y0utube.store/push/cl/us05_att/osn/img/icon2.png
188.114.96.1200 OK 4.6 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon2.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c947d439eb93367f1af5b2a3d222f057
5b4c10820d39e624bc6df72a113679da80a8e44e
aab564e67c47df65ddcb9c4eaa62cd798a51624a3fded9f9b3a1197b460a79c2
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon2.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 4576
last-modified: Mon, 05 Jun 2023 12:56:02 GMT
etag: "11e0-5fd616cd19c47"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HU%2Bkkoapk49kbYkRAePSCoRS1FpWpHNHkH6eB3MfQ8Jfnf6OSmNE6UwuwTGLM0jRMk7%2B8IkJ7C6OwPcmiLsdekOUFVRZR6FrWTZIrhK5puTL0ps80PVxuu7NXyLobxxY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21edc76b4fd-OSL
alt-svc: h3=":443"; ma=86400
www.y0utubee.online/go/3e8ea140-c0e0-4655-b350-c685049da243
104.21.37.96302 Found 7.5 kB URL User Request GET HTTP/2 www.y0utubee.online/go/3e8ea140-c0e0-4655-b350-c685049da243
IP 104.21.37.96:443
Certificate IssuerGoogle Trust Services LLC
Subjecty0utubee.online
FingerprintED:6E:A2:53:38:9C:8C:90:C6:FC:1B:95:EB:EA:81:B8:7D:23:4A:A7
ValidityMon, 29 May 2023 11:06:52 GMT - Sun, 27 Aug 2023 11:06:51 GMT
Hash a8ba75845a81c7a529e2e9a1bc7566bf
697b75e0fc64daf342356e1083c6c3b2b64ca60f
91e422025a08015501488817d2c0b676d1d0575cf6d18e7bb39a8254d7fa2ac3
GET /go/3e8ea140-c0e0-4655-b350-c685049da243 HTTP/1.1
Host: www.y0utubee.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 07 Jun 2023 06:15:01 GMT
content-type: text/html; charset=utf-8
location: https://y0utube.store/push/cl/us05_att/osn?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Full-Version,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Reduced
access-control-allow-origin: *
set-cookie: bemob-uniq-visit:3e8ea140-c0e0-4655-b350-c685049da243=1; Domain=www.y0utubee.online; Path=/; Expires=Thu, 08 Jun 2023 06:15:01 GMT; HttpOnly
bemob-rotation:3e8ea140-c0e0-4655-b350-c685049da243:random:8c299507d6c8eca34972db8def8875cb=0-0-0; Domain=www.y0utubee.online; Path=/; Expires=Thu, 08 Jun 2023 06:15:01 GMT; HttpOnly
bemob-click-id=M7geshwwEwe3WwKqJsd52k; Domain=www.y0utubee.online; Path=/; Expires=Thu, 08 Jun 2023 06:15:01 GMT; HttpOnly
vary: Accept
x-response-time: 18.334ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NHvJHmG5gaeD3neQdTaE0rGvINNztPmTUD0O29QBEfXUmUwnJ3GIewkEarkNwj1dh%2BTJYac%2FsrLlU6ZZRV9xfw2J%2BAxDe68E7wvRIFPxYjL2%2FCiPRQcp8H3u1J9Hq4cDsarh4L4N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36c21ae996b4f3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
y0utube.store/push/cl/us05_att/osn/img/icon7.png
188.114.96.1200 OK 3.3 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon7.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash b512735542cb07b3b2dcf153a7dfe456
93bde8875412ce266600e2af1c37123483a50376
e9c661cc8adbaa1b9cd4cf65f0ba93a1c24211cb5f94ed0950e0fbc973781718
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon7.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 3283
last-modified: Mon, 05 Jun 2023 12:56:03 GMT
etag: "cd3-5fd616cda0888"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9D7pI%2BEYCRCzuRR5PddaFSIh%2B1RcBEGnxlVMH1%2F25Te8b6kkmQPTCfMkM3i36nA6WLGRv9YAFu4X3BKhvavuII5hV5adsF6VKuPFnmbOnUQ6TotfC7hJ%2F7aNh9PV3fv0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21efcb8b4fd-OSL
alt-svc: h3=":443"; ma=86400
y0utube.store/push/cl/us05_att/osn/img/icon5.png
