03193f1023
c167f34ba64feaf80148b453deef05bf3b58c561
b1d887b8855ca81c72d914273e3e000aa8f02f0c8b220e5e68bda8c9abdf21ff

HTTP Headers

GET /rGBG-_VpTBMw18K7tW1YOw==,1736021620/s2/video/n/p/npaaakvknl/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 2090
last-modified: Wed, 06 Nov 2024 09:18:52 GMT
x-rgw-object-type: Normal
etag: "12f78dcdee4ccdf75fc56a03193f1023"
x-amz-request-id: tx00000af1c807933fdcec8-00672b34b8-85c8182-nyc
x-77-nzt: FAwBuUwJGwH3ve0OAAwBuUwKCQH3lUMAAAwBnJIhHwG3UwAAAAgBz9PUZgAA
x-77-nzt-ray: fdb541234af9f7314a6c7967e686e422
x-77-cache: HIT
x-77-age: 978365
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/0yDrElYcNxoHqc3MdL0Xtw==,1736021620/c3/video/n/j/njeuyqbvzsof/thumb.webp

185.76.9.27

200 OK

2.0 kB

URL GET HTTP/2
cdn.erocdn.co/0yDrElYcNxoHqc3MdL0Xtw==,1736021620/c3/video/n/j/njeuyqbvzsof/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 101x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.0 kB (1962 bytes)
Hash
d8b59b2e1d179515abf2d620489c89eb
656358b0bf213f5af2a40229fec560c0518e8e73
a914faffcb27f4be255e0c16c045f064b9bbd900d046416a571f642a027d5075

HTTP Headers

GET /0yDrElYcNxoHqc3MdL0Xtw==,1736021620/c3/video/n/j/njeuyqbvzsof/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 1962
last-modified: Fri, 08 Mar 2024 16:11:18 GMT
x-rgw-object-type: Normal
etag: "d8b59b2e1d179515abf2d620489c89eb"
x-amz-storage-class: STANDARD
x-amz-request-id: tx000003286c0750f7037f1-0067143422-51342fb-nyc
x-77-nzt: BLlMCRs3Nzf/2UsGALlMChM3Nzf/FwQAACUTwi43NzffLAAAAM/T1Gauh4sA
x-77-nzt-ray: fdb541234af9f7314a6c7967b04b2323
x-77-cache: HIT
x-77-age: 412633
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET widget.supercounters.com/ssl/online_i.js

104.21.96.1

200 OK

15 kB

URL GET HTTP/2
widget.supercounters.com/ssl/online_i.js
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsupercounters.com
Fingerprint0A:C1:7D:39:EB:98:E1:AC:6B:1C:25:B5:F5:74:47:29:DF:DA:67:4D
ValidityTue, 03 Dec 2024 22:56:50 GMT - Mon, 03 Mar 2025 22:56:49 GMT

File type
ASCII text, with CRLF line terminators
Size
15 kB (15179 bytes)
Hash
56aa3ba75fa3a9e8b9c26e6f8d5cb61a
febb33025cdbfef7810afc35e0d57ab3d78600b5
ee80e1799cfa522898910f9b955030eb967d87ff400bf423561b6fa8b05d666a

HTTP Headers

GET /ssl/online_i.js HTTP/1.1
Host: widget.supercounters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:45 GMT
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 11:46:10 GMT
etag: W/"6220aa82-10a3"
cache-control: max-age=300
cf-cache-status: HIT
age: 4250
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6L3FPO3peKwaI06TM5FSPblRs6t5TuSTkElkkwXRtB5bzTpLmGzMliiIuiKOxqb1ck%2FVN4XPg%2F5ooq%2FaQ12m2b7VQOs1W9O6qkxhgTDdXOlNwS4bpSGqJMYNkXx82heHnVnZLQWKnY2rzpU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8fccdc6c5a370afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=588&min_rtt=474&rtt_var=239&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3291&recv_bytes=1185&delivery_rate=7180165&cwnd=254&unsent_bytes=0&cid=92f7e313298fee2d&ts=59&x=0"
X-Firefox-Spdy: h2

