| en.yts-official.mx/static/yts/image/default_avatar.jpg | 104.21.69.3 | 200 OK | 2.4 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/default_avatar.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100", baseline, precision 8, 60x60, components 3 Hashe55b123ffd0b26cddf175715a76ff22d 0cbeba4643578c972bb79bf8e3b0b83a794df5bc 9412c68d8f2bad5e7abe0ca709a3258cf8c2b7a14bcc1654abf2316debf902cc
GET /static/yts/image/default_avatar.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 2449
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-991"
expires: Thu, 30 May 2024 16:20:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 349527
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VJgZIM5s47W%2BpmEkBOXAXzC7Bu6RcLB3SmEFxmzXeiM0r7o7Ba6uoPeBmsBshhISYz11WTiKioYAFlCmrq0AiWSAkDRmghCTjsEAwbwzJZw2aqOaA9IHjNrFbun%2FD5%2BmBe6ALSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea27b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vidsrc.to/embed/movie/tt9894450/ | 172.67.181.24 | 404 Not Found | 4.0 kB |
URL GET HTTP/2vidsrc.to/embed/movie/tt9894450/ IP172.67.181.24:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typeHTML document, ASCII text, with very long lines (807), with no line terminators Hash81bd0a52a2031f6e26401124f3feda31 d72a3ce30177cfea9ed3768b3bb554b1ecb7cc77 c80e7713c7c127396ac12c579183df13cbcd9ab27c9fd2067d6b8ba0c987f108
GET /embed/movie/tt9894450/ HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Sat, 04 May 2024 17:26:11 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jnQCagJQB6Fh1uKX5IpJXKauRnjKCnEzd3DcSSKPYq056l0pafD0fcFtDhmSODvzz0KIFO%2FT%2B2l2TGVdA%2FHbJh0VbFNyD02YjY5onEEGqPq9C6TzyF0Q3bb0GGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31bef92c0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, TrueType, length 23320, version 1.0 Hash68ed1dac06bf0409c18ae7bc62889170 22037a3455914e5662fa51a596677bdb329e2c5c fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /static/yts/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: font/woff
content-length: 23320
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-5b18"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2910
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Z%2F%2FflDztyoR6QvDi0dojmsooV%2FEnNkO7DG4vOzVr5OH%2F%2BRmR2vHWfGo9t9V4iw54PUfyi8VC8gIn7BSvHALPPHGmWRZ%2BgVvS%2B8DalkjR9hcRRnHxT8uQO%2BZKDLyKWtH7jQ7%2F1k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c06cacb4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 | 142.250.74.131 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 IP142.250.74.131:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20040, version 1.0 Hasha61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6
GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:52:40 GMT
expires: Fri, 02 May 2025 01:52:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
age: 228811
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/fonts/fonts.css | 104.21.69.3 | 200 OK | 20 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/fonts.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (1316), with no line terminators Hashb482ea655a7bad066f5aacbcbd1f8ff9 7b48d2275fc5356ae4528275502bb520244e8a4b 38fe96c34e2d963f298b4827f2ddc5a13fa1bcbe420cbbd0b5b907d5613ad1bf
GET /static/yts/fonts/fonts.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-524"
expires: Sat, 04 May 2024 21:08:10 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 29880
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R5igfHfHoBWHAcInpfdj4zs4kaHnWDeYFVM1pquliFRQmMa7s6yUCsNJh5wA2dkqEt80ruJpLcwrhE99H1wDM3XC%2Bne4MVLZXGwS6%2F%2BS32ZhKph2aVb%2BFt7ZVxvbJ2atBDYMurQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31bed9fbb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/720p-quality.svg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/720p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash5aeb94417ec4ea45df9073b018e55c37 d4e0e83ab37437aa33dcd7a1c9a0e45527eb3792 e45d8d73fe1d94b36bc4296363ecb3eb37de6c5c2201962fda5a8ed38f005f7c
GET /static/yts/images/website/720p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-8e1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6559
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C6uxbAmnl7BJI11kjMDX7ZNHVGNz6Xu8mQ%2FKjqEsOqC1DFDauy7ExscT0kulz3nBT72z%2Fnzo7O9XWvO%2BXwgOz38pqN%2F5za4TOHCgNWTx8fbQTjTR8%2FNXhhalJDlDDgBMRbPk9JY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c02c23b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot2.jpg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot2.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x146, components 3 Hash3c3c29701c719d5e27e55a8428f1561b f22d073c2e4a9fa2ec38f50bd9ab115f93b6e48c f91e6adea7a9590cad5628850439880a0030909fa740e44710dca4fcb0a9b76e
GET /movies/screenshot/felicita-2020-medium-screenshot2.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 23389
last-modified: Sat, 30 Oct 2021 06:13:08 GMT
etag: "617ce274-5b5d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7cJ7JhkY79eePiD1IMhxDzj%2FC9HEWG5%2BhdX03y8l7m4d60ebrfOQ6MWukOoLG%2FHDxHSVv%2FFsTV9tK2e6Arl12LOxBGMCPijGWR040kDejhfQCAjzYLa23z%2BZbzBoDD8tRqhZi1I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea21b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/felicita-2020/ | 104.21.69.3 | 200 OK | 37 kB |
URL GET HTTP/3en.yts-official.mx/movies/felicita-2020/ IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1067), with CRLF line terminators Hash5f230d9a69c5846336bc138dea6be424 2ce83d69786fa96c29168f8a6f92a2cfbbd1c8a3 8f0461325350a2b5b71aee406643742fe5677b39cb1ffb7cd9d5b4461f9c6dce
GET /movies/felicita-2020/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:10 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2BVK%2BRGGTKICP3Ac7C23d%2BDiLFKBwFkn0V3fEwc7vGeop3FlKmt5yKZlAWSt0%2FYd%2BB9Ptj8KkP1FgI4Mz6fJFVmPiX2502notG0l5KbWQsToGKEP65ptsOd31xDeQPYJdU15cUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31b8494356b7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/style/minified.css | 104.21.69.3 | 200 OK | 21 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/minified.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (57475) Hasha314b10e99529c56373ebff456f96618 89369052969ff4793a3c290593b5ded5d2d3e6d7 e043e009630de7fdb24141cd7e788e91a7978880af7730e0f8f97bf41c2cd549