188.114.96.1200 OK 3.3 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon5.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e1a7582b5da63e10485d63f97abc9a0
ca3ee3067f96c732f455bc7c99ec5100194f13f6
196083352a09a19cf2d4364e3ad406606fedb562f2096c1bef373ff2c485b503
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon5.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 3264
last-modified: Mon, 05 Jun 2023 12:56:03 GMT
etag: "cc0-5fd616cda0888"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iGAIoG6hOFz35wqLOAFReMxfHEbGJzVdv6ovoprRYKebGgyBMF25xMKp5RNTVh8%2B7sL5hv3ylJpJCCS6l6ZYAzDXVUXRVmlF3U7RJro6UNiN6JNl%2F0LePVz3KtFY%2BXSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21efcb6b4fd-OSL
alt-svc: h3=":443"; ma=86400
y0utube.store/push/cl/us05_att/osn/img/icon4.png
188.114.96.1200 OK 7.0 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon4.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ad7f32c1c0df7b4975cc41bda4ac435
81d57e996ee6cd9e122592e68ffa3d55c1ba10ff
c0af6cb2280bba97d235dfad7c72d22353a0d2cf277733ce9fc4701df7ed1d5f
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon4.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 7032
last-modified: Mon, 05 Jun 2023 12:56:03 GMT
etag: "1b78-5fd616cd5b327"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2D7xTSPCFPIbW71LYNfYfGm0mEdA3iF2GUfecK2PaT39fzatQwpHKR4cfC5LRab7k2AdMD65zq6aKJ6odPowHTohvzrNomus%2BOX6fqjVWZIHQhWfPLRacC4UwPb3MT2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21efcb3b4fd-OSL
alt-svc: h3=":443"; ma=86400
y0utube.store/push/cl/us05_att/osn/img/icon3.png
188.114.96.1200 OK 7.8 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon3.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f3cc830da0b1fdf66bda7d1d734747b
94588f041eec3a78a8780c8124c56a1434a89277
ea3698c32039a115b03c2528cbb29c3ff97bbd49ad1345d5095e98d1fd0ea8ba
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon3.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 7847
last-modified: Mon, 05 Jun 2023 12:56:03 GMT
etag: "1ea7-5fd616cd5b327"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QeT%2FpAKKopXHIqNg40UY%2Fowao6C8%2Fd4%2BkMmAE3NpFvqr77l6mEJpNX%2BWnnSLG7uCqHsAmVWaLnqEsWQzgkFTIQdiaATRIzhIVDqVfOhkhfsnuyMQfAPBkd8v2jlgvk5%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21efcafb4fd-OSL
alt-svc: h3=":443"; ma=86400
y0utube.store/push/cl/us05_att/osn/img/icon8.png
188.114.96.1200 OK 4.1 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon8.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash f92d6474ebc6a3a0b576749cfb4afe98
0f4ce3dcf04873b8098c01d20c44967fb9fce0cc
3a7abff293d71fd8c5a58deacb964b50fe074a6f458575d37abbd367a3a930a1
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon8.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 4064
last-modified: Mon, 05 Jun 2023 12:56:03 GMT
etag: "fe0-5fd616cde3ea8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N6bOaEl9if7QQIMm0vkQqB9hYo8IHK8%2B8YfDZJksxsaCNdqcjEBXwUBbY5re9Rj5hRgVYMFbdX40LH%2FsFHX0raJALyC%2F6yJkU8EOhj%2BcXLilhpdGtViH6hfkBjKR7Ldu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21efcb9b4fd-OSL
alt-svc: h3=":443"; ma=86400
js.wpshsdk.com/npc/sdk/wp-banners.js
45.133.44.53200 OK 0 B URL GET HTTP/2 js.wpshsdk.com/npc/sdk/wp-banners.js
IP 45.133.44.53:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectjs.wpshsdk.com
FingerprintC6:79:B3:47:76:9F:50:8D:16:89:5C:EF:0E:BB:24:99:45:66:B6:C2
