| |  63.250.43.8 | 200 OK | 40 kB |
URL User Request GET HTTP/2IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9462), with CRLF, LF line terminators Hash5e6fb544a6ed0e33ff2319d3e56087b1 c7034eb93353bd0c3c92b3a592d35dd994e20b2d a536e465ada5186d7faa77e57f8c851758106f86bcd37902fb1cd370f86eecbe
GET / HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://blubclips.pro/wp-json/>; rel="https://api.w.org/", <https://blubclips.pro/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://blubclips.pro/>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 6529
accept-ranges: bytes
x-cache: HIT
content-length: 40157
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 63.250.43.8 | 200 OK | 15 kB |
URL GET HTTP/2blubclips.pro/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: text/css
last-modified: Thu, 04 Apr 2024 12:31:25 GMT
vary: Accept-Encoding
etag: W/"660e9d9d-1bae5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 14991
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/css/fonts.css | 63.250.43.8 | 200 OK | 457 B |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/css/fonts.css IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
Hash53d02c162fa5e84278412d531f30d309 0d15e703464ccda2a90951c7b32633382c755365 439b33bd346fde1a965eaad8991a786bc771daa5c5a6dcf0b8a1d1fa1494f4f8
GET /wp-content/themes/hitmag/css/fonts.css HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: text/css
last-modified: Fri, 05 Apr 2024 17:59:57 GMT
vary: Accept-Encoding
etag: W/"66103c1d-e02"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 457
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 | 63.250.43.8 | 200 OK | 22 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hashfbe604525dc7a004d505396511f906bd fa63685b75e0fbbe4b4e37534b9d57ad7c912370 2c051374591f7c373d512e10ab5538d9fdd17efeb861d7756933ad5b73ccab9f
GET /wp-content/themes/hitmag/css/all.min.css?ver=6.5.1 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: text/css
last-modified: Fri, 05 Apr 2024 17:59:57 GMT
vary: Accept-Encoding
etag: W/"66103c1d-190b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 22520
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/style.css?ver=1.3.8 | 63.250.43.8 | 200 OK | 13 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/style.css?ver=1.3.8 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (659) Hashb1a9952107f8a9b31a33bf45def93f76 9f9c65878b846eba015650dcda887e0b276392d7 da3a8a91709236fa91e72649a3575c047088707f2429d43474611d0f08497a8a
GET /wp-content/themes/hitmag/style.css?ver=1.3.8 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: text/css
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
vary: Accept-Encoding
etag: W/"66103c1e-1183f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 13086
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/css/swiper-bundle.min.css?ver=11.0.5 | 63.250.43.8 | 200 OK | 1.9 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/css/swiper-bundle.min.css?ver=11.0.5 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeASCII text, with very long lines (7001) Hash825008e0eca498e103120eea032c6f9a 2a4562519361c1857c9ef9e356945cdcf6a0ea79 507517de78a228b0daa6cb64d059cefa54aba49647b7715a451295a70b7868ad
GET /wp-content/themes/hitmag/css/swiper-bundle.min.css?ver=11.0.5 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:00 GMT
content-type: text/css
last-modified: Fri, 05 Apr 2024 17:59:57 GMT
vary: Accept-Encoding
etag: W/"66103c1d-1c56"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
content-length: 1874
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 63.250.43.8 | 200 OK | 30 kB |
URL GET HTTP/2blubclips.pro/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 12:31:23 GMT
vary: Accept-Encoding
etag: W/"660e9d9b-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 30419
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 63.250.43.8 | 200 OK | 4.9 kB |
URL GET HTTP/2blubclips.pro/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 12:31:23 GMT
vary: Accept-Encoding
etag: W/"660e9d9b-3509"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 4872
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-735x400.jpg | 63.250.43.8 | 200 OK | 52 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-735x400.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 735x400, components 3 Hashd1fd3b057ab14228f681722fe589c3b8 921b33a2c9565e77b9cc5a5620b673ee4cc4112e ca2a0e1fb279b91d721e487e0fee9ccd9ff901bc55b9ff568e49a7960343722f
GET /wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-735x400.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:03:14 GMT
content-type: image/jpeg
content-length: 51649
last-modified: Thu, 18 Apr 2024 07:58:07 GMT
etag: "6620d28f-c9c1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6328
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-135x93.jpg | 63.250.43.8 | 200 OK | 4.6 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-135x93.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 135x93, components 3 Hashd9c66264cb58b30fedd6ff30eb056e89 18c4a13f9d39aed7a0c148c91d12f3af10556021 f2846efc9bd6eeb876ddbebc3594255cd1be0da7037fc0b5cfd413622f786aa6
GET /wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-135x93.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:00 GMT
content-type: image/jpeg
content-length: 4563
last-modified: Thu, 18 Apr 2024 07:58:07 GMT
etag: "6620d28f-11d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-135x93.jpg | 63.250.43.8 | 200 OK | 4.5 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-135x93.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 135x93, components 3 Hashc02b0a6268cd1228b5362fd617d44f6f e2a1594e976e9faac86b98ff03b38f2df641ce76 f626ba0f2742caa09b65778f11bf7b20379ded2786530f871f83ac0b9feb4478