GET /static/yts/style/minified.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 08:38:28 GMT
vary: Accept-Encoding
etag: W/"65d31384-1d423"
expires: Sat, 04 May 2024 18:04:33 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 40898
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=anGoA4dFMjq65XDWwb8p%2BqPLoOgGo9tByDTYOQtZWbknElhGRsvDyg%2B8BVaztNo4g5EMxdefq6VhEIgcef2DoOhAyjZf6JjK7EDEDBBh7HhGZgBmZ%2F0TSCbhWQWEaza9r18%2F%2BJc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31beda02b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot1.jpg | 104.21.69.3 | 200 OK | 24 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot1.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x146, components 3 Hash6e81eabb42c3375a55cf28e45da55541 e455a755e8a8f278082d63c42191c94a7a27f0e0 328bca4e3786f3b8574f38a04b79eac857ea46e8fa57478c2305ce6d7f949b14
GET /movies/screenshot/felicita-2020-medium-screenshot1.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 23673
last-modified: Sat, 30 Oct 2021 06:13:07 GMT
etag: "617ce273-5c79"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BRPBPmiwdWIXdBwLbytlFYxr%2BjLOuu4ZL7zcqskOwPnZS67KVDsSxO9%2BYsOvfFiHAhniOswohrCnW6%2BDmwSwdGztch%2FxG3ayf1TpuVjrxj5MLX1pBvVgH8AzxBEe9WIObHWZx6s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea1eb4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/jo-seon-myeong-tamjeong-heupyeolgoemaui-bimil-2018.jpg?v=1 | 104.21.69.3 | 200 OK | 37 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/jo-seon-myeong-tamjeong-heupyeolgoemaui-bimil-2018.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash510f874f94d61584421d54550530805c 046bbfa2fee4e91f0a978e511be27c8058b10b57 8ca75c3087062ccc6511ffc9f4e4815363d5d7eee15773e67aa0e4e86b4bed8c
GET /movies/poster/jo-seon-myeong-tamjeong-heupyeolgoemaui-bimil-2018.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 37251
last-modified: Sat, 30 Oct 2021 00:56:06 GMT
etag: "617c9826-9183"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=apiOpHaly%2BcnG49PZh7slb03x1uulC5%2FQQwYCdu2vTbaFZ210JFg6We8Uh2kldnvT4EzlXNTmrHX%2B40vXPextqnezAkbKQQmLM5i650%2BknAyeAxNATXUZ%2BG8%2F8TsKIcvN6uIi%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beda11b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/being-frank-2018.jpg?v=1 | 104.21.69.3 | 200 OK | 35 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/being-frank-2018.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 230x345, components 3 Hash39391d31ec56e9d44516db06f6cbaf60 1ddddb3211d981e4e0a74c0f8d77a82528262399 5af108d05db7a77958715cf74eb4d6f711af936e282a21626d7c2370e68d7f4f
GET /movies/poster/being-frank-2018.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 35295
last-modified: Fri, 29 Oct 2021 06:46:50 GMT
etag: "617b98da-89df"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hTaYYPgqKi3vTCVK50IaleksdGkM941go7XQDBH3vCPKnHszPG7QEh3LyWCuM08R1qYoIdIZacSZm26ihxodKxp3ctMx5N9SpREFJgKysQcLLgZz6mlPz9UOkKGrjurKazPMV9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea19b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/js/jquery.min.js?v=1 | 104.21.69.3 | 200 OK | 73 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/js/jquery.min.js?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators Hashb0dc11d0a434aafe88908c7f33d71095 1327f754ff87d26bced46568543207e9df190aaa de4b3c3d1dc2506b6693f0f98884e1dc074cda9d66cab39b7b48a115fdfc4c0f
GET /static/yts/js/jquery.min.js?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-1497d"
expires: Sat, 04 May 2024 23:02:38 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 23013
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bx47pQhcJkxr4gf5Ka9L0hcWoEqaO1PuVpxOzWlCqW%2BZ4QlalEw5ewTw%2FTvBmD%2F%2BqvJlmV8nCXbnqBxbWn3F7I2iggHfc9z%2F%2B9f1Qs8knTX%2F73dkEBAZgnBQ39ao6yTCpAu9sNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31beea25b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/felicita-2020.jpg | 104.21.69.3 | 200 OK | 21 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/felicita-2020.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashfad29c0169a7821f8a945e79c0422090 ab57ae7acede3d8b216843309b5a90c2b59d04bf 51c90c296c487617830c87aa8234840a982a0339ef7aceb3eaf0047f0fd37545
GET /movies/poster/felicita-2020.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 20861
last-modified: Sat, 30 Oct 2021 06:13:05 GMT
etag: "617ce271-517d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fOs3k1Qg7ZMtf66tyf441el7swaTXslcHXjkEcC3F3Fjwzp2wiWVGp6kTvd7%2BwprPBcli1BgOCCqJzqLKhLqROn%2BA%2F2PA47FBbI0pjYFLI6%2FRaPeCUrkk9RMKoe3ke4yC8asmmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beda0db4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/encino-man-1992.jpg?v=1 | 104.21.69.3 | 200 OK | 24 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/encino-man-1992.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash5382f3a612d69da5d7e530e913529317 a426a64fae2e180e4f57a187784abf1c8a556856 e965ef11ea241f1796c3465c686d41f079bc98198619f0646dfa6a9834b630bf
GET /movies/poster/encino-man-1992.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 23549
last-modified: Thu, 28 Oct 2021 12:35:14 GMT
etag: "617a9902-5bfd"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zJ%2BvZ4izNEe%2BDxdqeGt3k%2BtqHR67FXm5WAufE60VWOxu%2FNMbwRgTl2L%2BgmOXM7YOzBDJz3kTGHIOu9CMFlx52aLGU9kRiLTx3SP2kZ7RT0443d%2BWL3%2Fikv32%2BARIbOG%2BI445hoY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea1db4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot3.jpg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/felicita-2020-medium-screenshot3.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x146, components 3 Hash49f5063d75f73c6332e4c411998a8301 c5cc5c3146d4fc7e25fa78c559df884377fb8b0a 8ea086ad722d2a23c3197b646a0c5be5ae043d842bf89ec31203cf93e37419e2