GET cdn.erocdn.co/WBhbDIwp61qBSKVNCMCCYg==,1736021620/thumbs/c/v/cvfqfqysmi/thumb.webp

185.76.9.27

200 OK

1.9 kB

URL GET HTTP/2
cdn.erocdn.co/WBhbDIwp61qBSKVNCMCCYg==,1736021620/thumbs/c/v/cvfqfqysmi/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.9 kB (1850 bytes)
Hash
aa8b215c629ecc176998e1acda3a4981
d326d2cb1011e4d8ade4c782f165835958988997
7c8648b3924f8e3627b57caec7c0809e67c0bf06874b4f5bbce40acf10bd8735

HTTP Headers

GET /WBhbDIwp61qBSKVNCMCCYg==,1736021620/thumbs/c/v/cvfqfqysmi/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 1850
last-modified: Sat, 27 Jan 2024 15:27:56 GMT
x-rgw-object-type: Normal
etag: "aa8b215c629ecc176998e1acda3a4981"
x-amz-request-id: tx0000002847ccf862a86b6-00671423f6-a04f75b-nyc
x-77-nzt: BLlMCRs3NzfvJFwGALlMChM3Nzf/WA4AAJySISc3NzffEgQAAM/T1GbKBJYA
x-77-nzt-ray: fdb541234af9f7314a6c7967440b6423
x-77-cache: HIT
x-77-age: 416804
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/UJqivrPj8OWvvZgd8GRHmg==,1736021620/s2/video/o/r/orfeumsrqrim/thumb.webp

185.76.9.27

200 OK

2.0 kB

URL GET HTTP/2
cdn.erocdn.co/UJqivrPj8OWvvZgd8GRHmg==,1736021620/s2/video/o/r/orfeumsrqrim/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.0 kB (2018 bytes)
Hash
c6e1a2f1c13674c47062fde038ffb215
51757860ad80d77e7e0d157b454852c1dc410e38
e6b394cc98ee811e16882289414112b3df2036d25f963196da6e9af1a5200a48

HTTP Headers

GET /UJqivrPj8OWvvZgd8GRHmg==,1736021620/s2/video/o/r/orfeumsrqrim/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 2018
last-modified: Tue, 24 Sep 2024 08:33:43 GMT
x-rgw-object-type: Normal
etag: "c6e1a2f1c13674c47062fde038ffb215"
x-amz-request-id: tx00000e2ae4459b35d4905-00671423d7-a04f75b-nyc
x-77-nzt: BLlMCRs3Nzf/IlwGALlMCgw3Nzf/XwMAACUTwi43NzffNxAAAJySOhc9iZsA
x-77-nzt-ray: fdb541234af9f7314a6c7967b33b7123
x-77-cache: HIT
x-77-age: 416802
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/MmSax5Ou4kFRR1WgpMiAMg==,1736021620/s2/video/c/o/corqqwdbhtlb/thumb.webp

185.76.9.27

200 OK

6.8 kB

URL GET HTTP/2
cdn.erocdn.co/MmSax5Ou4kFRR1WgpMiAMg==,1736021620/s2/video/c/o/corqqwdbhtlb/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.8 kB (6818 bytes)
Hash
415e45a890e3379ea41c812a8359dea9
febd575177fcfd81796cabd0754c0b8e0f3de536
be738ad7b49ceb8dfe3aee83d7eb884a6e83e3a53b343d0011238fd1dd6a47b9

HTTP Headers

GET /MmSax5Ou4kFRR1WgpMiAMg==,1736021620/s2/video/c/o/corqqwdbhtlb/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 6818
last-modified: Thu, 31 Oct 2024 18:36:23 GMT
x-rgw-object-type: Normal
etag: "415e45a890e3379ea41c812a8359dea9"
x-amz-request-id: tx000002b5332d2990f1815-006723ce6a-79fc2a4-nyc
x-77-nzt: BLlMCRs3Nzf/J4MGALlMChM3Nzf/f9gBAJySISc3NzffnQIAAM/T1GY5ABcA
x-77-nzt-ray: fdb541234af9f7314a6c796790457623
x-77-cache: HIT
x-77-age: 426791
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/aV37b4NskXZYZy2CO4G-FA==,1736021620/s2/video/z/v/zvcspzmazijxb/thumb.webp