ValidityFri, 26 May 2023 02:01:30 GMT - Thu, 24 Aug 2023 02:01:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpshsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Wed, 07 Jun 2023 06:20:02 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
na.nawpush.com/tags/90103?version_name=b
45.133.44.24200 OK 540 B URL GET HTTP/2 na.nawpush.com/tags/90103?version_name=b
IP 45.133.44.24:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectna.nawpush.com
Fingerprint5D:28:74:40:5D:EB:A6:FF:47:90:61:C3:F8:8F:38:52:AD:46:C4:8A
ValiditySun, 04 Jun 2023 10:04:05 GMT - Sat, 02 Sep 2023 10:04:04 GMT
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash f2fdf1c738e1c08c5cfe20146281bebc
2ea888d9a094904244cc9434712a3a9a3de59356
245671de003c05bcd45853251a9d6d6896798c1cea3caf318c41734772411626
GET /tags/90103?version_name=b HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://y0utube.store
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/json
content-length: 540
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: MISS
access-control-allow-origin: *
X-Firefox-Spdy: h2
redrotou.net/zone?&pub=0&zone_id=6019853&is_mobile=false&domain=y0utube.store&var=null&ymid=M7geshwwEwe3WwKqJsd52k&var_3=&var_4=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL POST HTTP/2 redrotou.net/zone?&pub=0&zone_id=6019853&is_mobile=false&domain=y0utube.store&var=null&ymid=M7geshwwEwe3WwKqJsd52k&var_3=&var_4=&dsig=&action=prerequest
IP 139.45.197.251:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectredrotou.net
Fingerprint25:AD:78:F0:1C:C6:97:88:84:D5:BB:8C:D3:97:AC:32:7A:63:5C:1B
ValiditySun, 21 May 2023 05:25:48 GMT - Sat, 19 Aug 2023 05:25:47 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=6019853&is_mobile=false&domain=y0utube.store&var=null&ymid=M7geshwwEwe3WwKqJsd52k&var_3=&var_4=&dsig=&action=prerequest HTTP/1.1
Host: redrotou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://y0utube.store
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 06:15:02 GMT
content-length: 0
x-trace-id: a586621f8d0faa29847bbffbd1f305a3
access-control-allow-origin: https://y0utube.store
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
js.wpshsdk.com/npc/sdk/push.m.js?v=1
45.133.44.53200 OK 28 kB URL GET HTTP/2 js.wpshsdk.com/npc/sdk/push.m.js?v=1
IP 45.133.44.53:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectjs.wpshsdk.com
FingerprintC6:79:B3:47:76:9F:50:8D:16:89:5C:EF:0E:BB:24:99:45:66:B6:C2
ValidityFri, 26 May 2023 02:01:30 GMT - Thu, 24 Aug 2023 02:01:29 GMT
File type gzip compressed data, from Unix\012- data
Hash 8836105b31682ebf432b0867c000e100
c9f87710437e98bb7b1a76843734b1327e3d5d44
7ad0ed7886f92d5fbafb6883510ca46d0bb03d41c3b3bfad061742e77661a41e
GET /npc/sdk/push.m.js?v=1 HTTP/1.1
Host: js.wpshsdk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Thu, 01 Jun 2023 11:59:07 GMT
etag: W/"6478880b-10616"
content-encoding: gzip
expires: Wed, 07 Jun 2023 06:20:02 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
y0utube.store/push/cl/us05_att/osn?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
188.114.96.1301 Moved Permanently 487 B URL User Request GET HTTP/2 y0utube.store/push/cl/us05_att/osn?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e144eb80b2bbd688136fb608d23bdca1
424cd218ce6efc660339b88c4c52d0b9b9eb9892
93c6e8af472b9d907da62f62a55ec191178c94ec2d1b5d550341f85c17804212
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 07 Jun 2023 06:15:01 GMT
content-type: text/html; charset=iso-8859-1
location: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1tVz1rnQ1%2B%2BHLRytrfjBE9XH4ZWn5uSVCnb%2Fm9ty96RZ7FqAupaxEHAe8eADRmHNxWynMoTgS6AaWGDiTZF9fj2SHUBVw9iXjZmXXoHyS%2B%2BIFNB%2B%2B5kSpPGoSCpRDlZI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36c21bfb0db523-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fp.metricswpsh.com/fp?tag_id=90103
157.90.84.242204 No Content 0 B URL OPTIONS HTTP/1.1 fp.metricswpsh.com/fp?tag_id=90103
IP 157.90.84.242:443
ASN #24940 Hetzner Online GmbH
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
FingerprintC3:3A:0A:7D:9C:4B:21:97:39:A7:AD:B8:87:47:F1:35:32:D9:84:53
ValidityFri, 28 Apr 2023 11:39:09 GMT - Thu, 27 Jul 2023 11:39:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=90103 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://y0utube.store/
Origin: https://y0utube.store
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Wed, 07 Jun 2023 06:15:03 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://y0utube.store
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
fp.metricswpsh.com/fp?tag_id=90103
157.90.84.242204 No Content 27 B URL OPTIONS HTTP/1.1 fp.metricswpsh.com/fp?tag_id=90103
IP 157.90.84.242:443
ASN #24940 Hetzner Online GmbH
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
FingerprintC3:3A:0A:7D:9C:4B:21:97:39:A7:AD:B8:87:47:F1:35:32:D9:84:53
ValidityFri, 28 Apr 2023 11:39:09 GMT - Thu, 27 Jul 2023 11:39:08 GMT
File type JSON data\012- , ASCII text
Hash c4bea7951aaa542768f63f72d171ff83
7f57b3ce5d3a9bb0a15c32b34745b0214710e185
d4fbb24457a99cbf28127e8a416979ca0f2ab97c64a59b8d38760c40d4934756
POST /fp?tag_id=90103 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 23164
Origin: https://y0utube.store
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 07 Jun 2023 06:15:03 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 27
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://y0utube.store
Set-Cookie: id=6775003356220780285; Expires=Thu, 06 Jun 2024 06:15:03 GMT; Secure; SameSite=None
Vary: Origin
redrotou.net/pfe/current/micro.tag.min.js?z=6019853&ymid=M7geshwwEwe3WwKqJsd52k&var=null&sw=/sw-check-permissions-4da63.js
139.45.197.251200 OK 42 kB URL GET HTTP/2 redrotou.net/pfe/current/micro.tag.min.js?z=6019853&ymid=M7geshwwEwe3WwKqJsd52k&var=null&sw=/sw-check-permissions-4da63.js
IP 139.45.197.251:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectredrotou.net
Fingerprint25:AD:78:F0:1C:C6:97:88:84:D5:BB:8C:D3:97:AC:32:7A:63:5C:1B
ValiditySun, 21 May 2023 05:25:48 GMT - Sat, 19 Aug 2023 05:25:47 GMT
File type C source, ASCII text, with very long lines (42013), with no line terminators
Hash e204f67bb8419861390e10b3622cf6d7
ab1fb1305fb4780c71b851b821d3e083f522ff1a
c6f10a8ca367a8e72b3ac96138ac8d1dcaf095cdaa7c5ca0c26b7ea652263eac
GET /pfe/current/micro.tag.min.js?z=6019853&ymid=M7geshwwEwe3WwKqJsd52k&var=null&sw=/sw-check-permissions-4da63.js HTTP/1.1
Host: redrotou.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 13:08:32 GMT
etag: W/"6479e9d0-a41d"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
y0utube.store/sw-check-permissions-4da63.js?var=null&ymid=M7geshwwEwe3WwKqJsd52k
0.0.0.0 0 B URL GET y0utube.store/sw-check-permissions-4da63.js?var=null&ymid=M7geshwwEwe3WwKqJsd52k
IP 0.0.0.0:0