GET /movies/screenshot/felicita-2020-medium-screenshot3.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 23434
last-modified: Sat, 30 Oct 2021 06:13:09 GMT
etag: "617ce275-5b8a"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hoB8mpIquXfAK%2FWIxx3v5ozCE4Ewjw9RGAObD0LT0SRtyQbEx9sR0YPtgbh0taUlTWyTqWNp6O6SCtUoFIkF1YByHsPVNU4%2FrYlN%2BgELg6SMDShaqjKHOrR4A0kZPBrtGNpS8ro%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea22b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js | 192.243.59.13 | 200 OK | 28 kB |
URL GET HTTP/1.1growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectgrowingcastselling.com Fingerprint3E:B6:D3:62:BC:57:AD:19:9E:FA:67:C4:B3:FA:10:7C:98:4A:71:2B ValidityThu, 18 Apr 2024 13:01:11 GMT - Wed, 17 Jul 2024 13:01:10 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash46282a192b63deedaba39fbd00f600e8 954a7b302e10832fe015aa545e746fbddae0dbf6 787afa2289cf91bf919d6ead1f5ce6495d883b4a7683eb35b7854f81d9abc854
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /b1/27/0e/b1270e96b85c3dd200807d09a940c676.js HTTP/1.1
Host: growingcastselling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 17:26:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6c7ee2dfa12a486eeb513640697354fe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js | 192.243.59.13 | 200 OK | 16 kB |
URL GET HTTP/1.1growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectgrowingcastselling.com Fingerprint3E:B6:D3:62:BC:57:AD:19:9E:FA:67:C4:B3:FA:10:7C:98:4A:71:2B ValidityThu, 18 Apr 2024 13:01:11 GMT - Wed, 17 Jul 2024 13:01:10 GMT
File typeJavaScript source, ASCII text, with very long lines (44033), with no line terminators Hash9f401b79e89a70692acce5e1415f5dc8 068857ebffe94ef8c5f62549a3d2cd389ee3eebf 4d68131744401dbec46ddc2ac4a6573e48b337320c9614a75391e3c8935b773a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js HTTP/1.1
Host: growingcastselling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 17:26:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=0; expires=Tue, 07 May 2024 20:26:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 56ac997abc86b586c678c3170fb2cce6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP54.230.218.11:0
Hash691c3f87e4fe41a736328d3c71e2dbdc fd76f455b38ba18f00a6fb81e3585201eb3c43f6 8ac709de568d48e4c9e64b75afa6cd3fed58e2cf0c21e823af01ab342e6794b9
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 04 May 2024 17:26:11 GMT
Last-Modified: Sat, 04 May 2024 16:02:43 GMT
Server: ECAcc (ska/F77E)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TjF87GvuwWvtvf1ka9K6bIYm1bHnVhrbYh1o0LgNkU_tTa7AMlsNBw==
Age: 5008
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP54.230.218.11:0
Hash691c3f87e4fe41a736328d3c71e2dbdc fd76f455b38ba18f00a6fb81e3585201eb3c43f6 8ac709de568d48e4c9e64b75afa6cd3fed58e2cf0c21e823af01ab342e6794b9
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 04 May 2024 17:26:11 GMT
Last-Modified: Sat, 04 May 2024 17:01:05 GMT
Server: ECAcc (ska/F790)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9QS5jjvg29gf4eR8UfGXYCyU03o3XZDf5LHRddz19A-lU6oJUHGDrA==
Age: 1506
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash6623fff18881b321161114366ce7c538 4a5b6e78612ca091ad890b5057662e7a22808d8b 5b140fb967e271a428a95bc95636be8d73173d966ecb5921bbb1739b3a901628
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; expires=Tue, 02 May 2034 17:26:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash8d73aa6b3c312a5861b157a25f5329dd ffe61318f58b1646ad20873b49c4668beeac683f 4ad558042e442511ec966a24dc80cb0da238f1b5bdff6b9c9cd4267a8773d343
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=b55073a6-a8a9-4417-beb4-418c5a357d4c:3:1; expires=Tue, 02 May 2034 17:26:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 32 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 7096aaf69c1dfcc479299ff362f898a4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 17:26:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kgicCa927niiCEI1ztaR8Q2pgH5O3hIW9MJ%2BERaYxCoP64eA6vTfzLDRj1XvVthR%2B3jpxTcRZqyKzq1qekPz%2FSEx%2FUIqi4yPfotUIXCiSxBKB%2BAhb8hQvjBo%2BWEyrdpmacqwCuNzH3v4axltSUfSFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c46caeb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 41 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0e5f5ac6941914e54883565b03cab5f4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 17:26:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4TFBXGpW9aCo6DEqPQrhr3OanHORF4T9GDMLw0TJ2UHium%2F1b30uTOPdO3%2FOC78Z2eHu792fpFsSh2vNlj%2FQCL8LPMAZcGzi5xxzwmjJKqAWidZ6ONY73a17tiaxGkl7BuvHqsldYJjmLpgQYkzNqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c46cb6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png | 104.21.69.3 | 200 OK | 7.0 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 152 x 152, 8-bit/color RGB, non-interlaced Hashf87afcf11d459620ff02da6112365db2 d09e6d4e7db706569474bfb7ec93f31ccbd6ed69 a70913fad67537f16d871e4c456c8f4484106f6d4ef3e12fa3c3b2eceefee508
GET /static/yts/image/apple-touch-icon-180x180.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=b55073a6-a8a9-4417-beb4-418c5a357d4c%3A3%3A1; pp_main_b1270e96b85c3dd200807d09a940c676=1; sb_page_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_onpage_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_main_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_count_0a2f9bfefa2d59b6782f748beec9f30e=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: image/png
content-length: 6973
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-1b3d"
expires: Thu, 30 May 2024 16:30:16 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 348956
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xE6Ye2IF26c1UTQPeLIKAQgtqu11iWdLjBD8PwRQwa571solOo6BgRlLvqHZTHV61u465RH0jO9V2MGQW%2F%2FDTgocmGaZWShfN4Aat9S1NiJdwjzTnwCrxYYBR%2BccSfLz4YpGg8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c76873b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| capaciousdrewreligion.com/advertisers.js | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 17:26:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 98995c75952800d92f85761602e51d2f
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| supposedbrand.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&psid=CF-3448_0&uuid=60a8aeec-addd-4afd-9a8a-b768bee0e0b2%3A1%3A1 | 172.240.108.84 | 200 OK | 7.7 kB |
URL GET HTTP/1.1supposedbrand.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&psid=CF-3448_0&uuid=60a8aeec-addd-4afd-9a8a-b768bee0e0b2%3A1%3A1 IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hash8b8dbef3a84f947026a48cea10555e45 ff4822bc78fb4237605ebc15eda2493460e26406 852f919e2bbb72335ce7411176be21f4d8a38f25fe1978fda093cf96eceec75f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&psid=CF-3448_0&uuid=60a8aeec-addd-4afd-9a8a-b768bee0e0b2%3A1%3A1 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:12 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://en.yts-official.mx
Access-Control-Allow-Origin: https://en.yts-official.mx
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16587847; expires=Sun, 05 May 2024 17:26:12 GMT; secure; SameSite=None
uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; expires=Sat, 11 May 2024 17:26:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 17:26:12 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 17:26:12 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 05 May 2024 17:26:12 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 05 May 2024 17:26:12 GMT; secure; SameSite=None
slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]; expires=Sat, 04 May 2024 17:26:17 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: adf5ebe53a03937dae34f686a72bcff2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| en.yts-official.mx/static/yts/image/favicon-16x16.png | 104.21.69.3 | 200 OK | 619 B |
URL GET HTTP/3en.yts-official.mx/static/yts/image/favicon-16x16.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Hashea830fdd4f9a6d19aa7455dabdac987a b0d567d6b4d40959e1bd44032f6bc2331057b319 71148160c085a70d1af7708c1d52cfcf39f8ef6e4ce13f0f20c080b2e19195db
GET /static/yts/image/favicon-16x16.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=b55073a6-a8a9-4417-beb4-418c5a357d4c%3A3%3A1; pp_main_b1270e96b85c3dd200807d09a940c676=1; sb_page_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_onpage_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_main_0a2f9bfefa2d59b6782f748beec9f30e=1; sb_count_0a2f9bfefa2d59b6782f748beec9f30e=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:12 GMT
content-type: image/png
content-length: 619
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-26b"
expires: Thu, 30 May 2024 22:27:04 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 327548
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cs3sTpbjHn1QB8DvdhJg0Dq3AI4Za%2F8DdAI%2BhFCl8p6%2BLHn6vIcFO49a7prJgxhT0bRLtT9Ee%2FqehehmCyo%2BmXbAs6rl4hOmhc36AjHNT%2FYwGXSdo7ApPZ7br33EyTigYZ5azbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31ca5debb4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| supposedbrand.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5mZ3czu2kMxTbdEY1NaRUGhvDfvzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0uLv3BzO%2FP93vwfd97X%2B%2FlZ8RHTk9XPtLbUim6uFR1K%2B985nkXKmsyyXuVXjO4GdQvVEz3vVZQdd%2BtXBHhpl70Xc91PdertKURke4tjkHI9F7Lq7bcat2vekt19Mzzvc0dWOqAd8%2FIq5B8NP%2FQOQcZDpHEP64Iu5np9PzlOFc00wZdfvhJspnoIkE8KyPjIEoOp9vQ9qR9Hzo5mNCF7v6%2FyOSIOL%2FfB0sOpyTBuvsTnkxBJGD8JRTdIYQaQtIhQr0LyU8IEHJcXUcS37mqTUG3nqF0jI7I%2FJPHkMWIzP99Dkn8w7KSvcoNrfJM6sSiF5WQvSFkZ4g0P0K2PQdZHCHMvoLkf5DFJ2tI4v11qzQkP307cGmTChEuUM75Qp1GfKFFm3SBNYImE8IVLvMnBkk5hIyGUKIPah3k4086yCMHeeog5qeV0PO8hstD6jZbYVjjDcEC7nq0EXnUc4Mm8nCsoY8s7SNUfYRmB6nZwab85mTpA5j8N9iNEpY7sBlBl5coBEFhCQpKUEiCIiMouuUBV9a35R2ubM68afanuVYOdNbZowc664iEgJo%2BDC%2F30jPyysTDp29ewaY4rbjUj1osEhH1%2BVKLBY2mHzXqY%2BFhK6q5AlbevdReqNXrzZsupJ2bSN%2BWI%2FL66mtI5Yi8ePtfMHoEq44QSgc0fwu0KEE3Smwnh1uZrepEgOsSaTaPbMvZU2fkjQmL9V0LER6TaSA0JVJT4kv5kKCjbg2u64LsX9eFJT%2Btp5mM5TYd3%2FKNjGbC%2Be5DsVVow1dXbP%2Fu%2B%2BEYGJf3PhY2W6MJl0nHku%2BXJefCtLUJBfl11X4q2LXcbiznJsnTtWuX2qtxaoS1UidDUHly%2BTZCOSIvP%2Fhi8nzPf%2F4I0gxh8hJxPmMq9RHCdAc2nc2sJjBq1rPUQZGXA%2BOz2VBJAiVmPWUlrDi%2B%2BKj319PHv7TBxPGDf55hA0PHp6ks9%2BwtdMwcaLaLJC7RNSW6qgRVfdj8hUGWmuOLf9YmAabmBkyZuX2mjPp2YvL4l8HK00qjVnNp0FryGg0qGqzuN6PA45T69cAPAlpDZkdRoH%2F%2BDwAA%2F%2F8BAAD%2F%2F1ufKJOYBAAA | 172.240.108.84 | 200 OK | 7 B |
URL GET HTTP/1.1supposedbrand.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5mZ3czu2kMxTbdEY1NaRUGhvDfvzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0uLv3BzO%2FP93vwfd97X%2B%2FlZ8RHTk9XPtLbUim6uFR1K%2B985nkXKmsyyXuVXjO4GdQvVEz3vVZQdd%2BtXBHhpl70Xc91PdertKURke4tjkHI9F7Lq7bcat2vekt19Mzzvc0dWOqAd8%2FIq5B8NP%2FQOQcZDpHEP64Iu5np9PzlOFc00wZdfvhJspnoIkE8KyPjIEoOp9vQ9qR9Hzo5mNCF7v6%2FyOSIOL%2FfB0sOpyTBuvsTnkxBJGD8JRTdIYQaQtIhQr0LyU8IEHJcXUcS37mqTUG3nqF0jI7I%2FJPHkMWIzP99Dkn8w7KSvcoNrfJM6sSiF5WQvSFkZ4g0P0K2PQdZHCHMvoLkf5DFJ2tI4v11qzQkP307cGmTChEuUM75Qp1GfKFFm3SBNYImE8IVLvMnBkk5hIyGUKIPah3k4086yCMHeeog5qeV0PO8hstD6jZbYVjjDcEC7nq0EXnUc4Mm8nCsoY8s7SNUfYRmB6nZwab85mTpA5j8N9iNEpY7sBlBl5coBEFhCQpKUEiCIiMouuUBV9a35R2ubM68afanuVYOdNbZowc664iEgJo%2BDC%2F30jPyysTDp29ewaY4rbjUj1osEhH1%2BVKLBY2mHzXqY%2BFhK6q5AlbevdReqNXrzZsupJ2bSN%2BWI%2FL66mtI5Yi8ePtfMHoEq44QSgc0fwu0KEE3Smwnh1uZrepEgOsSaTaPbMvZU2fkjQmL9V0LER6TaSA0JVJT4kv5kKCjbg2u64LsX9eFJT%2Btp5mM5TYd3%2FKNjGbC%2Be5DsVVow1dXbP%2Fu%2B%2BEYGJf3PhY2W6MJl0nHku%2BXJefCtLUJBfl11X4q2LXcbiznJsnTtWuX2qtxaoS1UidDUHly%2BTZCOSIvP%2Fhi8nzPf%2F4I0gxh8hJxPmMq9RHCdAc2nc2sJjBq1rPUQZGXA%2BOz2VBJAiVmPWUlrDi%2B%2BKj319PHv7TBxPGDf55hA0PHp6ks9%2BwtdMwcaLaLJC7RNSW6qgRVfdj8hUGWmuOLf9YmAabmBkyZuX2mjPp2YvL4l8HK00qjVnNp0FryGg0qGqzuN6PA45T69cAPAlpDZkdRoH%2F%2BDwAA%2F%2F8BAAD%2F%2F1ufKJOYBAAA IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5mZ3czu2kMxTbdEY1NaRUGhvDfvzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0uLv3BzO%2FP93vwfd97X%2B%2FlZ8RHTk9XPtLbUim6uFR1K%2B985nkXKmsyyXuVXjO4GdQvVEz3vVZQdd%2BtXBHhpl70Xc91PdertKURke4tjkHI9F7Lq7bcat2vekt19Mzzvc0dWOqAd8%2FIq5B8NP%2FQOQcZDpHEP64Iu5np9PzlOFc00wZdfvhJspnoIkE8KyPjIEoOp9vQ9qR9Hzo5mNCF7v6%2FyOSIOL%2FfB0sOpyTBuvsTnkxBJGD8JRTdIYQaQtIhQr0LyU8IEHJcXUcS37mqTUG3nqF0jI7I%2FJPHkMWIzP99Dkn8w7KSvcoNrfJM6sSiF5WQvSFkZ4g0P0K2PQdZHCHMvoLkf5DFJ2tI4v11qzQkP307cGmTChEuUM75Qp1GfKFFm3SBNYImE8IVLvMnBkk5hIyGUKIPah3k4086yCMHeeog5qeV0PO8hstD6jZbYVjjDcEC7nq0EXnUc4Mm8nCsoY8s7SNUfYRmB6nZwab85mTpA5j8N9iNEpY7sBlBl5coBEFhCQpKUEiCIiMouuUBV9a35R2ubM68afanuVYOdNbZowc664iEgJo%2BDC%2F30jPyysTDp29ewaY4rbjUj1osEhH1%2BVKLBY2mHzXqY%2BFhK6q5AlbevdReqNXrzZsupJ2bSN%2BWI%2FL66mtI5Yi8ePtfMHoEq44QSgc0fwu0KEE3Smwnh1uZrepEgOsSaTaPbMvZU2fkjQmL9V0LER6TaSA0JVJT4kv5kKCjbg2u64LsX9eFJT%2Btp5mM5TYd3%2FKNjGbC%2Be5DsVVow1dXbP%2Fu%2B%2BEYGJf3PhY2W6MJl0nHku%2BXJefCtLUJBfl11X4q2LXcbiznJsnTtWuX2qtxaoS1UidDUHly%2BTZCOSIvP%2Fhi8nzPf%2F4I0gxh8hJxPmMq9RHCdAc2nc2sJjBq1rPUQZGXA%2BOz2VBJAiVmPWUlrDi%2B%2BKj319PHv7TBxPGDf55hA0PHp6ks9%2BwtdMwcaLaLJC7RNSW6qgRVfdj8hUGWmuOLf9YmAabmBkyZuX2mjPp2YvL4l8HK00qjVnNp0FryGg0qGqzuN6PA45T69cAPAlpDZkdRoH%2F%2BDwAA%2F%2F8BAAD%2F%2F1ufKJOYBAAA HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:12 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 737b30ccf35d371fecff478c3be5ef56
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=b1270e96b85c3dd200807d09a940c676&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.20 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=b1270e96b85c3dd200807d09a940c676&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=b1270e96b85c3dd200807d09a940c676&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 17:26:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 82cd10a30574854111276698af2dafc5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a2f9bfefa2d59b6782f748beec9f30e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 | 192.243.59.20 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a2f9bfefa2d59b6782f748beec9f30e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=b55073a6-a8a9-4417-beb4-418c5a357d4c&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=0a2f9bfefa2d59b6782f748beec9f30e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 17:26:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a999adba198d326a853a175e6df69920
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| en.yts-official.mx/movies/felicita-2020/ | 104.21.69.3 | 200 OK | 6.1 kB |
URL GET HTTP/3en.yts-official.mx/movies/felicita-2020/ IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1067), with CRLF line terminators Hash5f230d9a69c5846336bc138dea6be424 2ce83d69786fa96c29168f8a6f92a2cfbbd1c8a3 8f0461325350a2b5b71aee406643742fe5677b39cb1ffb7cd9d5b4461f9c6dce
GET /movies/felicita-2020/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XWkL%2F%2Bn55AmV8lttPCzmN0dxGLhKhxFmV7jZDvH50uctCjoqiYFgz9R5rFXB3UcUMSBM6g8mKcbCDI0Ts80AvIAd4UH%2FLEgeANYQHgArrJR%2BH1w4RkOHy3IbTDoxrYAjPLm3qjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31c42b83b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif | 188.114.96.1 | 200 OK | 206 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeGIF image data, version 89a, 480 x 360 Size206 kB (206291 bytes) Hash0b33face774f2203446507ce5f075538 1dd3522529bce7739df0687f47f5bc84356698a0 ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2
GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 341200
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LQ5DkkFi37b60Fy8viJ0P4I14fjVYGlN4v74oUrZsd82EZG7u9172ujUfMTYvX1%2BqsWbhXXaZInN4%2FeS1Y7SpzA0GH8uwq4gTnYp4CncNPpZMJGy6LhpuRVxOhtv6GirzqMHQm1ou49c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cfc869b500-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 | 188.114.96.1 | 206 Partial Content | 34 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Hash69e52ff16a779d8ab66a1156cc50ab23 27f8897a2acc3bcfd319c267d137aaa4650fb3c5 2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61
GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Sat, 04 May 2024 17:26:13 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 341191
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vbwHjAOxaHSRJ%2FZhZ020nblcdTa%2FLrIpT%2Bs6JE3Ynb6%2FBaeNw1N2atuvbbRySFKpwTVIvfiS10re0yWBz5rtJjRzpr%2FYG%2BypEip6rwfea5S0lM8CnwC2XXtno1Fh2FvO0OCglOkdsM9i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cfc875b500-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css | 188.114.96.1 | 200 OK | 4.9 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash49a38187f94418e173e4bcc50c96dc4b b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293 92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0
GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 184693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2BXXUo%2FYhh5WAdeqP%2Fw%2Bwyw%2FA9XnTSqIGaeeBWDHStYT83PYYkxmneL05bp1qwbC6UWlh%2BbRIkUE0mZT8%2Fu04%2FmR58OiHnecIwuu6vhtCFZH0s%2FKghvQkeB7OI4YpoTemrTne7BloQD3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cf2e73569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=74 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=74 IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=74 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.131:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 127075
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.131 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.131:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Apr 2024 10:46:32 GMT
expires: Wed, 30 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 369582