185.76.9.27

200 OK

6.0 kB

URL GET HTTP/2
cdn.erocdn.co/aV37b4NskXZYZy2CO4G-FA==,1736021620/s2/video/z/v/zvcspzmazijxb/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.0 kB (6040 bytes)
Hash
8e5456ff1676584a31cc92e5d3501b58
04e027461ab2730fa42f870289772fb2bbb1c807
02c22d3ee7a0cb7da6656b6192361838723ec44fffddbf8d0babe0022b060263

HTTP Headers

GET /aV37b4NskXZYZy2CO4G-FA==,1736021620/s2/video/z/v/zvcspzmazijxb/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 6040
last-modified: Tue, 19 Nov 2024 20:26:32 GMT
x-rgw-object-type: Normal
etag: "8e5456ff1676584a31cc92e5d3501b58"
x-amz-request-id: tx00000a695c215c99dd2c6-00673cf4a5-85a4f2a-nyc
x-77-nzt: FAwBuUwJGwH3DP8MAAwBuUwKEwH3jZcGAAwBisclxAG39QIAAAgBnJI6FwAA
x-77-nzt-ray: fdb541234af9f7314a6c7967d5e98123
x-77-cache: HIT
x-77-age: 851724
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.erocdn.co/w6TgLq25YfbXfKGob6Nkzw==,1736021620/thumbs/g/y/gyrkqnqvwie/thumb.webp

185.76.9.27

200 OK

2.4 kB

URL GET HTTP/2
cdn.erocdn.co/w6TgLq25YfbXfKGob6Nkzw==,1736021620/thumbs/g/y/gyrkqnqvwie/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.4 kB (2368 bytes)
Hash
da2e01202073e319f687500890be529a
8abae0a52805ef95c5304ef01631fb44e2f13d9f
c1a49e5f8ee8ca1f77310af3dce7e0515b053972a3b51622ff1f8f2837ec37cd

HTTP Headers

GET /w6TgLq25YfbXfKGob6Nkzw==,1736021620/thumbs/g/y/gyrkqnqvwie/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: binary/octet-stream
content-length: 2368
last-modified: Sat, 27 Jan 2024 15:35:14 GMT
x-rgw-object-type: Normal
etag: "da2e01202073e319f687500890be529a"
x-amz-request-id: tx00000ef3100deb79fe34c-0067143421-79fc2a4-nyc
x-77-nzt: BLlMCRs3Nzf/BUwGALlMCgk3Nzf/FQQAACUTwjQ3NzffKwAAAJySOhc3xI4A
x-77-nzt-ray: fdb541234af9f7314a6c7967a69e8523
x-77-cache: HIT
x-77-age: 412677
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET statics.simpcity.tv/assets/css/main.css?v=11

188.114.97.1

200 OK

46 kB

URL GET HTTP/3
statics.simpcity.tv/assets/css/main.css?v=11
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
assembler source, ASCII text, with very long lines (719)
Size
46 kB (45534 bytes)
Hash
b03eb2e2b7a78e71997558886dc199cb
60ee1a525660c3003db16b19aa9385967647a5dc
678dc5627471d7d3d896c817064dbe099f95f30f2192962f26ed3a13ae68a148