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /sw-check-permissions-4da63.js?var=null&ymid=M7geshwwEwe3WwKqJsd52k HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
ntvpwpush.com/dl/cookies
168.119.25.102200 OK 620 B IP 168.119.25.102:443
ASN #24940 Hetzner Online GmbH
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectnotification.tubecup.net
FingerprintC3:3A:0A:7D:9C:4B:21:97:39:A7:AD:B8:87:47:F1:35:32:D9:84:53
ValidityFri, 28 Apr 2023 11:39:09 GMT - Thu, 27 Jul 2023 11:39:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (656), with no line terminators
Hash 0f28ac8b62710210d8c20200cb32caf2
e5cf4c2df4e48eff5fe877531dd3f12351c0c37d
2e6743f06e4cc09ff077b579b75511eaaf5ccf370f70fd2075d74725bf5b872c
GET /dl/cookies HTTP/1.1
Host: ntvpwpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: text/html
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
content-encoding: gzip
X-Firefox-Spdy: h2
y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
188.114.96.1200 OK 28 kB URL User Request GET HTTP/2 y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6123)
Hash bfd70c8c389911cbfce0ab5c72346e3a
2293d74c8c496a004c0e2f7ff2bf93c1b7a2e15b
6ecc68f4ab5b528d55c8c64ada455adc510b85376ea9c2621bc1c9f4204da5af
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:01 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Mon, 05 Jun 2023 12:56:01 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IpYud2c8uFxDggl5BHBksi1IF6vai5P97TTEeoiC8KOtmus1nWAipOURxcUE%2Bpc1j1cxeTDQt8yUyYOTbR9Qd9IfXMIDGLIYG32LizkixTd314r%2BksKMsR3dsqLkbrIY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d36c21cabb9b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
y0utube.store/push/cl/us05_att/osn/img/icon1.png
188.114.96.1200 OK 7.3 kB URL GET HTTP/3 y0utube.store/push/cl/us05_att/osn/img/icon1.png
IP 188.114.96.1:443
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerGoogle Trust Services LLC
Subjecty0utube.store
Fingerprint83:04:B1:DA:CA:3B:85:BE:B4:16:88:95:73:A9:ED:A1:4D:C3:1F:3F
ValidityFri, 02 Jun 2023 18:54:39 GMT - Thu, 31 Aug 2023 18:54:38 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d0ab5834c8bf7134e4d21fa3288317f
c31d1a6b9df206f67ea194f4c424cdc372a423c2
0515ddd9185d263874e7b66bb6d521fcd63b857aac5fed51c08df98026dafe27
Analyzer Verdict Alert quad9 Sinkholed
GET /push/cl/us05_att/osn/img/icon1.png HTTP/1.1
Host: y0utube.store
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: image/png
content-length: 7252
last-modified: Mon, 05 Jun 2023 12:56:02 GMT
etag: "1c54-5fd616cd1abe7"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EJI2PHdnHy%2FIVvSlfSXWnTJocnS1VnU4GjrJboJeqytbhGx93DinViaN%2B6piQJ9tYhAKy%2BUo7ws4HB17e9IzbOcI6VD%2BNl0flCJTJi9yPRHUuWGVr5Tem4akbSVS3HJk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d36c21edc71b4fd-OSL
alt-svc: h3=":443"; ma=86400
js.wpadmngr.com/static/adManager.js
45.133.44.53200 OK 1.2 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.js
IP 45.133.44.53:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintA9:7C:F8:A4:B8:B3:E3:98:76:72:9E:0B:4A:FB:FB:39:D4:F4:54:3D
ValidityTue, 16 May 2023 02:02:19 GMT - Mon, 14 Aug 2023 02:02:18 GMT
File type ASCII text, with very long lines (1365), with no line terminators
Hash ed0f901eb21a520c51d4c26d3158d258
e87efe29cff9867f43b987f65d105557ddb3353e
7adda8c8dd9e87cb35b62f36183a17fa433b146b677fd92aa74c2470c36ca722
GET /static/adManager.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Mon, 05 Dec 2022 13:37:26 GMT
etag: W/"638df416-4dd"
content-encoding: gzip
expires: Wed, 07 Jun 2023 06:20:02 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
brodownloads1s.site/code/gq3weyjxmm5ha3ddf42doobu
185.177.94.152200 OK 10 B URL GET HTTP/2 brodownloads1s.site/code/gq3weyjxmm5ha3ddf42doobu
IP 185.177.94.152:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subject0.newonnews.cc
FingerprintC6:B9:A0:03:1E:D6:53:46:75:D2:40:9A:B3:DB:CF:D3:08:FA:15:34
ValidityMon, 01 May 2023 18:55:56 GMT - Sun, 30 Jul 2023 18:55:55 GMT
File type ASCII text, with no line terminators
Hash f495e69f2e9edc75eeae7dd3ea78a747
a89e38bbe70fa2de5db9d578975abd4e9dcda52e
8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c
GET /code/gq3weyjxmm5ha3ddf42doobu HTTP/1.1
Host: brodownloads1s.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=0027af06-ef6d-46c0-8895-ba008ba15445; expires=Fri, 07-Jul-2023 06:15:02 GMT; Max-Age=2592000; path=/; SameSite=None; domain=brodownloads1s.site; secure
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
js.wpadmngr.com/static/adManager.m.js
45.133.44.53200 OK 159 kB URL GET HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.53:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjectjs.wpadmngr.com
FingerprintA9:7C:F8:A4:B8:B3:E3:98:76:72:9E:0B:4A:FB:FB:39:D4:F4:54:3D
ValidityTue, 16 May 2023 02:02:19 GMT - Mon, 14 Aug 2023 02:02:18 GMT
Size 159 kB (158567 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Tue, 06 Jun 2023 09:52:49 GMT
etag: W/"647f01f1-26b67"
content-encoding: gzip
expires: Wed, 07 Jun 2023 06:20:02 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
e4d5cdb482.3455f431fa.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNTc0MzA5NTkzMTQ0MDg4MDAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjU0LjEiLCJ0YWdfaWQiOjkwMTAzLCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjEsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MCwidXNlcl9rZXl3b3JkcyI6IlBsYXkifQ==
45.133.44.52200 OK 0 B URL GET HTTP/2 e4d5cdb482.3455f431fa.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNTc0MzA5NTkzMTQ0MDg4MDAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjU0LjEiLCJ0YWdfaWQiOjkwMTAzLCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjEsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MCwidXNlcl9rZXl3b3JkcyI6IlBsYXkifQ==
IP 45.133.44.52:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://y0utube.store/push/cl/us05_att/osn/?clickId=M7geshwwEwe3WwKqJsd52k&camp_name=vz_cld_us05_att
Certificate IssuerLet's Encrypt
Subjecte4d5cdb482.3455f431fa.com
Fingerprint0A:EB:49:07:8F:80:E2:96:6A:45:10:63:65:6F:F4:8D:A4:DF:6F:86
ValiditySun, 04 Jun 2023 02:50:44 GMT - Sat, 02 Sep 2023 02:50:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiIxNTc0MzA5NTkzMTQ0MDg4MDAwMCIsInRpbWV6b25lIjowLCJ2ZXIiOiIzLjU0LjEiLCJ0YWdfaWQiOjkwMTAzLCJzY3JlZW5fcmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImFkYmxvY2siOjAsInRpbWV6b25lX29sc29uIjoiVVRDIiwidXRtX3NvdXJjZSI6IiIsInV0bV9tZWRpdW0iOiIiLCJ1dG1fY2FtcGFpZ24iOiIiLCJ1dG1fY29udGVudCI6IiIsIm1tIjowLCJpbml0X3N0YXJ0X2xhdGVuY3kiOjAuMjEsImlzX3YyIjowLCJpc192Ml9lbXB0eSI6MCwidXNlcl9rZXl3b3JkcyI6IlBsYXkifQ== HTTP/1.1
Host: e4d5cdb482.3455f431fa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://y0utube.store
DNT: 1
Connection: keep-alive
Referer: https://y0utube.store/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 07 Jun 2023 06:15:02 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2