GET /wp-content/uploads/2024/04/jG-KViU_q90-HD-135x93.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:00 GMT
content-type: image/jpeg
content-length: 4506
last-modified: Thu, 18 Apr 2024 07:10:44 GMT
etag: "6620c774-119a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-135x93.jpg | 63.250.43.8 | 200 OK | 5.2 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-135x93.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 135x93, components 3 Hashb4b806c8a850e22665dd1ee9c3d186ff 858ba2f8594c5c66fe9a2057ba629e5ec6d8112d baa0c7d683937b7424341b7ed1ea090863fe77f99badeb733333228a85a769da
GET /wp-content/uploads/2024/04/vCAkeebppWo-HD-1-135x93.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:01 GMT
content-type: image/jpeg
content-length: 5186
last-modified: Thu, 18 Apr 2024 07:06:49 GMT
etag: "6620c689-1442"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-135x93.jpg | 63.250.43.8 | 200 OK | 4.6 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-135x93.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 135x93, components 3 Hash1ff0ef79fec92bc7e738ffb3f32b26b5 7949d40a1a301965531901e42999af2da554c0d4 8148dd16d6db2c85a44793c168c083eae79cfb01339fb74979a97c25ce6a1a8d
GET /wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-135x93.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:01 GMT
content-type: image/jpeg
content-length: 4560
last-modified: Tue, 16 Apr 2024 19:33:53 GMT
etag: "661ed2a1-11d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-348x215.jpg | 63.250.43.8 | 200 OK | 18 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hashf8c1b241d8b6484bddd98562e908f07d 3906439243360dbeb06ab6b11668d29f99a64e1c f3fa442a5eb2574657c2213d33a912d8f161d7e16567e69d262ac1ab9e9735be
GET /wp-content/uploads/2024/04/jG-KViU_q90-HD-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:25 GMT
content-type: image/jpeg
content-length: 18169
last-modified: Thu, 18 Apr 2024 07:10:44 GMT
etag: "6620c774-46f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6557
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-348x215.jpg | 63.250.43.8 | 200 OK | 23 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hashbcb4c2e66943dbb8c0dc541def798b5a 33101c74bcd985a2b888b23558f2851385f018b3 f39de1058852a17c1191adb559a06b8d38779b6955f330ed61549636484c3fd6
GET /wp-content/uploads/2024/04/vCAkeebppWo-HD-1-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:26 GMT
content-type: image/jpeg
content-length: 23101
last-modified: Thu, 18 Apr 2024 07:06:49 GMT
etag: "6620c689-5a3d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6556
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/js/navigation.js?ver=20151215 | 63.250.43.8 | 200 OK | 1.4 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/js/navigation.js?ver=20151215 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hashf5d9d209852795da2a237895e87f2d72 521c90e7aa1c335bc5df2120a144ab800bac1644 ccabeb2cb5391e2956a1866ea45523a82f4117cbfc70e46b2aac5aaa6d3d359a
GET /wp-content/themes/hitmag/js/navigation.js?ver=20151215 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
vary: Accept-Encoding
etag: W/"66103c1e-f05"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 1356
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 | 63.250.43.8 | 200 OK | 416 B |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text Hash75abd4cd8807b312f9f7faeb77ee774b e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
GET /wp-content/themes/hitmag/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
vary: Accept-Encoding
etag: W/"66103c1e-2ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 416
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-135x93.jpg | 63.250.43.8 | 200 OK | 4.5 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-135x93.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 135x93, components 3 Hasha91e9d4489e977ce343f9be7c729c4bf 154747c7b4513d253221a1739d54d2fb54d9ae64 c4e3bb9a36708c7c9d6307ade5c97ae8a00af95dbff02476a5fdb5bd46bb839f
GET /wp-content/uploads/2024/04/kiVLL6wZi_M-HD-135x93.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:59:45 GMT
content-type: image/jpeg
content-length: 4524
last-modified: Tue, 16 Apr 2024 19:04:30 GMT
etag: "661ecbbe-11ac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 2937
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 | 63.250.43.8 | 200 OK | 747 B |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashecd38109e66a9585ef36104f99e16bfa 9bab8fd305f8ac47a5bd530c88f9760042489cde 215c0fae44ee1668bfaa892d62dbc7974b9bffd8d51b53ded1d1b786292b3f3a
GET /wp-content/themes/hitmag/js/scripts.js?ver=1.3.8 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:28 GMT
content-type: application/javascript
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
vary: Accept-Encoding
etag: W/"66103c1e-a9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
content-length: 747
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-348x215.jpg | 63.250.43.8 | 200 OK | 18 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hash9240fd62cc5443b1b0d3f318c4664fd3 c6b437df04cc2edadc4c47d04612ae88a12088fb 1201794bc9c04603a28655c41929b56c7999fe3f7797ff07d25c0eec9cf8df9a
GET /wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:26 GMT
content-type: image/jpeg
content-length: 18071
last-modified: Tue, 16 Apr 2024 19:33:53 GMT
etag: "661ed2a1-4697"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6556