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/css/main.css?v=11 HTTP/1.1
Host: statics.simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:45 GMT
content-type: text/css
last-modified: Thu, 15 Feb 2024 23:34:54 GMT
vary: Accept-Encoding
etag: W/"65ce9f9e-b1de"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4411
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RYR27SGE0fvA%2Brko7L3%2FC%2FkAvohYlDUtJWxM%2BrXPPw1adbCfcvB%2BXM22G9O%2B9ksInpRz77M0bmrdLzntVe1A9pWLOnIlvuD%2FhYaDQcObyP6OpFk7iIU2k4P91EETGhbmqaNA1Jux"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fccdc6c1e3256ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3863&min_rtt=1955&rtt_var=2095&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4099&recv_bytes=1624&delivery_rate=303705&cwnd=12000&unsent_bytes=0&cid=7605256efce868bf&ts=317&x=1", cfExtPri, cfHdrFlush;dur=0

GET statics.simpcity.tv/assets/js/main.js?v=12

188.114.97.1

200 OK

87 kB

URL GET HTTP/3
statics.simpcity.tv/assets/js/main.js?v=12
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectsimpcity.tv
Fingerprint32:93:EE:FB:EA:B7:7A:0E:54:E7:56:D7:35:B7:DA:46:F6:14:64:BD
ValidityFri, 27 Dec 2024 17:38:56 GMT - Thu, 27 Mar 2025 18:36:31 GMT

File type
JavaScript source, ASCII text, with very long lines (60493)
Size
87 kB (86838 bytes)
Hash
7659ae05acf70a71450531336c8d90e7
5ec9f8c041ffa482d1fd27452c152c9908ae2ab1
40b3bf7bfbddb807d25d141ad548de2c1391e37db8d056025c19c9294635590a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/js/main.js?v=12 HTTP/1.1
Host: statics.simpcity.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 04 Jan 2025 17:13:45 GMT
content-type: application/javascript
last-modified: Mon, 01 Apr 2024 13:52:51 GMT
vary: Accept-Encoding
etag: W/"660abc33-15336"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1945
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=639eP22rxOn78f72li%2FT8WIh1GdnVEtysL21mcB0iJbuzAbDQ1KOGRTBtCigEMmmr%2FiPQf%2BiDt2%2FHMC9idsv58g%2FZ%2BLSAQWYqgoazLT%2Bu3We0nrprUacrvRB6Ai5uv9ecH8JETJR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fccdc6c1e3356ba-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3863&min_rtt=1955&rtt_var=2095&sent=22&recv=8&lost=0&retrans=0&sent_bytes=15858&recv_bytes=1624&delivery_rate=303705&cwnd=12000&unsent_bytes=0&cid=7605256efce868bf&ts=318&x=1", cfExtPri, cfHdrFlush;dur=5

GET cdn.erocdn.co/_zK7_TPpgvLst_g7r0-5jQ==,1736021620/s2/video/x/k/xkvgwczrfymok/thumb.webp

185.76.9.27

200 OK

14 kB

URL GET HTTP/2
cdn.erocdn.co/_zK7_TPpgvLst_g7r0-5jQ==,1736021620/s2/video/x/k/xkvgwczrfymok/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
14 kB (13920 bytes)
Hash
93ffbf3076a36ce9a481cc402c82c2f7
c609f7012d590f004f68ebacefd396b15d947537
6e41ae86ef984fe4b369120e4ab871315172c44daa6752b0a6af554cda894313

HTTP Headers

GET /_zK7_TPpgvLst_g7r0-5jQ==,1736021620/s2/video/x/k/xkvgwczrfymok/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 13920
last-modified: Thu, 24 Oct 2024 04:05:06 GMT
x-rgw-object-type: Normal
etag: "93ffbf3076a36ce9a481cc402c82c2f7"
x-amz-request-id: tx0000044d076a510fa07e0-006719c7a5-a04f75b-nyc
x-77-nzt: BLlMCRs3NzfvWbYAALlMChM3Nzf/Z/MAANRmOBE3NzffiwQAAJySOhRs5PYA
x-77-nzt-ray: fdb541234af9f7314a6c79670c283c23
x-77-cache: HIT
x-77-age: 46681
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

GET t.dtscout.com/pv/?_a=v&_h=simpcity.tv&_ss=o5hkprbmbx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3wz0&_cb=_dtspv.c