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=74 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=74 IP172.240.127.234:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=74 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html | 104.26.7.19 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html IP104.26.7.19:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash988cd00695890a395de736ef1f43180a fc35045adb5a0bb89e9150574db517cffb44b0c9 100f83963832c14a85c4d7095f0279b0962b83ee6323481ece9b1b2b39515036
GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r5kRwOzuKk0YjYKkhWkxK6GPvtkc%2FbpzR9Uh4rhNEyXnCccHHMQzZZxH1WSOZyst0FAdG810809bsw4XtF8yf%2BGFCd0gdhMMAX3XGcQd%2BfJSAwf%2BLJuBQEbvd3IZtPoUtuyHND0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31caffdf5694-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| supposedbrand.com/pixel/sbs?c=1 | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/pixel/sbs?c=1 IP172.240.127.234:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/style/modded1.js?yify=1 | 104.21.69.3 | 200 OK | 60 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/modded1.js?yify=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJavaScript source, ASCII text, with very long lines (65452) Hash60de675fcd2844a3ffbb68550d303076 8a53cc2f554a8ef1f58f3fd1996a3c3552ea5472 1c821bdab262418e3742bfa3c295c3b668724f7e8898b45638958a898bd93d33
GET /static/yts/style/modded1.js?yify=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:38 GMT
vary: Accept-Encoding
etag: W/"65d2c88e-27b24"
expires: Sat, 04 May 2024 18:04:33 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 40898
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JZG2YJSPOKTTzx%2FyriArykCXargMdFNLKNhO0xJ9ZKPd8wFH1XbmjEOQUjiIdn%2FZafEc0JUEnxNjlf0cb5NJygLCzriPGnxQsbu5Cp82SRiS6Txc3iI32BBY7RxzhL%2Fo2xjV4dA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31beea2bb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| supposedbrand.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5nZ%2F2sPxTTdEo1NaRUFhfL%2BzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0Gl%2F5g5vfn%2Bz34vu%2B9r3ezU1JBRk%2BWPzJbSmu6WC%2F7pXc%2BC4ILpVUVZ%2F1Sv9W42ahdKNnee%2B1G2X%2B3dEXyDbNY8QPfD%2Fyg1FFWhqa%2FOAGhknvtoNz2y7VKOajX0LfP9y7z4KgH0Tslr0KJ8fxD7xwUHyGOflyWbiM1yfnLUaZpaix64uCTeCM2eYxoVobWQxgfnG3DuOPOfZh4f0oXpvf%2FIlNj4v1%2BHyw%2BOCMJ1tub8mQaMgYTLyHvjSD1CIqOwM0OlDgmABe4uoY4unPV2JxuPkPpBB2T%2BSePofIxmf%2F7HOLohyWt%2BqUbRmepMrFDPyyg%2BiOo7ghJdoh0aw4qPwRPv4ISf5DFJ6uIo701pw2UOHm74dMWlZIvUCHEQo2GYqFNW3SBNRstJqUvfVaZGqTUCCocQcsBqPOQTT7lIQs9ZImHSJyUeBAETV9w6rfanFdFU7KG8APaDAMa%2BI0WMj7RMECaDMD1ANxuI7Hb2FDfHNc%2FgM1%2Bg1sv4IQHlxL0RIFcEuSOIKcEuSLIU4K8V%2BwL7SquuCO0y1hwlitnuVoMTdrdpfsm7cqYgNoBrCh2k1PyytTDp29ewYY8Kfm0ErZZKENaEfU2azRblbBZmwjn7bDqSzh191JnoVqrtW76UG5uKn1LjcnrK68hUWPy4u1%2FweghnD4EVx5o9hZoXoCuF9iKDzZTVzaxhDAFknQe6aa3q0%2FJG1MWazsOkh%2BRswC3BRJb4Ev1kKCrbw2vm5zsXTe5Iz%2BtJamK1Bad3PKNlKbS%2B%2B5DuZkbK1aW3eDu%2B3wCTMp7H0uXrtJYqLjryPdLSghpO8ZySX5dcZ9Kdi1z60uZjbNk9dqlzkqUWOmcMvEIVB1fvg2uxuTlB19Mn%2B%2F5zx9B2RFsViDKZkyVOQRPtuGS2cwZAqtnPUs85FkxtBU2G2pFoOWsp6yAk0cXH%2FX%2Fevr4lw6YPHrwzzNsaOnkNFXFrruFrp0DTXcQRwV6tkBPF6B6AJe9MEwTe3Txz%2Bo0wPTckGk7t8e01d9OTZ78Ujh1Uqr6oslkKJtM1uq1UHLB6nXm85Czqmi1OFI3Dhvm5%2F8AAAD%2F%2FwEAAP%2F%2F20v9e5gEAAA%3D | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5nZ%2F2sPxTTdEo1NaRUFhfL%2BzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0Gl%2F5g5vfn%2Bz34vu%2B9r3ezU1JBRk%2BWPzJbSmu6WC%2F7pXc%2BC4ILpVUVZ%2F1Sv9W42ahdKNnee%2B1G2X%2B3dEXyDbNY8QPfD%2Fyg1FFWhqa%2FOAGhknvtoNz2y7VKOajX0LfP9y7z4KgH0Tslr0KJ8fxD7xwUHyGOflyWbiM1yfnLUaZpaix64uCTeCM2eYxoVobWQxgfnG3DuOPOfZh4f0oXpvf%2FIlNj4v1%2BHyw%2BOCMJ1tub8mQaMgYTLyHvjSD1CIqOwM0OlDgmABe4uoY4unPV2JxuPkPpBB2T%2BSePofIxmf%2F7HOLohyWt%2BqUbRmepMrFDPyyg%2BiOo7ghJdoh0aw4qPwRPv4ISf5DFJ6uIo701pw2UOHm74dMWlZIvUCHEQo2GYqFNW3SBNRstJqUvfVaZGqTUCCocQcsBqPOQTT7lIQs9ZImHSJyUeBAETV9w6rfanFdFU7KG8APaDAMa%2BI0WMj7RMECaDMD1ANxuI7Hb2FDfHNc%2FgM1%2Bg1sv4IQHlxL0RIFcEuSOIKcEuSLIU4K8V%2BwL7SquuCO0y1hwlitnuVoMTdrdpfsm7cqYgNoBrCh2k1PyytTDp29ewYY8Kfm0ErZZKENaEfU2azRblbBZmwjn7bDqSzh191JnoVqrtW76UG5uKn1LjcnrK68hUWPy4u1%2FweghnD4EVx5o9hZoXoCuF9iKDzZTVzaxhDAFknQe6aa3q0%2FJG1MWazsOkh%2BRswC3BRJb4Ev1kKCrbw2vm5zsXTe5Iz%2BtJamK1Bad3PKNlKbS%2B%2B5DuZkbK1aW3eDu%2B3wCTMp7H0uXrtJYqLjryPdLSghpO8ZySX5dcZ9Kdi1z60uZjbNk9dqlzkqUWOmcMvEIVB1fvg2uxuTlB19Mn%2B%2F5zx9B2RFsViDKZkyVOQRPtuGS2cwZAqtnPUs85FkxtBU2G2pFoOWsp6yAk0cXH%2FX%2Fevr4lw6YPHrwzzNsaOnkNFXFrruFrp0DTXcQRwV6tkBPF6B6AJe9MEwTe3Txz%2Bo0wPTckGk7t8e01d9OTZ78Ujh1Uqr6oslkKJtM1uq1UHLB6nXm85Czqmi1OFI3Dhvm5%2F8AAAD%2F%2FwEAAP%2F%2F20v9e5gEAAA%3D IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRx%2BE%2BPJgyg9KCrswYNCs5nZ%2F2sPxTTdEo1NaRUFhfL%2BzeaZN%2FOG92Z2NjkFA9Lj6qXXybdJQ7WIgnizlU3BQ0DI6iUHc%2BtdKPRWkd0Gl%2F5g5vfn%2Bz34vu%2B9r3ezU1JBRk%2BWPzJbSmu6WC%2F7pXc%2BC4ILpVUVZ%2F1Sv9W42ahdKNnee%2B1G2X%2B3dEXyDbNY8QPfD%2Fyg1FFWhqa%2FOAGhknvtoNz2y7VKOajX0LfP9y7z4KgH0Tslr0KJ8fxD7xwUHyGOflyWbiM1yfnLUaZpaix64uCTeCM2eYxoVobWQxgfnG3DuOPOfZh4f0oXpvf%2FIlNj4v1%2BHyw%2BOCMJ1tub8mQaMgYTLyHvjSD1CIqOwM0OlDgmABe4uoY4unPV2JxuPkPpBB2T%2BSePofIxmf%2F7HOLohyWt%2BqUbRmepMrFDPyyg%2BiOo7ghJdoh0aw4qPwRPv4ISf5DFJ6uIo701pw2UOHm74dMWlZIvUCHEQo2GYqFNW3SBNRstJqUvfVaZGqTUCCocQcsBqPOQTT7lIQs9ZImHSJyUeBAETV9w6rfanFdFU7KG8APaDAMa%2BI0WMj7RMECaDMD1ANxuI7Hb2FDfHNc%2FgM1%2Bg1sv4IQHlxL0RIFcEuSOIKcEuSLIU4K8V%2BwL7SquuCO0y1hwlitnuVoMTdrdpfsm7cqYgNoBrCh2k1PyytTDp29ewYY8Kfm0ErZZKENaEfU2azRblbBZmwjn7bDqSzh191JnoVqrtW76UG5uKn1LjcnrK68hUWPy4u1%2FweghnD4EVx5o9hZoXoCuF9iKDzZTVzaxhDAFknQe6aa3q0%2FJG1MWazsOkh%2BRswC3BRJb4Ev1kKCrbw2vm5zsXTe5Iz%2BtJamK1Bad3PKNlKbS%2B%2B5DuZkbK1aW3eDu%2B3wCTMp7H0uXrtJYqLjryPdLSghpO8ZySX5dcZ9Kdi1z60uZjbNk9dqlzkqUWOmcMvEIVB1fvg2uxuTlB19Mn%2B%2F5zx9B2RFsViDKZkyVOQRPtuGS2cwZAqtnPUs85FkxtBU2G2pFoOWsp6yAk0cXH%2FX%2Fevr4lw6YPHrwzzNsaOnkNFXFrruFrp0DTXcQRwV6tkBPF6B6AJe9MEwTe3Txz%2Bo0wPTckGk7t8e01d9OTZ78Ujh1Uqr6oslkKJtM1uq1UHLB6nXm85Czqmi1OFI3Dhvm5%2F8AAAD%2F%2FwEAAP%2F%2F20v9e5gEAAA%3D HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3741c3a74893fc7b614a9ba23d11da7e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| en.yts-official.mx/static/yts/image/logo-imdb.svg | 104.21.69.3 | 200 OK | 1.8 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-imdb.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash5cd012116b0d0e653f8e53e813f57ce1 ce512c7a43e9361790d42723f6742856ea546225 48cd81eac0d91d7302265418beeba17e24df75334487e7fa83111ec861b9398a
GET /static/yts/image/logo-imdb.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: W/"65d33152-710"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xAQPgoyDwu6l%2FVcU%2FAg7o%2FwwMcuJXxGyqFh1MedUlO9XAArTfwnxaECbewVSJxuQGqd0HY4i3J96HCA18kg4EfiJx6p%2BWLopdSicVQRnsm86Z2CmO8ITzVhpba0JbAKTMUTz%2FOE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beda0fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext | 142.250.74.106 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (9902), with no line terminators Hashda660c7ad34dd81e9f9a9032cc68718a 6bc87a2b72cc76f4253e09a1b7d095f29dc12e13 67d1981c897a8c33dd993afbcd2384fbb40a755ae34e3f43e7bbfbd94c0555f6
GET /css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 17:26:11 GMT
date: Sat, 04 May 2024 17:26:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=636 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=636 IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=636 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/images/website/icon-search.svg | 104.21.69.3 | 200 OK | 894 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/icon-search.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash9caad64a555d10c835c1e121b53743b0 5db8cc1d36d939a65725c4869ebec8cc0b5ce9e3 fa70e1614aed8ae3b0463b4d9884de60fd528951a068e6a13a60a329ef93face
GET /static/yts/images/website/icon-search.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-37e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6605
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EMVVd1UQ7qa9VMdGxfixCcbdJJ7Q3G4O59dWqRYeghwrM6T%2FsATg2GiWj7gGrN9Io1%2B8VkYzz1N7kQ6H%2BMAh2HskF8rzS8YaBs7K6eRV04WFRulEhLREKbne6K%2Fc1j%2FycVJG5iQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c01c08b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 | 142.250.74.131 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 IP142.250.74.131:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22052, version 1.0 Hashf0e48ce2beda9e8cbd7d915bf1b1ae71 3dc1cfff1759b0959cc7fb17517651ec850d584d b2504b3c20c2feb37e78773b788dd09a9cc43c9f36086bc1e2f83a6366ebaa34
GET /s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 16:38:06 GMT
expires: Fri, 02 May 2025 16:38:06 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:00:24 GMT
content-type: font/woff2
age: 175685
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css | 188.114.96.1 | 200 OK | 3.3 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (3556), with no line terminators Hash5a37dc16b8eecffd5e7e805fee49218c 4187086691ead46033b8f2e76c4efdb611137949 436f451c35127aa88f59b29f7c8df41b3822dc16ada4d685fbeb537ecbbe914c
GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 184693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5N5cKUqRljAq9ivS0GxcU3pMIL34qYz0AmfaHNA%2BumP9S6in4Z2KkV28nF9sV1kaTNRvogRUoeWsNGRhpR%2Bt2vkJUe4KAcnFQcgjekkV1iB1rs1l%2BiYjh%2Fh3ZXxi%2FheZ2Gbrf0SbDOZv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cf2e7b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg | 188.114.96.1 | 200 OK | 1.3 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeSVG Scalable Vector Graphics image Hash24937fd159a21f2e91207d5788e86c70 1b07e0334cc16c5cd659de56314bd2188e3a82f9 b38a482faa1471a520d231f954412ee0293b0401610af1392038be206dc51b8a
GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 345557
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDz%2FT8xBj70%2Fs%2FDmpccwrGFiYMugCKsG4Z%2BD6f7CC2vXnPpWob7pg19OEOA7l%2F3VhqM%2BPDvoyKLvWrjijg34gwgp1Td5TM9HjEhtEl80HpER8u6ilcGWNo0n%2FtlJWfXdqidrxS7QRpvn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cfc867b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/css/loading.css | 104.21.69.3 | 200 OK | 2.8 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/css/loading.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (3095), with no line terminators Hasha4e08ea672b525407c93c52dcedabbad 2d01194a908b02dff41147969f92027d83b082d2 ebde13ee7b0fe214ec069389b397750aaa5e58688b527e24ac69506cfdbb7704
GET /static/yts/css/loading.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-b13"
expires: Sat, 04 May 2024 19:34:35 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 35496
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M2VxSL1CYP55vwUkgpULMF3oHT%2BqOCoI0WnEzx%2FN3ECK0Q8T9gKR2pBeC2s%2Bpdn%2FJnHfxrWuQRzbXfrC4QuEIg%2Bk2enSZS%2FNWtl3sfOTSNxHM4tCkTOI%2FgGxgJWrIfTjLEW6YZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea31beda04b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/1080p-quality.svg | 104.21.69.3 | 200 OK | 2.9 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/1080p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash3bcafca097344993580b747f088e7715 c2d58a3d4ae585c470489fd1f41d20f29ff266ca 59119beab43729f25cd7387785275dee4b80fffb59d1cdfa9bf778066b1ab3b6
GET /static/yts/images/website/1080p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-b77"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6559
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IVYlOr4gbJ0lswVcPnGzLnaOYoEeNdOAk%2F5KTB9CekYhhHneXm6qCq59cKcKwEbzqP%2B7P2p1BaTcZAW3f21ZYycFkCcsaAOzkZ6eALFkFSc%2FtFxkYkDHelJJMlloopTTECFaqCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c01c13b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js | 188.114.96.1 | 200 OK | 9.5 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeUnicode text, UTF-8 text, with very long lines (8821), with no line terminators Hashd0707ac5d95047febbb8f131cc7a9af4 65021f149e99900eeaf7d298d2303160872b43f3 3e2e7ab351d401339df520fbd7ce4f177643dca01cad22bf59dd4b3e14853810
GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:26:13 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 184693
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qaIE3aLU34teucPv25Hr4YY2%2FDyl57zGCCqXEeaVZdjYodStmryF%2BxNAAy8KjuN6G9ZsL94eXTsqg8Zkuz604yoIhbVoAnZD4ZMm%2FZlwWrd78lbk4ri%2FZZiZ56YhqyuOJuiiJxumRVaQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31cf2e79569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/movies/cover/felicita-2020.jpg | 104.21.69.3 | 200 OK | 42 kB |
URL GET HTTP/3en.yts-official.mx/movies/cover/felicita-2020.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 896x374, components 3 Hash0d6f4a7b565f8914b009cfabc26a1563 1728ecbb8d2f0de490b3291e7f20f88aa9a10526 3a7feb01da2eb67a528a2590c52a7617eee420a8bb7fa1fe2e4ae30e56c6c5ff
GET /movies/cover/felicita-2020.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 42304
last-modified: Sat, 30 Oct 2021 06:13:06 GMT
etag: "617ce272-a540"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4%2BjTNaR7TR58Zt%2BkhRIstBUqgRrozGuEOSG38f4YUgOnMdrfkUE5Z7W43imFmnW3LTPvcXoL1Tcuo2FczVZ98SKz4bWVO8gsw%2BUF8qxuNhDvINbXhckBLJ38R4SofwOvhGWB4Y8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c01c0ab4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/miami-rhapsody-1995.jpg?v=1 | 104.21.69.3 | 200 OK | 31 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/miami-rhapsody-1995.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash5c400c0d51463c640963bdf0d2bc0a29 b3fc95ac7eba4224a49d53992daa8202c0f2fd16 b0d325834f10c645e168fe173d01b3de6d0815f1622f776f7ab71f47f462d3d3
GET /movies/poster/miami-rhapsody-1995.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/jpeg
content-length: 30569
last-modified: Fri, 29 Oct 2021 00:46:55 GMT
etag: "617b447f-7769"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSkOCHRgNz62%2BJHUmqsxc8rwmuqEn8b3HRD9xkwpc6duw8%2B7i1RA%2BAkMkWmnaeU%2FRjPwMdbkq4Qm9H3c7LyHGL9NaLcyFa6sefmaEsH9xs9mT2KFbiSZ4A751QNHNSCU0dZWtEg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beea1cb4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/play-trailer.svg | 104.21.69.3 | 200 OK | 4.7 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/play-trailer.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash0242c3a16be471023ee4e484a76cb850 811c46ab5800fc814b427e9469b5b55e7f41a35c 6f014889db48c67c7e651a9377b0415007ef9766fbf2ba90a1180b9e539c176a
GET /static/yts/images/website/play-trailer.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-122a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6558
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PeYfW0YI1OXIuUVy0rZ%2FJ9%2FgvKQTs9gZ4%2BpockfYgapn0xASt8xuGNz5zOoQA3CH3Gyvucg9t3yliyJw5rPXVtUWu4TfN84ofBUncNq7l1492yc5d7OpC%2FH2kCwfg%2B0tXu2wXss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c02c2eb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=67 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1supposedbrand.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=67 IP172.240.108.84:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerLet's Encrypt Subjectsupposedbrand.com FingerprintFB:D5:90:17:3B:8A:41:95:9B:5B:7A:FF:E0:B6:22:8C:65:87:5C:E0 ValidityTue, 30 Apr 2024 15:30:02 GMT - Mon, 29 Jul 2024 15:30:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=67 HTTP/1.1
Host: supposedbrand.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=60a8aeec-addd-4afd-9a8a-b768bee0e0b2:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 17:26:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 17:26:13 GMT
date: Sat, 04 May 2024 17:26:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| en.yts-official.mx/static/yts/image/logo-YTS.svg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-YTS.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashfdd85bfbf80d872ea41b942cf21d1db9 6a2d54565cbffa3af342a63931e412ad8837f92d 2234cb288342eab0edfb65ebda4189cf47b40a4b639a25af62c57c03f7ace459
GET /static/yts/image/logo-YTS.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/felicita-2020/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Feb 2024 02:51:28 GMT
etag: W/"65d413b0-5b34"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kv%2FkZMsAY6fLmGton%2Bfl%2Bc4f9ayUhOmt8f8ZI9FatyOenuHsJnEt9Kf8wut%2F2h8RXTsHsAuS1zrYl0oQbXf%2B0sGQXaEYZK9u6E62Q7OpoHX%2FzEy3TjXRKDtvWABpTC9iVsE1pFw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31beda05b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/magnet.svg | 104.21.69.3 | 200 OK | 982 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/magnet.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashb1f2c0a1384b292d61d6ccdb9b4de056 24cb951e1e6da31c99ba0c45638e9d210de60a62 a1339a5f93ce740459f0ef5967f57827ecf0a708e3504146a401d4968650c854
GET /static/yts/images/website/magnet.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-3d6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6559
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fOd9a5oAV8DCxg5UPTPfRLBAgZ3Hi%2BytDo7L%2FtykE%2BNQ8gN%2B7dTzqNxNmvLSLA%2BrQpjxHuVNlNQip%2B7GdbR%2B3Zbnk67mjm6%2BwrUb0SK2iEMcVkKKUek9vUJTRJC2BtvEz4PUM7g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c01c15b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 | 104.21.69.3 | 200 OK | 3.6 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/felicita-2020/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, CFF, length 3560, version 0.0 Hash4e54891305c71736de2da03f14b57434 fbf29db32b5514cad7a908167ce63c76a91a2f12 332ec1d337a38ad421deff49f3585da56563253756da3870b26b46bd025f96e4
GET /static/yts/fonts/icomoon.woff?fmg7s2 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/fonts/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:26:11 GMT
content-type: font/woff
content-length: 3560
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-de8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2910
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2Bsmju98cCE%2FI2RxWK175z85DqrZWRquZCnUtZbC%2FKjIN6Tfs0kZeQ1BjxLNOEnSwXsTfEZayJOfSNlTOActiQJYNvZ5N4iHviMLPlJkDxqOCuUT%2B2ZFxh6UPUoQhHfCtz0B6Vc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea31c02c36b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|