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-348x215.jpg | 63.250.43.8 | 200 OK | 19 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hash3521d4660b6555dd1b501e522c0f1eb8 03bd4874ef6fee8d3b8cbde216eb66114539ee8d 1b9f42f187833d9cd89a1a33b74eaf96bbfb6121433333621f51907f54b16027
GET /wp-content/uploads/2024/04/kiVLL6wZi_M-HD-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:59:45 GMT
content-type: image/jpeg
content-length: 19094
last-modified: Tue, 16 Apr 2024 19:04:30 GMT
etag: "661ecbbe-4a96"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 2937
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-348x215.jpg | 63.250.43.8 | 200 OK | 18 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hash5d7f5a55a9a61ade1393de203cd427ee 83d291ec7fd0c8cde6bb83f3e94d732eefb4e682 cef32886ecd10485dbae3731713e6ee23f0f247789b9bf70091f1e701b89569c
GET /wp-content/uploads/2024/04/ShmSbBdHmUQ-HD-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:30 GMT
content-type: image/jpeg
content-length: 18063
last-modified: Thu, 18 Apr 2024 07:58:07 GMT
etag: "6620d28f-468f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6552
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/cmU4QihvAE4-HD-1-348x215.jpg | 63.250.43.8 | 200 OK | 21 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/cmU4QihvAE4-HD-1-348x215.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x215, components 3 Hash253b74d4397a0053f4669bf9fc04591f 06d6f968dbc8728fb0a752e72770b83274f9ff2b 2039ce007faa8325683a06533d3a75c953e2f09e6202900e7f5e96238feced98
GET /wp-content/uploads/2024/04/cmU4QihvAE4-HD-1-348x215.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:59:45 GMT
content-type: image/jpeg
content-length: 21042
last-modified: Tue, 16 Apr 2024 18:30:58 GMT
etag: "661ec3e2-5232"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 2937
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/js/swiper-bundle.min.js?ver=11.0.5 | 63.250.43.8 | 200 OK | 41 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/js/swiper-bundle.min.js?ver=11.0.5 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65278) Hash1aba3b60641d8dc579dca329a28d74d8 1a54fa817a49108dfdf2e75ce2ae507f007ac2bd 6942f0873b6a7108e18a983b4192ad469011a8131317f88161d6f0917058da22
GET /wp-content/themes/hitmag/js/swiper-bundle.min.js?ver=11.0.5 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:25:01 GMT
content-type: application/javascript
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
vary: Accept-Encoding
etag: W/"66103c1e-243f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 5021
accept-ranges: bytes
x-cache: HIT
content-length: 41220
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| pl23029334.profitablegatecpm.com/5a/45/17/5a45171a18659f50ff8a04b06197afae.js | 172.240.108.68 | 200 OK | 16 kB |
URL GET HTTP/1.1pl23029334.profitablegatecpm.com/5a/45/17/5a45171a18659f50ff8a04b06197afae.js IP172.240.108.68:443
CertificateIssuerLet's Encrypt Subjectprofitablegatecpm.com Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30 ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT
File typeJavaScript source, ASCII text, with very long lines (44040), with no line terminators Hashde1e858c2d94c67fc8fa06ada371705e 0e7ae0acf60020315ba5f5c6a135456ddf13055e 1826234e34b5cb8780bb4791e6afc6f9ee86c5facc04c10dc1e552cb8ebb8982
GET /5a/45/17/5a45171a18659f50ff8a04b06197afae.js HTTP/1.1
Host: pl23029334.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: be845d4c81143aac20efb7d892c1865b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pl23029354.profitablegatecpm.com/dc/26/36/dc26364561dd66a0b9805dc7a0631555.js | 172.240.108.84 | 200 OK | 31 kB |
URL GET HTTP/1.1pl23029354.profitablegatecpm.com/dc/26/36/dc26364561dd66a0b9805dc7a0631555.js IP172.240.108.84:443
CertificateIssuerLet's Encrypt Subjectprofitablegatecpm.com Fingerprint9D:FB:8C:AD:4D:64:98:6B:85:78:33:54:E7:A3:BB:10:ED:77:63:30 ValidityFri, 05 Apr 2024 18:10:33 GMT - Thu, 04 Jul 2024 18:10:32 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashacf9f6704500f9752f69dfd1c9db4461 7226dbb2c86d69b0659429bdb1c171102247acdf a8285cabd8e0b5807b3fab1318e0c4a12474697b0fa4c756a045f6b17035c10b
GET /dc/26/36/dc26364561dd66a0b9805dc7a0631555.js HTTP/1.1
Host: pl23029354.profitablegatecpm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2967-layer=1; expires=Tue, 23 Apr 2024 00:48:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9b73cd12bc111b58dee7a9cb95d2be0a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| proftrafficcounter.com/stats |  18.198.46.224 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.198.46.224:443
CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5c4cc8447f1c0fe045e2fc59d81da6da 3ec62d8956add7b8b42f90e34cc98be395afaf2d dcad1d791831312806094b1a38d656cf333f1dd3e477ee2c7e169415c97c5c64
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:43 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://blubclips.pro
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; expires=Sun, 16 Apr 2034 09:48:43 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.198.46.224 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.198.46.224:443
CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5c4cc8447f1c0fe045e2fc59d81da6da 3ec62d8956add7b8b42f90e34cc98be395afaf2d dcad1d791831312806094b1a38d656cf333f1dd3e477ee2c7e169415c97c5c64
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Cookie: uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:43 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://blubclips.pro
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 | 63.250.43.8 | 200 OK | 29 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29320, version 1.0 Hash523215f3b621ae9406e84e39e7976e67 3ff9b171c3ccbd71c73121b803da01b62c033ed9 78cfcd698660fe6904cdccf493e82f639a1a08707c35df07be4566e511bb04cc
GET /wp-content/themes/hitmag/fonts/ubuntu-bold-webfont.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 29320
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-7288"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-medium-webfont.woff2 | 63.250.43.8 | 200 OK | 29 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-medium-webfont.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28568, version 1.0 Hash29f43fe3556abaad9c673ca2537b1303 764fdf1fcf9cb68dc38ed004cfe67a9ecfa14256 dcee1278430c78c2294f2e960b4d878690eb22c06780ff9671ecd6d2f60e7e11
GET /wp-content/themes/hitmag/fonts/ubuntu-medium-webfont.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:30 GMT
content-type: font/woff2
content-length: 28568
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-6f98"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://blubclips.pro
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6553
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 | 63.250.43.8 | 200 OK | 29 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28592, version 1.0 Hasha72bbb5a10e8ff13010604a1bb4a4037 4accf5cfaa94279c6cfdf8cda1c75270e8278761 c07bdac3cac751c087419fb7be13f75451845e648c0c67376ce388216693265c
GET /wp-content/themes/hitmag/fonts/ubuntu-regular-webfont.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 28592
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-6fb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/fa-brands-400.woff2 | 63.250.43.8 | 200 OK | 117 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/fa-brands-400.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 117372, version 773.768 Size117 kB (117372 bytes) Hashb6356c957274676e6571c1ff5e11c9a8 4022f95e001d734ca8f082b8e7627abd205609ec 3a8924cd5203a28628716aedb5cef0943da4c3b44e3ffcee90ab06387b41c490
GET /wp-content/themes/hitmag/fonts/fa-brands-400.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 117372
last-modified: Fri, 05 Apr 2024 17:59:57 GMT
etag: "66103c1d-1ca7c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 | 63.250.43.8 | 200 OK | 24 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /wp-content/themes/hitmag/fonts/lato-regular-latin.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 23580
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-5c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 | 63.250.43.8 | 200 OK | 19 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18992, version 1.0 Hash8b1081927e10196dfa2642487a7b2e8c b9b32eabae814e96e10c20e43d87a5cafc4dc0d4 c3980ea8f019855a578aef98e57530e78df585bce65b79b9f86a3356fa748bf3
GET /wp-content/themes/hitmag/fonts/opensans-bold-webfont.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 18992
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-4a30"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/fa-solid-900.woff2 | 63.250.43.8 | 200 OK | 156 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/fa-solid-900.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 156496, version 773.768 Size156 kB (156496 bytes) Hash6c4eee562650e53cee32496bdfbe534b 1aae708e3b94ee981b452a918d28ed037fbb5e18 9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
GET /wp-content/themes/hitmag/fonts/fa-solid-900.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/all.min.css?ver=6.5.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 156496
last-modified: Fri, 05 Apr 2024 17:59:57 GMT
etag: "66103c1d-26350"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 | 63.250.43.8 | 200 OK | 23 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /wp-content/themes/hitmag/fonts/lato-bold-latin.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 23040
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-5a00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 | 63.250.43.8 | 200 OK | 24 kB |
URL GET HTTP/2blubclips.pro/wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24408, version 1.0 Hashefee2d080d7bebdd2e0aeb2e030813a0 f8d38f9f9584e48c2e469877ebd94232265585f1 bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /wp-content/themes/hitmag/fonts/lato-regular-latin-italic.woff2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://blubclips.pro/wp-content/themes/hitmag/css/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:29 GMT
content-type: font/woff2
content-length: 24408
last-modified: Fri, 05 Apr 2024 17:59:58 GMT
etag: "66103c1e-5f58"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6554
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-735x400.jpg | 63.250.43.8 | 200 OK | 50 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/jG-KViU_q90-HD-735x400.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 735x400, components 3 Hashefad335873316a06847047f8615f5709 52f7b1205763ab65990bd24e7655ebcc078dcd5f 1adb6d0c717f7c89e643f9ab5275ee9e8e805f239b8e6a96f376c4bf10c6d0bd
GET /wp-content/uploads/2024/04/jG-KViU_q90-HD-735x400.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:01:29 GMT
content-type: image/jpeg
content-length: 49556
last-modified: Thu, 18 Apr 2024 07:10:44 GMT
etag: "6620c774-c194"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6433
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 63.250.43.8 | 200 OK | 5.1 kB |
URL GET HTTP/2blubclips.pro/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 07:59:30 GMT
content-type: application/javascript
last-modified: Thu, 04 Apr 2024 12:31:23 GMT
vary: Accept-Encoding
etag: W/"660e9d9b-4926"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 6553
accept-ranges: bytes
x-cache: HIT
content-length: 5056
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| anguishmotto.com/pixel/purst?dl=0&th=0&sc=0&rs=1795&rd=1795&fd=889&bv=24.4.3467&tmpl=70 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1anguishmotto.com/pixel/purst?dl=0&th=0&sc=0&rs=1795&rd=1795&fd=889&bv=24.4.3467&tmpl=70 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectanguishmotto.com Fingerprint3E:76:BB:C9:7C:0E:40:03:18:FB:3F:29:D5:2D:AF:AD:59:63:01:E3 ValidityTue, 16 Apr 2024 13:54:22 GMT - Mon, 15 Jul 2024 13:54:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=1795&rd=1795&fd=889&bv=24.4.3467&tmpl=70 HTTP/1.1
Host: anguishmotto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 18 Apr 2024 09:48:44 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.76:443
CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:44 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: adb62d3b4a16a4870e4ac52d91388df5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| blubclips.pro/favicon.ico | 63.250.43.8 | 204 No Content | 0 B |
URL GET HTTP/2blubclips.pro/favicon.ico IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1; sb_main_5a45171a18659f50ff8a04b06197afae=1; sb_count_5a45171a18659f50ff8a04b06197afae=1; pp_main_dc26364561dd66a0b9805dc7a0631555=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 18 Apr 2024 07:59:26 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 6558
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5a45171a18659f50ff8a04b06197afae&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 | 192.243.61.225 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5a45171a18659f50ff8a04b06197afae&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=5a45171a18659f50ff8a04b06197afae&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7b7d8e89a7db8546df7d2eee058ae259
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dc26364561dd66a0b9805dc7a0631555&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 | 192.243.61.225 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dc26364561dd66a0b9805dc7a0631555&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=dc26364561dd66a0b9805dc7a0631555&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: addba3bfaf01e8e125d4b30e39d30934
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| predominanttamper.com/sbar.json?key=5a45171a18659f50ff8a04b06197afae&uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1 | 192.243.61.227 | 200 OK | 8.3 kB |
URL GET HTTP/1.1predominanttamper.com/sbar.json?key=5a45171a18659f50ff8a04b06197afae&uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hash3d4b578959c8bb0d6f36cc2e10bf2942 52d8c0f9739fe12586e24cef922305ccde059b89 820cc026ee1df8fa470d928b939ca2deb6f0ce051e3f09b34fab98c9220e2d9e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=5a45171a18659f50ff8a04b06197afae&uuid=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://blubclips.pro
Access-Control-Allow-Origin: https://blubclips.pro
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22928835; expires=Fri, 19 Apr 2024 09:48:44 GMT; secure; SameSite=None
uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; expires=Thu, 25 Apr 2024 09:48:44 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 19 Apr 2024 09:48:45 GMT; secure; SameSite=None
uncs=1; expires=Fri, 19 Apr 2024 09:48:45 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 19 Apr 2024 09:48:45 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 19 Apr 2024 09:48:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a14d803f01d0d956b133737f1ebf0125
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| predominanttamper.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReu3uwh8IMfKLlFYQ4eIriz3TM9PTPmEIxxZXHNLklELyLVVdWz5dZ0NVVd07MLwmJAchz8C3q%2F2c2iRkk8CgaZDYgsCBlPe8hevOpFIWfpcXD0QdV7r75X8L3vvc8O3DlpwNGzG%2B%2FqPakUXW3V%2FdqVD4Lgam1Dpm5YG3aij6Lwas0MXu9Gdf%2FV2tuC7ejVhh%2F4fuAHtTVpRKKHqxUImT3oBvWuXw8b9aAVYmj%2Bm1vnwVIPfHBOXoTk0%2BUn3iVINkHaf3hD2J1cZ6%2B91XeK5tpgwI%2FfS3dSXaToL8LEeEjS43k1tH269hg6PZrRhR78UxjLKfF%2BfIw4PZ6TRDw4nPGMFUSKmP8PxWACoSaQdAKm70LypwRgHDc3kfbv39SmoLt%2Fo7RCp2T5%2BZ%2BQxZQsP7uEtP%2FNdSWHtdtauVzq1GKYlJDDCWRvgsydIN9bgixOwPJPIfnPZPX5BtL%2B4aZVGpKfvdIU7aTRomxFtMPOSpj44UpMebjSaXZYI%2BCduNsKZwJJOYFMJlBiBGo9uOpIDy7x4DIPfX5WY0EQtH3OqN%2FpMtbkbRFH3A9oOwlo4EcdOFb1MEKejcDUCMzsIzP72JEjGPcD7HYJyz3YnGDASxSCoLAEBSUoJEGRExSD8ogr27Dlfa6si4O5b8x9sxzrvHdAj3TeEykBNSMYXh5k5%2BSFSkDvw2cn2BFntRYNW0E7oEEnanWTlp8kHeqHsR8F3TZNqICVJaRdmrW7J6eke%2FEnZHJKLv7%2BLWJ6AqtOwORLoO5l0KIE3S6xl34dKxczJTNbz4wG1yWyfBn5rnegzsnl2QzXNx9BsNNrvzZnBmZKZKbEx%2FIJQU%2FdG9%2FSBTm8pQtLHm1muezLPVrN93ZOc3Hhy3fEbqENX79hR1%2B8wSqgCh%2FcETbfoCmXac%2BSr65LzoVZ04YJ8v26fV%2FEW85uX3cmddnG1ptr6%2F3MCGulTieg1ar%2BYcDklPz%2F8p3Z6l75bgvSTGBcib47JXOD1BOwbB82W%2FC3msCoRU2ceShcOTaNePGoJIESi5zGJey%2F8ngRjw2tflNZHth76Jkl0Pwu0n6JgSkxUCWoGsG6C%2BM8M6fXfpnTiNXSOFZm6TBWRn0%2Bk7m6HsLKs1q72fRp1G0F7TYV7ThsdJIo4JQ2wqgRRbSJ3E6T2m%2Bf%2FAUAAP%2F%2FAQAA%2F%2F%2BlQn5tlAQAAA%3D%3D | 192.243.61.227 | 200 OK | 7 B |
URL GET HTTP/1.1predominanttamper.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReu3uwh8IMfKLlFYQ4eIriz3TM9PTPmEIxxZXHNLklELyLVVdWz5dZ0NVVd07MLwmJAchz8C3q%2F2c2iRkk8CgaZDYgsCBlPe8hevOpFIWfpcXD0QdV7r75X8L3vvc8O3DlpwNGzG%2B%2FqPakUXW3V%2FdqVD4Lgam1Dpm5YG3aij6Lwas0MXu9Gdf%2FV2tuC7ejVhh%2F4fuAHtTVpRKKHqxUImT3oBvWuXw8b9aAVYmj%2Bm1vnwVIPfHBOXoTk0%2BUn3iVINkHaf3hD2J1cZ6%2B91XeK5tpgwI%2FfS3dSXaToL8LEeEjS43k1tH269hg6PZrRhR78UxjLKfF%2BfIw4PZ6TRDw4nPGMFUSKmP8PxWACoSaQdAKm70LypwRgHDc3kfbv39SmoLt%2Fo7RCp2T5%2BZ%2BQxZQsP7uEtP%2FNdSWHtdtauVzq1GKYlJDDCWRvgsydIN9bgixOwPJPIfnPZPX5BtL%2B4aZVGpKfvdIU7aTRomxFtMPOSpj44UpMebjSaXZYI%2BCduNsKZwJJOYFMJlBiBGo9uOpIDy7x4DIPfX5WY0EQtH3OqN%2FpMtbkbRFH3A9oOwlo4EcdOFb1MEKejcDUCMzsIzP72JEjGPcD7HYJyz3YnGDASxSCoLAEBSUoJEGRExSD8ogr27Dlfa6si4O5b8x9sxzrvHdAj3TeEykBNSMYXh5k5%2BSFSkDvw2cn2BFntRYNW0E7oEEnanWTlp8kHeqHsR8F3TZNqICVJaRdmrW7J6eke%2FEnZHJKLv7%2BLWJ6AqtOwORLoO5l0KIE3S6xl34dKxczJTNbz4wG1yWyfBn5rnegzsnl2QzXNx9BsNNrvzZnBmZKZKbEx%2FIJQU%2FdG9%2FSBTm8pQtLHm1muezLPVrN93ZOc3Hhy3fEbqENX79hR1%2B8wSqgCh%2FcETbfoCmXac%2BSr65LzoVZ04YJ8v26fV%2FEW85uX3cmddnG1ptr6%2F3MCGulTieg1ar%2BYcDklPz%2F8p3Z6l75bgvSTGBcib47JXOD1BOwbB82W%2FC3msCoRU2ceShcOTaNePGoJIESi5zGJey%2F8ngRjw2tflNZHth76Jkl0Pwu0n6JgSkxUCWoGsG6C%2BM8M6fXfpnTiNXSOFZm6TBWRn0%2Bk7m6HsLKs1q72fRp1G0F7TYV7ThsdJIo4JQ2wqgRRbSJ3E6T2m%2Bf%2FAUAAP%2F%2FAQAA%2F%2F%2BlQn5tlAQAAA%3D%3D IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSwYscxReu3uwh8IMfKLlFYQ4eIriz3TM9PTPmEIxxZXHNLklELyLVVdWz5dZ0NVVd07MLwmJAchz8C3q%2F2c2iRkk8CgaZDYgsCBlPe8hevOpFIWfpcXD0QdV7r75X8L3vvc8O3DlpwNGzG%2B%2FqPakUXW3V%2FdqVD4Lgam1Dpm5YG3aij6Lwas0MXu9Gdf%2FV2tuC7ejVhh%2F4fuAHtTVpRKKHqxUImT3oBvWuXw8b9aAVYmj%2Bm1vnwVIPfHBOXoTk0%2BUn3iVINkHaf3hD2J1cZ6%2B91XeK5tpgwI%2FfS3dSXaToL8LEeEjS43k1tH269hg6PZrRhR78UxjLKfF%2BfIw4PZ6TRDw4nPGMFUSKmP8PxWACoSaQdAKm70LypwRgHDc3kfbv39SmoLt%2Fo7RCp2T5%2BZ%2BQxZQsP7uEtP%2FNdSWHtdtauVzq1GKYlJDDCWRvgsydIN9bgixOwPJPIfnPZPX5BtL%2B4aZVGpKfvdIU7aTRomxFtMPOSpj44UpMebjSaXZYI%2BCduNsKZwJJOYFMJlBiBGo9uOpIDy7x4DIPfX5WY0EQtH3OqN%2FpMtbkbRFH3A9oOwlo4EcdOFb1MEKejcDUCMzsIzP72JEjGPcD7HYJyz3YnGDASxSCoLAEBSUoJEGRExSD8ogr27Dlfa6si4O5b8x9sxzrvHdAj3TeEykBNSMYXh5k5%2BSFSkDvw2cn2BFntRYNW0E7oEEnanWTlp8kHeqHsR8F3TZNqICVJaRdmrW7J6eke%2FEnZHJKLv7%2BLWJ6AqtOwORLoO5l0KIE3S6xl34dKxczJTNbz4wG1yWyfBn5rnegzsnl2QzXNx9BsNNrvzZnBmZKZKbEx%2FIJQU%2FdG9%2FSBTm8pQtLHm1muezLPVrN93ZOc3Hhy3fEbqENX79hR1%2B8wSqgCh%2FcETbfoCmXac%2BSr65LzoVZ04YJ8v26fV%2FEW85uX3cmddnG1ptr6%2F3MCGulTieg1ar%2BYcDklPz%2F8p3Z6l75bgvSTGBcib47JXOD1BOwbB82W%2FC3msCoRU2ceShcOTaNePGoJIESi5zGJey%2F8ngRjw2tflNZHth76Jkl0Pwu0n6JgSkxUCWoGsG6C%2BM8M6fXfpnTiNXSOFZm6TBWRn0%2Bk7m6HsLKs1q72fRp1G0F7TYV7ThsdJIo4JQ2wqgRRbSJ3E6T2m%2Bf%2FAUAAP%2F%2FAQAA%2F%2F%2BlQn5tlAQAAA%3D%3D HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02376b78e7819434371c11c3d8a24a95
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png |  104.21.70.253 | 200 OK | 591 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png IP104.21.70.253:443
CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hash9fd5bcb6103d86e317bd1eb019bcbe71 6b5a52ea669dcb74946f2bed4bdd7ec985026113 0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5517818
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g0vijlgYnsDPT75T69WKkfJ8mBSgRS6%2BGT0D2w3iz5W6SkydQItTCylgyk9WQdmyeor3BdP49fs2X%2BquBUE2AwtjKAli3drg95vEG4uv3fbJzrg7MUilFQEFGhyfcAU2NYYyjBrb2hu7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bdb1fa525695-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html | 45.133.44.3 | 200 OK | 440 B |
URL GET HTTP/2cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html IP45.133.44.3:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text Hashf6990569c7ffeac1f4a3f6d9eee5da44 e7d5e37acf89a8faee252c36fc2c9d6615501d76 cc2a9756c81bd570fff8b32e48a413687c33f8abe9c934e743a0769178b4f690
GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 18 Apr 2024 10:48:45 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png | 45.133.44.9 | 200 OK | 16 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash14cf262fabfd850855c42847d14fe775 2fafa28f167f018a0fb1f261f47380c8810803c9 972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af
GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Sat, 20 Apr 2024 09:48:45 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=42 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=42 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=42 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css | 104.21.70.253 | 200 OK | 4.9 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css IP104.21.70.253:443
CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash3d4123dbfb33d27a5cfdfcfa91df6783 e7d0eeeec54b848f0bc3da8685fa3bc88429d660 cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887
GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 22650
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=27bH5NawQzOXUQXU7VworRXvKbBtQqkazzPnpf6Qg%2BCuZbhBEkKGT5bljCu0PoYZYGfB085wBOmYEinFuCTbQLXvchYsH2RexeK1w%2BnhD5Lf9wJbo1lDzPlGYjJUCEHHISRshn%2FYKFkN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bdb16a9c56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18 IP172.240.108.76:443
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=18 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:46 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| predominanttamper.com/pixel/sbs?c=1 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1predominanttamper.com/pixel/sbs?c=1 IP172.240.108.76:443
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:46 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:54:31 GMT
expires: Wed, 16 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 201255
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| predominanttamper.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tc1Re%2FL82i8IUvKN1VYRYuKpjJezNvftlFsdZIMDahrehG5P56k2vuvPu49915k4AQLEiXg3%2FBy2eSBrVK61KwyKQgEhA6rrJoNm51o9C1zDg4euDec879nAuf8znnswN%2FTmrw9OzGu2ZPaU1XG9WwcuWDKLpa2VCpH1QG7eZHzfhqxfZf7zSr4auVtyXfMau1MArDKIwqa8rKxAxWpyBU9qATVTthNa5Vo0aMgf1v7nwARwOI%2Fjl5EUpMlp8El6D4GGnv4Q3pdnKTvfZWz2uaG4u%2BOH4v3UlNkaK3CBMbIEmP59Uw7unaY5j0aEYXpv9PIVMTEvz4GCw9npME6x%2FOeDINmYKJ%2F6HojyH1GIqOwc1dKPGUAFzg5ibS3v2bxhZ092%2BUTtEJWX7%2BJ1QxIcvPLiHtfXNdq0HlttE%2BVyZ1GCQl1GAM1R0j8yfI95agihPw%2FFMo8TNZfb6BtHe46bSBEmev1GUrqTUoX5GtuL0SJ2G8wqiIV9r1Nq9Fos06jXgmkFJjqGQMLYegLoCfHhXAJwF8FqAnzio8iqJWKDgN2x3O66IlWVOEEW0lEY3CZhueT3sYIs%2BG4HoIbveR2X3sqCGs%2FwFuu4QTAVxO0BclCklQOIKCEhSKoMgJin55JLSrufK%2B0M6zaO5rc18vRybvHtAjk3dlSkDtEFaUB9k5eWEqYPDhsxPsyLNKg8aNqBXRqN1sdJJGmCRtGsYsbEadFk2ohFMllFuatbunJqRz8SdkakIu%2Fv4tGD2B0yfg6iVQ%2FzJoUYJul9hLv2baM65V5qqZNRCmRJYvI98NDvQ5uTyb4frmI0h%2Beu3X%2BszAbYnMlvhYPSHo6nujW6Ygh7dM4cijzSxXPbVHp%2FO9ndNcXvjyHblbGCvWb7jhF2%2FwKTANH9yRLt%2BgqVBp15GvrishpF0zlkvy%2Fbp7X7It77ave5v6bGPrzbX1Xmalc8qkY9Dpqv5hwdWE%2FP%2FyndnqXvluC8qOYX2Jnj8lc4MyY%2FBsHy5b8HeGwOpFDcsCFL4c2RpbPGpFoOUip6yE%2B1fOFvHI0ulvqsoDdw9duwSa30XaK9G3Jfq6BNVDOH9hlGf29NovcxpML42YtkuHTFv9%2BUzm6fUQTp1V6qFoMZnIFpNxI04kF6zRYCFPOKuLdpsjd5Ok8tsnfwEAAP%2F%2FAQAA%2F%2F8llquFlAQAAA%3D%3D | 192.243.61.227 | 200 OK | 7 B |
URL GET HTTP/1.1predominanttamper.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tc1Re%2FL82i8IUvKN1VYRYuKpjJezNvftlFsdZIMDahrehG5P56k2vuvPu49915k4AQLEiXg3%2FBy2eSBrVK61KwyKQgEhA6rrJoNm51o9C1zDg4euDec879nAuf8znnswN%2FTmrw9OzGu2ZPaU1XG9WwcuWDKLpa2VCpH1QG7eZHzfhqxfZf7zSr4auVtyXfMau1MArDKIwqa8rKxAxWpyBU9qATVTthNa5Vo0aMgf1v7nwARwOI%2Fjl5EUpMlp8El6D4GGnv4Q3pdnKTvfZWz2uaG4u%2BOH4v3UlNkaK3CBMbIEmP59Uw7unaY5j0aEYXpv9PIVMTEvz4GCw9npME6x%2FOeDINmYKJ%2F6HojyH1GIqOwc1dKPGUAFzg5ibS3v2bxhZ092%2BUTtEJWX7%2BJ1QxIcvPLiHtfXNdq0HlttE%2BVyZ1GCQl1GAM1R0j8yfI95agihPw%2FFMo8TNZfb6BtHe46bSBEmev1GUrqTUoX5GtuL0SJ2G8wqiIV9r1Nq9Fos06jXgmkFJjqGQMLYegLoCfHhXAJwF8FqAnzio8iqJWKDgN2x3O66IlWVOEEW0lEY3CZhueT3sYIs%2BG4HoIbveR2X3sqCGs%2FwFuu4QTAVxO0BclCklQOIKCEhSKoMgJin55JLSrufK%2B0M6zaO5rc18vRybvHtAjk3dlSkDtEFaUB9k5eWEqYPDhsxPsyLNKg8aNqBXRqN1sdJJGmCRtGsYsbEadFk2ohFMllFuatbunJqRz8SdkakIu%2Fv4tGD2B0yfg6iVQ%2FzJoUYJul9hLv2baM65V5qqZNRCmRJYvI98NDvQ5uTyb4frmI0h%2Beu3X%2BszAbYnMlvhYPSHo6nujW6Ygh7dM4cijzSxXPbVHp%2FO9ndNcXvjyHblbGCvWb7jhF2%2FwKTANH9yRLt%2BgqVBp15GvrishpF0zlkvy%2Fbp7X7It77ave5v6bGPrzbX1Xmalc8qkY9Dpqv5hwdWE%2FP%2FyndnqXvluC8qOYX2Jnj8lc4MyY%2FBsHy5b8HeGwOpFDcsCFL4c2RpbPGpFoOUip6yE%2B1fOFvHI0ulvqsoDdw9duwSa30XaK9G3Jfq6BNVDOH9hlGf29NovcxpML42YtkuHTFv9%2BUzm6fUQTp1V6qFoMZnIFpNxI04kF6zRYCFPOKuLdpsjd5Ok8tsnfwEAAP%2F%2FAQAA%2F%2F8llquFlAQAAA%3D%3D IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tc1Re%2FL82i8IUvKN1VYRYuKpjJezNvftlFsdZIMDahrehG5P56k2vuvPu49915k4AQLEiXg3%2FBy2eSBrVK61KwyKQgEhA6rrJoNm51o9C1zDg4euDec879nAuf8znnswN%2FTmrw9OzGu2ZPaU1XG9WwcuWDKLpa2VCpH1QG7eZHzfhqxfZf7zSr4auVtyXfMau1MArDKIwqa8rKxAxWpyBU9qATVTthNa5Vo0aMgf1v7nwARwOI%2Fjl5EUpMlp8El6D4GGnv4Q3pdnKTvfZWz2uaG4u%2BOH4v3UlNkaK3CBMbIEmP59Uw7unaY5j0aEYXpv9PIVMTEvz4GCw9npME6x%2FOeDINmYKJ%2F6HojyH1GIqOwc1dKPGUAFzg5ibS3v2bxhZ092%2BUTtEJWX7%2BJ1QxIcvPLiHtfXNdq0HlttE%2BVyZ1GCQl1GAM1R0j8yfI95agihPw%2FFMo8TNZfb6BtHe46bSBEmev1GUrqTUoX5GtuL0SJ2G8wqiIV9r1Nq9Fos06jXgmkFJjqGQMLYegLoCfHhXAJwF8FqAnzio8iqJWKDgN2x3O66IlWVOEEW0lEY3CZhueT3sYIs%2BG4HoIbveR2X3sqCGs%2FwFuu4QTAVxO0BclCklQOIKCEhSKoMgJin55JLSrufK%2B0M6zaO5rc18vRybvHtAjk3dlSkDtEFaUB9k5eWEqYPDhsxPsyLNKg8aNqBXRqN1sdJJGmCRtGsYsbEadFk2ohFMllFuatbunJqRz8SdkakIu%2Fv4tGD2B0yfg6iVQ%2FzJoUYJul9hLv2baM65V5qqZNRCmRJYvI98NDvQ5uTyb4frmI0h%2Beu3X%2BszAbYnMlvhYPSHo6nujW6Ygh7dM4cijzSxXPbVHp%2FO9ndNcXvjyHblbGCvWb7jhF2%2FwKTANH9yRLt%2BgqVBp15GvrishpF0zlkvy%2Fbp7X7It77ave5v6bGPrzbX1Xmalc8qkY9Dpqv5hwdWE%2FP%2FyndnqXvluC8qOYX2Jnj8lc4MyY%2FBsHy5b8HeGwOpFDcsCFL4c2RpbPGpFoOUip6yE%2B1fOFvHI0ulvqsoDdw9duwSa30XaK9G3Jfq6BNVDOH9hlGf29NovcxpML42YtkuHTFv9%2BUzm6fUQTp1V6qFoMZnIFpNxI04kF6zRYCFPOKuLdpsjd5Ok8tsnfwEAAP%2F%2FAQAA%2F%2F8llquFlAQAAA%3D%3D HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:46 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d50f1c905d30ff1ed4ead8427a415afe
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 16:27:38 GMT
expires: Wed, 16 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 148868
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-735x400.jpg | 63.250.43.8 | 200 OK | 72 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/vCAkeebppWo-HD-1-735x400.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 735x400, components 3 Hashdc8ccbe79e85e8eeeb8485a41c30c44b 2f24040160c581979f1a71ba48a3ed1412426ca9 aa32ab5661394d3dfe269151cf6c272593d9b2fe9b3e4fe648be61bc4c264191
GET /wp-content/uploads/2024/04/vCAkeebppWo-HD-1-735x400.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1; sb_main_5a45171a18659f50ff8a04b06197afae=1; sb_count_5a45171a18659f50ff8a04b06197afae=1; pp_main_dc26364561dd66a0b9805dc7a0631555=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=predominanttamper.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:04:47 GMT
content-type: image/jpeg
content-length: 72377
last-modified: Thu, 18 Apr 2024 07:06:48 GMT
etag: "6620c688-11ab9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6243
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-735x400.jpg | 63.250.43.8 | 200 OK | 54 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-735x400.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 735x400, components 3 Hash2075bb896a57693dcc5cf6e0f93e0b1a c68babd0c3a25566b64fa9e9ddcaca063442a523 8ca848382214d7356fc2f41d4a49b8dd43a3c674db3aadd5ac9d05e507ee25f5
GET /wp-content/uploads/2024/04/Nh8NLuUfuVs-HD-1-735x400.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1; sb_main_5a45171a18659f50ff8a04b06197afae=1; sb_count_5a45171a18659f50ff8a04b06197afae=1; pp_main_dc26364561dd66a0b9805dc7a0631555=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:59:42 GMT
content-type: image/jpeg
content-length: 53500
last-modified: Tue, 16 Apr 2024 19:33:53 GMT
etag: "661ed2a1-d0fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 2954
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-735x400.jpg | 63.250.43.8 | 200 OK | 56 kB |
URL GET HTTP/2blubclips.pro/wp-content/uploads/2024/04/kiVLL6wZi_M-HD-735x400.jpg IP63.250.43.8:443
CertificateIssuerSectigo Limited Subjectblubclips.pro FingerprintDB:39:C1:0B:1A:98:A3:FF:55:E8:C0:8B:C8:75:F9:11:93:A0:D0:65 ValidityFri, 05 Apr 2024 00:00:00 GMT - Sat, 05 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 735x400, components 3 Hash0b9ee61d5c06a9ccc55e47ecb6590cf5 94379d71597362eae6fd820bc0335a7772ff8e55 03d40e2160b9705983dd74686e24d844d83f157c84f60593e0624cc663f877dd
GET /wp-content/uploads/2024/04/kiVLL6wZi_M-HD-735x400.jpg HTTP/1.1
Host: blubclips.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=3e7f25ac-e748-4f04-bad4-838c21d8b954%3A1%3A1; sb_main_5a45171a18659f50ff8a04b06197afae=1; sb_count_5a45171a18659f50ff8a04b06197afae=1; pp_main_dc26364561dd66a0b9805dc7a0631555=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 08:02:43 GMT
content-type: image/jpeg
content-length: 55865
last-modified: Tue, 16 Apr 2024 19:04:29 GMT
etag: "661ecbbd-da39"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 6379
accept-ranges: bytes
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js |  188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:43 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 5930c75f2519700728616dca7ca1823c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 18 Apr 2024 09:48:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dYvjcWGwlh%2BIlkj7MkWfWiye6ZoHsVNi3cCbJ5OI8cQ5jY1oRr1hdnkns6kxOCSwutbBji9wvwZA1c2H73PQJTDXNZtlmhB6mdFJT8U7QthyfM0QuyTeoZJf1kLQ3p2lvUbfaXvmNH7A7CI7aKMFKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bda55d7e56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=40 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=40 IP172.240.108.76:443
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=40 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:46 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=326 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1predominanttamper.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=326 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
CertificateIssuerLet's Encrypt Subjectpredominanttamper.com Fingerprint87:71:AD:D5:EE:C7:C1:A2:17:33:88:13:BB:5F:5B:50:FA:5B:33:25 ValidityTue, 16 Apr 2024 10:28:41 GMT - Mon, 15 Jul 2024 10:28:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=326 HTTP/1.1
Host: predominanttamper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22928835; uid_id2=3e7f25ac-e748-4f04-bad4-838c21d8b954:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 18 Apr 2024 09:48:45 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:44 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 3bc42817bf37d77c69a70e355af8f77f
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 18 Apr 2024 09:48:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xwXt5nJpMbiDAaFvyu8Ut1NtmBlKQRTP6H07rkpYWzyVSj%2BMK4sDTsmK26Z8jlE0NWZykF6y65%2Bvi2bNHRRQbf2hYVKjuLZnzmO%2BDEV88G3jxRsHIP6eVXTlVXF3Htyx3TLIHYs7o1LMOaDGzXb8Ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bda47c4556bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 09:48:45 GMT
date: Thu, 18 Apr 2024 09:48:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js | 104.21.70.253 | 200 OK | 84 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js IP104.21.70.253:443
CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (32025) Hash4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5517819
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zRzDGDi2arFmao8eSXMIR%2FOGTlEJM7JBjrj%2BHv5xzg3l7mVJw4d17N9dMp%2BcjwN61eWuq0%2B9xVTw15mS5cPHVSZ2OQVNJgotC4oGAzPhxzy%2FBjj87uTtC5KwFESD6IbCNUTbqN2pJCq9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bdb1fa605695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js | 104.21.70.253 | 200 OK | 962 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js IP104.21.70.253:443
CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (1015), with no line terminators Hash88523e22d10f0cbad31aa1d8276764fa 9238cd9499e01abdbeb33e68c550d26cfb6eaba5 d553390acb639c765cb6aaa4fbb72529e4005227d190f53108aec87ccec411c2
GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 22650
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FXGAV%2FWtPyG4euU6o5162yc7c%2FbjfTVVTnSWb4hq%2B1TbdIFQ1g%2FlHVZK0U2hF5Md8pfxlpjNkhg%2FKBOGMtbzuAWKSV9Hj6uGMnVW3ijLYO690eFTnNR6vlIFswPE0WW0%2FCHuHqzTHAxS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bdb24aff5695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css | 104.21.70.253 | 200 OK | 3.4 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css IP104.21.70.253:443
CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (3537), with no line terminators Hashb8a277e051f047a41d3229377460f0c9 596b934114e1b6e3cee15ef19925c7f2ff5607e7 9cf981fe6d59b72cb9d12e4bc958983bac07f16b8f1b40bb1c6ced0bf2d6b2d0
GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blubclips.pro/
Origin: https://blubclips.pro
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:48:45 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 22650
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jbZEq9b%2BKXq1XaQy7DlmCNBR6%2FDzy5k%2F6cLe%2BHZ8AZsJp8DS%2FdMeyW5zSQXHqP8EQ%2BHCfgHcP3sLIbOXPaoPV0ruPZmY24NT1T2dGaHcUwDLFRGweC%2FkkMIyoNC2GOaF9YOeq1ILArEY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763bdb16aa056cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|