141.101.120.10

200 OK

51 B

URL GET HTTP/2
t.dtscout.com/pv/?_a=v&_h=simpcity.tv&_ss=o5hkprbmbx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3wz0&_cb=_dtspv.c
IP
141.101.120.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://simpcity.tv/
Certificate
IssuerGoogle Trust Services
Subjectdtscout.com
Fingerprint2F:5F:E7:78:84:44:5D:26:91:70:62:E3:13:C3:AB:74:6E:71:E4:26
ValidityFri, 08 Nov 2024 20:54:26 GMT - Thu, 06 Feb 2025 20:54:25 GMT

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
28c2ef80365ab44c1a3ce68ff579143d
75bd1f90757f211c84e461f3a6eeda8fb3ddb790
a0289cbb9eab904babfd033702d308d09c56afb11ffa38e6a6ad64851d940701

HTTP Headers

GET /pv/?_a=v&_h=simpcity.tv&_ss=o5hkprbmbx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3wz0&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: m=1; df=1736010826
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: application/javascript
x-t: 0.142
x-c: 0
expires: Sat, 04 Jan 2025 17:13:45 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pLgWQJTczaJSfZ%2BMvn8QZE7bI4bwQJO%2Fl6xH9UjXB%2Fj%2FW93REFTPrsGmB8cSMuibTSAw2%2FLNPoQDeAunJ8h5cMz9RdOQVW%2BSNjFGxiWQy%2F4H%2F%2BnfaZvBwtkjaDNKlPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fccdc70abe6d937-HEL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=29913&min_rtt=26317&rtt_var=8442&sent=12&recv=15&lost=0&retrans=0&sent_bytes=5199&recv_bytes=1342&delivery_rate=164788&cwnd=257&unsent_bytes=0&cid=46caa369f00f9ccf&ts=682&x=0"
X-Firefox-Spdy: h2

GET cdn.erocdn.co/T87SBPXIqsa2yiS6ULL9HQ==,1736021620/s2/video/q/k/qkyetunfbge/thumb.webp

185.76.9.27

200 OK

6.0 kB

URL GET HTTP/2
cdn.erocdn.co/T87SBPXIqsa2yiS6ULL9HQ==,1736021620/s2/video/q/k/qkyetunfbge/thumb.webp
IP
185.76.9.27:443
ASN
#60068 Datacamp Limited

Requested by
https://simpcity.tv/
Certificate
IssuerLet's Encrypt
Subject1011902851.rsc.cdn77.org
Fingerprint65:2E:25:66:CE:C7:17:01:63:83:1E:51:AF:67:76:90:C4:C3:DB:6E
ValidityMon, 23 Dec 2024 04:50:04 GMT - Sun, 23 Mar 2025 04:50:03 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.0 kB (6046 bytes)
Hash
70b1b898b9cda041181a4b61a2e5cbe0
2cf138d7988c996b62a6907602f7cbac045008ed
a5cd59b159e704ffe60d38ecb72bafded3c8115d28bbe6c0634288f6006b004a

HTTP Headers

GET /T87SBPXIqsa2yiS6ULL9HQ==,1736021620/s2/video/q/k/qkyetunfbge/thumb.webp HTTP/1.1
Host: cdn.erocdn.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 Jan 2025 17:13:46 GMT
content-type: image/webp
content-length: 6046
last-modified: Tue, 05 Nov 2024 16:39:37 GMT
x-rgw-object-type: Normal
etag: "70b1b898b9cda041181a4b61a2e5cbe0"
x-amz-request-id: tx0000047bea389cacbf26e-00672a4a8a-85c81e4-nyc
x-77-nzt: FAwBuUwJGwH3WwcAAAwBuUwKEwH3/S0CAAwBJRPCNAG3HQAAAAgBnJI6FwAA
x-77-nzt-ray: fdb541234af9f7314a6c79671f5b3621
x-77-cache: HIT
x-77-age: 1883
server: CDN77-Turbo
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML