Report - videoandgames.site/zb3FQS4t

Report Overview

Submitted URL
videoandgames.site/zb3FQS4t
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-28 14:02:55
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
220

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
news-yuyuve.com	unknown	2022-09-14T07:06:24Z	2023-03-06T00:02:10Z	18 kB	265 kB	193.108.118.121
2.news-yuyuve.com	unknown	2023-01-17T08:38:37Z	2023-03-04T22:27:58Z	17 kB	292 kB	193.108.118.121
my.rtmark.net	9054	2015-02-04T10:54:57Z	2023-03-13T05:11:40Z	408 B	743 B	139.45.195.8
oneloveworld.space	unknown	2022-06-19T12:37:27Z	2023-03-10T12:42:53Z	477 B	1.3 kB	172.67.223.242
videoandgames.site	unknown	2020-12-24T06:47:45Z	2023-03-10T12:42:54Z	814 B	2.1 kB	188.114.96.1
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.203.75.56
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.6 kB	93.184.220.29
browser.sentry-cdn.com	4393	2018-07-13T13:42:06Z	2023-03-13T08:50:22Z	1.3 kB	62 kB	151.101.130.217
1.news-yuyuve.com	unknown	2022-10-31T23:28:19Z	2023-03-04T22:27:57Z	17 kB	256 kB	193.108.118.121
sdfjjd.globatds.com	474967	2019-09-13T19:34:17Z	2023-03-10T12:42:57Z	535 B	8.6 kB	104.18.5.162
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-13T05:21:46Z	676 B	1.5 kB	23.33.119.27
zerossl.ocsp.sectigo.com	4049	2020-05-09T21:05:29Z	2023-03-13T05:14:15Z	348 B	808 B	104.18.32.68
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.33.119.27
errors.house	unknown	2022-11-11T11:51:47Z	2023-03-09T21:53:00Z	1.0 kB	2.6 kB	144.76.158.184
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	40 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	videoandgames.site/zb3FQS4t	Phishing
2023-01-28	medium	news-yuyuve.com/lands/36/lp.js	Phishing
2023-01-28	medium	news-yuyuve.com/revopush.js?v=4	Phishing
2023-01-28	medium	news-yuyuve.com/sw.js	Phishing
2023-01-28	medium	1.news-yuyuve.com/lands/36/lp.js	Phishing
2023-01-28	medium	1.news-yuyuve.com/sw.js	Phishing
2023-01-28	medium	2.news-yuyuve.com/lands/36/lp.js	Phishing
2023-01-28	medium	2.news-yuyuve.com/sw.js	Phishing
2023-01-28	medium	videoandgames.site/zb3FQS4t	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed
2023-01-28	medium	news-yuyuve.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}	151 B	2023-03-07	2023-06-19
Pretty URL sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1} IP 104.18.5.162 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:29 Last Seen2023-06-19 01:19:32 Times Seen66 Hash 1aaa26e37e96b2f720ef716330088bb2 ea493dc4287c3c31479a5fd8319571401a2b190c 665632cc400c306d3fe8e7d0223fa54b98b8bddd0a5db8a5c21ed9bcc9bc9eaf Loading...

	news-yuyuve.com/lands/36/lp.js	1.4 kB	2023-03-07	2024-01-01
Pretty URL news-yuyuve.com/lands/36/lp.js IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:24 Last Seen2024-01-01 16:50:42 Times Seen806 Hash 159d11255591f1189cdd471f1fa71918 74649e2f0996d88c2acb6736e1db6c3e84ad82db 8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d Loading...

	news-yuyuve.com/revopush.js?v=4	10 kB	2023-03-09	2024-02-20
Pretty URL news-yuyuve.com/revopush.js?v=4 IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:48:00 Last Seen2024-02-20 08:46:21 Times Seen5751 Hash fc284a0e5d580856ae4863715ad6733e eb69f303c80ff8e44abc9601b8616c0cf92faafa 2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0 Loading...

	news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=	243 B	2023-03-09	2023-04-08
Pretty URL news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4= IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:53:42 Last Seen2023-04-08 21:49:46 Times Seen28 Hash 306b9c36f29345036be9308b78c4567e 0d6c10d462503a447c0f8cc02a2b084a8b899019 905e16120ec4fa11f2fc3e7b026933486325201162b18861cdb2e5fe271ba001 Loading...

	news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=	418 B	2023-03-13	2023-03-13
Pretty URL news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4= IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:49:36 Last Seen2023-03-13 09:49:36 Times Seen1 Hash c36e6aee603795463077d38050c741e4 ec39dc38629dc48e34969072501558fdac6f4ed3 93d71ec4df7abefd7b1c00817a1f8f4417660bdd361271b3741dfafb16022ec3 Loading...

	1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=	418 B	2023-03-13	2023-03-13
Pretty URL 1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:49:36 Last Seen2023-03-13 09:49:36 Times Seen1 Hash 99fa1a6d0722a5fadc4e63aece117275 69025991a3da5bb31a67b0b3815307367c3b2f2f 50782ecb35f703d0e8fa31b2b210f9420a595b3cc6eb9f9b72ddca5a062a1ece Loading...

	sdfjjd.globatds.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-24
Pretty URL sdfjjd.globatds.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-24 18:54:25 Times Seen43056 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}	11 kB	2023-03-07	2023-05-28
Pretty URL sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1} IP 104.18.5.162 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:29 Last Seen2023-05-28 06:09:50 Times Seen39 Hash 17def9f4d83b477761d099b4c5125842 092a87d53c6f6ed96d0800adcf2e07e2f9fc0c0c 05d6798aa33309d905604c3da4cae6724a92ffd92a399a692a9d8a888f0476dd Loading...

	errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js	1.9 kB	2023-03-09	2023-06-19
Pretty URL errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js IP 144.76.158.184 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:53:42 Last Seen2023-06-19 23:11:30 Times Seen329 Hash 80932f4dcde89b05c9a4e8f491d1137a 790824b7aee301fa9a3794fa34b7cef37a88f730 9a0262ebf8e5fcb4028b6ea0876c9e06270170be66a752a08dd4acdfa6ca7b93 Loading...

	news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=	681 B	2023-03-07	2023-10-19
Pretty URL news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4= IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:24 Last Seen2023-10-19 23:50:11 Times Seen31 Hash 723b2067a76ac5d3b06989ffd06cd0a2 0307e700c4df81831423545fe70825ad4db714d8 5b31e41e2110aff8de3a83ce9f9309c4b971f38585e0b9861bfc010939612857 Loading...

	browser.sentry-cdn.com/7.15.0/bundle.es5.min.js	62 kB	2023-03-09	2023-06-19
Pretty URL browser.sentry-cdn.com/7.15.0/bundle.es5.min.js IP 151.101.130.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:53:42 Last Seen2023-06-19 23:11:30 Times Seen311 Hash 634a37896246a038d0abc4b8b3974e7a 3939dc20706846266b49b796189ba050c97e5e31 cab38c92e159d807e061b6e26849de7e32ce1b6e7cbd155aa8d755b8290cd333 Loading...

	2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=	418 B	2023-03-13	2023-03-13
Pretty URL 2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= IP 193.108.118.121 ASN #61003 GlobalTeleHost Corp. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:49:36 Last Seen2023-03-13 09:49:36 Times Seen1 Hash 8ad3a43af6588b206bea58e76deb8ed9 b2321a7c30da84330dbcd9288db11e5a98bcbd7b 5dd12fe56e88e30201ae3b567301ab4512bb55481d9ccaa149bbd7e05e066627 Loading...

HTTP Transactions (138)

URL IP Response Size

videoandgames.site/zb3FQS4t

188.114.96.1

301 Moved Permanently

0 B

URL HTTP/1.1
videoandgames.site/zb3FQS4t
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /zb3FQS4t HTTP/1.1
Host: videoandgames.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 14:02:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://videoandgames.site/zb3FQS4t
Pragma: no-cache
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sy2Jb%2FDnDAWphrkR1zfcG9gvM8VH1c0Ki0F3lXWWDRPvbrtkSS6SeruQB9fdxay3z2F46Z5J%2BLOrpq5NLxTfEkNgsJFPXoe3xvHt3AUalVuHvf5QxZLVjFsyouGUpJssL2YB8IM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a4477bf3ab505-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12604
Expires: Sat, 28 Jan 2023 17:32:48 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10193
Expires: Sat, 28 Jan 2023 16:52:37 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 13:43:05 GMT
content-type: application/json
age: 1179
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7374
Expires: Sat, 28 Jan 2023 16:05:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: v0mHwNhILo3tx0b9/91djlXEKUNmBKzjpZGLozJ99u1ik0UeRnoAacWc6g3FgkhP9MW9iYZUMxopSQDcaOygpA==
x-amz-request-id: MQ67XN3J6TWTMP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:54 GMT
age: 770
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.33.119.27

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
5f09f6c0fe86f08a542a44cc48c5dd79
e3b73fe26b3871a37c665caf84278349962a0605
e09ff6d0bdc5aa6ed9b9d6e678a0213e7161932092eac740c7a9da195744c570

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E09FF6D0BDC5AA6ED9B9D6E678A0213E7161932092EAC740C7A9DA195744C570"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 28 Jan 2023 20:02:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

e1.o.lencr.org/

23.33.119.27

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
5f09f6c0fe86f08a542a44cc48c5dd79
e3b73fe26b3871a37c665caf84278349962a0605
e09ff6d0bdc5aa6ed9b9d6e678a0213e7161932092eac740c7a9da195744c570

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E09FF6D0BDC5AA6ED9B9D6E678A0213E7161932092EAC740C7A9DA195744C570"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 28 Jan 2023 20:02:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 13:41:40 GMT
age: 1264
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11059
Expires: Sat, 28 Jan 2023 17:07:03 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive

zerossl.ocsp.sectigo.com/

104.18.32.68

200 OK

316 B

URL HTTP/1.1
zerossl.ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
316 B (316 bytes)
Hash
b28b6536661ce359f5c6b1891ea8190b
fdbea692565529f59fef75667c6a18ca51286aa7
d0c08585f36355476c926149ca47903fe1ded545a551912a33c0df828e682bfc

HTTP Headers

POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:02:44 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 04:07:14 GMT
Expires: Thu, 02 Feb 2023 04:07:13 GMT
Etag: "fdbea692565529f59fef75667c6a18ca51286aa7"
Cache-Control: max-age=395668,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790a447d4dddb51d-OSL

news-yuyuve.com/lands/36/lp.js

193.108.118.121

200 OK

1.4 kB

URL HTTP/2
news-yuyuve.com/lands/36/lp.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
Unicode text, UTF-8 text
Size
1.4 kB (1420 bytes)
Hash
159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /lands/36/lp.js HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/revopush.js?v=4

193.108.118.121

200 OK

10 kB

URL HTTP/2
news-yuyuve.com/revopush.js?v=4
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (9954), with no line terminators
Size
10 kB (9954 bytes)
Hash
fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /revopush.js?v=4 HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/logo.png

193.108.118.121

200 OK

7.4 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/logo.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
7.4 kB (7398 bytes)
Hash
6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/logo.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/search-icon.png

193.108.118.121

200 OK

461 B

URL HTTP/2
news-yuyuve.com/lands/36/img/search-icon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
461 B (461 bytes)
Hash
71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/search-icon.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/Spin-1s-80px.gif

193.108.118.121

200 OK

31 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
GIF image data, version 89a, 80 x 80\012- data
Size
31 kB (30677 bytes)
Hash
68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.203.75.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.203.75.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gbHxU3xlpAwr+0LVZvDYYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gfjO2ljsvHgCHoSo2HtZI24+X7M=

news-yuyuve.com/lands/36/img/player-controls-l.png

193.108.118.121

200 OK

945 B

URL HTTP/2
news-yuyuve.com/lands/36/img/player-controls-l.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
945 B (945 bytes)
Hash
6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/player-controls-r.png

193.108.118.121

200 OK

408 B

URL HTTP/2
news-yuyuve.com/lands/36/img/player-controls-r.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
408 B (408 bytes)
Hash
f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/player-bg.jpg

193.108.118.121

200 OK

11 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/player-bg.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
11 kB (11291 bytes)
Hash
d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-1.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-1.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9604 bytes)
Hash
8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-2.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-2.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9474 bytes)
Hash
b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-3.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-3.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9413 bytes)
Hash
76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-4.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-4.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9468 bytes)
Hash
107bdcec0a201d69db378827b68127cd
efc977edd0a369769d5f32d88e9858302bed1e5e
cb8a23effd64618021ebe40be5ed24bfb27c17f6d0a82c87a96d9efd91e06468

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-4.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9468
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-5.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-5.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9557 bytes)
Hash
628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-6.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-6.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9620 bytes)
Hash
a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-7.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-7.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9484 bytes)
Hash
94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-8.jpg

193.108.118.121

200 OK

9.8 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-8.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.8 kB (9750 bytes)
Hash
2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-9.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-9.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9646 bytes)
Hash
c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-10.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-10.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9681 bytes)
Hash
00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-11.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-11.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9483 bytes)
Hash
8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-12.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-12.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9487 bytes)
Hash
3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-13.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-13.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9378 bytes)
Hash
cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-14.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-14.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9498 bytes)
Hash
4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-15.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-15.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9673 bytes)
Hash
bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-16.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-16.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9570 bytes)
Hash
700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-17.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-17.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9595 bytes)
Hash
3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/pics-18.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/pics-18.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9645 bytes)
Hash
52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/img/style.css

193.108.118.121

200 OK

4.9 kB

URL HTTP/2
news-yuyuve.com/lands/36/img/style.css
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
data
Size
4.9 kB (4869 bytes)
Hash
39263af7a5cc956076dc4b124cabbe31
f01129767704f6755a7e6ed5d348c7225c1f1c37
48eb259dc49b8abeefd079dcebb079b050886371b1e409e9ef6d64516741cd9b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/style.css HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2

errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js

144.76.158.184

200 OK

1.9 kB

URL HTTP/1.1
errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js
IP
144.76.158.184:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (512)
Size
1.9 kB (1855 bytes)
Hash
80932f4dcde89b05c9a4e8f491d1137a
790824b7aee301fa9a3794fa34b7cef37a88f730
9a0262ebf8e5fcb4028b6ea0876c9e06270170be66a752a08dd4acdfa6ca7b93

HTTP Headers

GET /js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://news-yuyuve.com
Connection: keep-alive
Referer: https://news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 28 Jan 2023 14:02:45 GMT
Content-Type: text/javascript
Content-Length: 1855
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
Surrogate-Key: project/3 sdk/7.15.0 sdk-loader
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000

news-yuyuve.com/sw.js

193.108.118.121

200 OK

4.2 kB

URL HTTP/2
news-yuyuve.com/sw.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (4168)
Size
4.2 kB (4199 bytes)
Hash
569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /sw.js HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/hd.png

193.108.118.121

200 OK

536 B

URL HTTP/2
news-yuyuve.com/lands/36/hd.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Size
536 B (536 bytes)
Hash
53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/hd.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/stars-5.png

193.108.118.121

200 OK

566 B

URL HTTP/2
news-yuyuve.com/lands/36/stars-5.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
566 B (566 bytes)
Hash
5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-5.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/stars-4.png

193.108.118.121

200 OK

733 B

URL HTTP/2
news-yuyuve.com/lands/36/stars-4.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-4.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/favicon.png

193.108.118.121

200 OK

1.2 kB

URL HTTP/2
news-yuyuve.com/lands/36/favicon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1233 bytes)
Hash
e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/favicon.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

browser.sentry-cdn.com/7.19.0/bundle.es5.min.js

151.101.130.217

200 OK

20 kB

URL HTTP/2
browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (62031)
Size
20 kB (20174 bytes)
Hash
1c6083f7ae34ed2fa3236569eec9ff56
0c1be1b5468042e65e02c8b886c50d26427c9ce7
2b1d69121eb9dc0629126ff02cf7acef2f1924b32b0bb654792ecd9101e10c44

HTTP Headers

GET /7.19.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 11 Nov 2023 17:34:32 GMT
last-modified: Thu, 10 Nov 2022 15:50:35 GMT
etag: "1c6083f7ae34ed2fa3236569eec9ff56"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:45 GMT
age: 6726493
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20174
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/lp.js

193.108.118.121

200 OK

1.4 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/lp.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
Unicode text, UTF-8 text
Size
1.4 kB (1420 bytes)
Hash
159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /lands/36/lp.js HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/revopush.js?v=4

193.108.118.121

200 OK

10 kB

URL HTTP/2
1.news-yuyuve.com/revopush.js?v=4
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (9954), with no line terminators
Size
10 kB (9954 bytes)
Hash
fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /revopush.js?v=4 HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/logo.png

193.108.118.121

200 OK

7.4 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/logo.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
7.4 kB (7398 bytes)
Hash
6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/logo.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/search-icon.png

193.108.118.121

200 OK

461 B

URL HTTP/2
1.news-yuyuve.com/lands/36/img/search-icon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
461 B (461 bytes)
Hash
71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/search-icon.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif

193.108.118.121

200 OK

31 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
GIF image data, version 89a, 80 x 80\012- data
Size
31 kB (30677 bytes)
Hash
68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/player-controls-l.png

193.108.118.121

200 OK

945 B

URL HTTP/2
1.news-yuyuve.com/lands/36/img/player-controls-l.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
945 B (945 bytes)
Hash
6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/player-controls-r.png

193.108.118.121

200 OK

408 B

URL HTTP/2
1.news-yuyuve.com/lands/36/img/player-controls-r.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
408 B (408 bytes)
Hash
f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/player-bg.jpg

193.108.118.121

200 OK

11 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/player-bg.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
11 kB (11291 bytes)
Hash
d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-1.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-1.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9604 bytes)
Hash
8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-2.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-2.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9474 bytes)
Hash
b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-3.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-3.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9413 bytes)
Hash
76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-4.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-4.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9468 bytes)
Hash
107bdcec0a201d69db378827b68127cd
efc977edd0a369769d5f32d88e9858302bed1e5e
cb8a23effd64618021ebe40be5ed24bfb27c17f6d0a82c87a96d9efd91e06468

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-4.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9468
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-5.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-5.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9557 bytes)
Hash
628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-6.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-6.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9620 bytes)
Hash
a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-7.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-7.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9484 bytes)
Hash
94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-8.jpg

193.108.118.121

200 OK

9.8 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-8.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.8 kB (9750 bytes)
Hash
2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-9.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-9.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9646 bytes)
Hash
c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-10.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-10.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9681 bytes)
Hash
00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-11.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-11.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9483 bytes)
Hash
8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-12.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-12.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9487 bytes)
Hash
3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-13.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-13.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9378 bytes)
Hash
cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-14.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-14.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9498 bytes)
Hash
4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-15.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-15.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9673 bytes)
Hash
bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-16.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-16.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9570 bytes)
Hash
700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-17.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-17.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9595 bytes)
Hash
3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/pics-18.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/pics-18.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9645 bytes)
Hash
52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/sw.js

193.108.118.121

200 OK

4.2 kB

URL HTTP/2
1.news-yuyuve.com/sw.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (4168)
Size
4.2 kB (4199 bytes)
Hash
569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /sw.js HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/hd.png

193.108.118.121

200 OK

536 B

URL HTTP/2
1.news-yuyuve.com/lands/36/hd.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Size
536 B (536 bytes)
Hash
53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/hd.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/stars-5.png

193.108.118.121

200 OK

566 B

URL HTTP/2
1.news-yuyuve.com/lands/36/stars-5.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
566 B (566 bytes)
Hash
5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-5.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/stars-4.png

193.108.118.121

200 OK

733 B

URL HTTP/2
1.news-yuyuve.com/lands/36/stars-4.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-4.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/favicon.png

193.108.118.121

200 OK

1.2 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/favicon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1233 bytes)
Hash
e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/favicon.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

browser.sentry-cdn.com/7.19.0/bundle.es5.min.js

151.101.130.217

200 OK

20 kB

URL HTTP/2
browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (62031)
Size
20 kB (20174 bytes)
Hash
1c6083f7ae34ed2fa3236569eec9ff56
0c1be1b5468042e65e02c8b886c50d26427c9ce7
2b1d69121eb9dc0629126ff02cf7acef2f1924b32b0bb654792ecd9101e10c44

HTTP Headers

GET /7.19.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 11 Nov 2023 17:34:32 GMT
last-modified: Thu, 10 Nov 2022 15:50:35 GMT
etag: "1c6083f7ae34ed2fa3236569eec9ff56"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:46 GMT
age: 6726494
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20174
X-Firefox-Spdy: h2

browser.sentry-cdn.com/7.15.0/bundle.es5.min.js

151.101.130.217

200 OK

20 kB

URL HTTP/2
browser.sentry-cdn.com/7.15.0/bundle.es5.min.js
IP
151.101.130.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (61994)
Size
20 kB (20163 bytes)
Hash
630573cba95f68cf0b327187fb13c020
d43f4f70268aa019fc4d2627cd477864dc291271
ece93676dd48b988b7f480f72442e66e243ed2d1a5989ed742687391c1f21ef6

HTTP Headers

GET /7.15.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1.news-yuyuve.com
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 01 Dec 2023 08:56:47 GMT
last-modified: Mon, 10 Oct 2022 12:23:16 GMT
etag: "630573cba95f68cf0b327187fb13c020"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:46 GMT
age: 5029559
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20163
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive

2.news-yuyuve.com/lands/36/lp.js

193.108.118.121

200 OK

1.4 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/lp.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
Unicode text, UTF-8 text
Size
1.4 kB (1420 bytes)
Hash
159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /lands/36/lp.js HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7028 bytes)
Hash
57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 58031
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

2.news-yuyuve.com/revopush.js?v=4

193.108.118.121

200 OK

10 kB

URL HTTP/2
2.news-yuyuve.com/revopush.js?v=4
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (9954), with no line terminators
Size
10 kB (9954 bytes)
Hash
fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0

HTTP Headers

GET /revopush.js?v=4 HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7819 bytes)
Hash
6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RBvJ-kohSNIneW4uHfp0sGGhpKGkzDWt6RjDTqFkK_UJvH2Bq2N8Rg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:00:20 GMT
age: 57746
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/logo.png

193.108.118.121

200 OK

7.4 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/logo.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Size
7.4 kB (7398 bytes)
Hash
6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/logo.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/search-icon.png

193.108.118.121

200 OK

461 B

URL HTTP/2
2.news-yuyuve.com/lands/36/img/search-icon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
461 B (461 bytes)
Hash
71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/search-icon.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif

193.108.118.121

200 OK

31 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
GIF image data, version 89a, 80 x 80\012- data
Size
31 kB (30677 bytes)
Hash
68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive

2.news-yuyuve.com/lands/36/img/player-controls-l.png

193.108.118.121

200 OK

945 B

URL HTTP/2
2.news-yuyuve.com/lands/36/img/player-controls-l.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
945 B (945 bytes)
Hash
6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/player-controls-r.png

193.108.118.121

200 OK

408 B

URL HTTP/2
2.news-yuyuve.com/lands/36/img/player-controls-r.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Size
408 B (408 bytes)
Hash
f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7395 bytes)
Hash
3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:01:09 GMT
age: 57697
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

news-yuyuve.com/traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36

193.108.118.121

200 OK

7.7 kB

URL HTTP/2
news-yuyuve.com/traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
data
Size
7.7 kB (7668 bytes)
Hash
08a3e4aedf7326b54d9c44db76e1d39e
d582a43509ab65568317009f847619078cd27dc0
4321edaf0fc2fd58a1349437aa56c8568c5aa57b07ced2dfa44793535631b389

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/player-bg.jpg

193.108.118.121

200 OK

11 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/player-bg.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
11 kB (11291 bytes)
Hash
d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7538 bytes)
Hash
131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 31363
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-1.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-1.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9604 bytes)
Hash
8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-2.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-2.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9474 bytes)
Hash
b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-3.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-3.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9413 bytes)
Hash
76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=

193.108.118.121

200 OK

12 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
data
Size
12 kB (12238 bytes)
Hash
a58a100822c91169abd506e3fce4f83f
f1cafaee9c22ab2f0624141dd47cbe1772ed1e31
e4f630f06c2fa15064d0e71f2e3169aa69a74b3930b58cc27c583c09a61ac4e6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:46 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-5.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-5.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9557 bytes)
Hash
628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 57960
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-6.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-6.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9620 bytes)
Hash
a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-7.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-7.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9484 bytes)
Hash
94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-8.jpg

193.108.118.121

200 OK

9.8 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-8.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.8 kB (9750 bytes)
Hash
2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-9.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-9.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9646 bytes)
Hash
c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-10.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-10.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9681 bytes)
Hash
00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-11.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-11.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9483 bytes)
Hash
8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-12.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-12.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9487 bytes)
Hash
3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-13.jpg

193.108.118.121

200 OK

9.4 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-13.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.4 kB (9378 bytes)
Hash
cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-14.jpg

193.108.118.121

200 OK

9.5 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-14.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.5 kB (9498 bytes)
Hash
4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-15.jpg

193.108.118.121

200 OK

9.7 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-15.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.7 kB (9673 bytes)
Hash
bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-16.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-16.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9570 bytes)
Hash
700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-17.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-17.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9595 bytes)
Hash
3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/pics-18.jpg

193.108.118.121

200 OK

9.6 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/pics-18.jpg
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
JPEG image data\012- data
Size
9.6 kB (9645 bytes)
Hash
52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/img/style.css

193.108.118.121

200 OK

4.5 kB

URL HTTP/2
1.news-yuyuve.com/lands/36/img/style.css
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
data
Size
4.5 kB (4528 bytes)
Hash
f703290344242cf0401b26a5880f708a
5cbc334f4ba5bbac2fd4e54fe1988c4c129230d0
54535237153d181416bb54babe24d466428c664a6d92583fe7ed5a4dd2d97143

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/style.css HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2

2.news-yuyuve.com/sw.js

193.108.118.121

200 OK

4.2 kB

URL HTTP/2
2.news-yuyuve.com/sw.js
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (4168)
Size
4.2 kB (4199 bytes)
Hash
569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /sw.js HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/hd.png

193.108.118.121

200 OK

536 B

URL HTTP/2
2.news-yuyuve.com/lands/36/hd.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Size
536 B (536 bytes)
Hash
53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/hd.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/stars-5.png

193.108.118.121

200 OK

566 B

URL HTTP/2
2.news-yuyuve.com/lands/36/stars-5.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
566 B (566 bytes)
Hash
5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-5.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/stars-4.png

193.108.118.121

200 OK

733 B

URL HTTP/2
2.news-yuyuve.com/lands/36/stars-4.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
733 B (733 bytes)
Hash
8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/stars-4.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/favicon.png

193.108.118.121

200 OK

1.2 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/favicon.png
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1233 bytes)
Hash
e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/favicon.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

2.news-yuyuve.com/lands/36/img/style.css

193.108.118.121

200 OK

24 kB

URL HTTP/2
2.news-yuyuve.com/lands/36/img/style.css
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
ASCII text, with very long lines (41409), with CRLF, LF line terminators
Size
24 kB (24540 bytes)
Hash
8118705bb174ccd1c84e92a2045054a6
48309bccf6a157950a717727160afee7701bc29f
7bfedeb687406307eae5dcc5ea8af1b1805c71e73a8c282b2feb56b095e60e9b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/img/style.css HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2b184b1c03218a7335c0fa11fdeacad7
7228b73aad628c47ffaac4b45224523818998461
4832024da0568520f54d8472269d2b3394f3afe4ce1e4257e91b1b390c5861a8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Server: ECS (amb/6BBD)
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
2b184b1c03218a7335c0fa11fdeacad7
7228b73aad628c47ffaac4b45224523818998461
4832024da0568520f54d8472269d2b3394f3afe4ce1e4257e91b1b390c5861a8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Last-Modified: Sat, 28 Jan 2023 14:02:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
03f8e321e7c88e30a465997a7d401b96
6fda16b440f97668ed326258854a61d1f91f7a49
43a5048f89f43eff66468479abdac62aa9a848862b52845d2d48602426d5f3c8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=143907
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Etag: "63d4ba2a-116"
Expires: Mon, 30 Jan 2023 06:01:14 GMT
Last-Modified: Sat, 28 Jan 2023 06:01:14 GMT
Server: nginx
Content-Length: 278

sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}

104.18.5.162

200 OK

8.2 kB

URL HTTP/2
sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}
IP
104.18.5.162:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10967)
Size
8.2 kB (8169 bytes)
Hash
7072bd02ad06eead33daff74d191c9eb
21d2a0faa15886c6dced7dc4e02018e1f21a45f7
ed1257bdccac8c1d9bd9c59009717280af509044a4ce5e6339ebd0ae05b07042

HTTP Headers

GET /aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1} HTTP/1.1
Host: sdfjjd.globatds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2.news-yuyuve.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:02:47 GMT
content-type: text/html
last-modified: Tue, 12 Jan 2021 09:35:39 GMT
cf-cache-status: MISS
expires: Tue, 28 Feb 2023 14:02:47 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a44902ad5b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0

144.76.158.184

429 Too Many Requests

162 B

URL HTTP/1.1
errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0
IP
144.76.158.184:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
7f44c7691673d77d8557d4d5699ef23a
f30daebcb81f94af5e6dfd9e70585b8904d72ac1
413d294fad14524bf94e764b33ff0f327682549408545171fcf9240189c154ae

HTTP Headers

POST /api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0 HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 135
Origin: https://2.news-yuyuve.com
Connection: keep-alive
Referer: https://2.news-yuyuve.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 429 Too Many Requests
Server: nginx/1.22.1
Date: Sat, 28 Jan 2023 14:02:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: close

2.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36

193.108.118.121

200 OK

13 kB

URL HTTP/2
2.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type
data
Size
13 kB (13328 bytes)
Hash
2e563e8c899a9a4ada37ac4696dbee6f
66b215f92278a8c7bd2360bff013880aed2d7a38
bd821a791982472dae7d46ce3bd788fd4c826fbf138ace8ddafe7ae9a5790c2b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab744f1fbf03bf793085117f6691a062
f26ee7a876fee3e80c2521374a4c527d55b17e83
fc5b8cb6f5bd7396921cac6bf1bbd6cb41715cdcd19527ae5310e59eafd07928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC5B8CB6F5BD7396921CAC6BF1BBD6CB41715CDCD19527AE5310E59EAFD07928"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16441
Expires: Sat, 28 Jan 2023 18:36:50 GMT
Date: Sat, 28 Jan 2023 14:02:49 GMT
Connection: keep-alive

my.rtmark.net/gid.js?pub=0&checkDuplicate=true

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&checkDuplicate=true
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
10bbc03b268a3b2662cfe540115b0e3a
15725cc96a0baf000db138abcd723fe2919c7276
53a29e73d57c3019d7fbd8e11f00cbb19709c4be3e2d4bd2fa01c4fda2243ca3

HTTP Headers

GET /gid.js?pub=0&checkDuplicate=true HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.globatds.com/
Origin: https://6.globatds.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:49 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://6.globatds.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0f0877b5c0184aca90b070b5b6a2f75d; expires=Sun, 28 Jan 2024 14:02:49 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=

193.108.118.121

200 OK

0 B

URL HTTP/2
1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:45 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2

1.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36

193.108.118.121

200 OK

0 B

URL HTTP/2
1.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

oneloveworld.space/zawsqe

172.67.223.242

302 Found

0 B

URL HTTP/2
oneloveworld.space/zawsqe
IP
172.67.223.242:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /zawsqe HTTP/1.1
Host: oneloveworld.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sat, 28 Jan 2023 14:02:47 GMT
content-type: text/html; charset=UTF-8
location: https://sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpadms65p;Expires=Tuesday, 28-Feb-2023 14:02:47 GMT;Max-Age=2678400;Path=/
ac3b8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxNVwiOjE2NzQ5MTQ1Njd9LFwiY2FtcGFpZ25zXCI6e1wiNDFcIjoxNjc0OTE0NTY3fSxcInRpbWVcIjoxNjc0OTE0NTY3fSJ9.jg2ehfvgAqAFzm4HxgSZnGIEODFEGYot6_DfiIM4rVs;Expires=Wednesday, 26-Feb-2076 04:05:34 GMT;Max-Age=1675000967;Path=/
_token=uuid_s8hnpadms65p_s8hnpadms65p63d52b075a2555.89698990;Expires=Tuesday, 28-Feb-2023 14:02:47 GMT;Max-Age=2678400;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2ic%2FOunVp15QbDa1LhHnxSo8STSB%2Bj3VCOsX1qkHRIiu4GHEgYOQncLapG8WsRcaXU41tBbz8jaw5n2upV6FfTk5zFRiRwP7Ep%2By3SmFc222SlP3TQfdeQGWSHQAHDKmzpD%2FYk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a448d7d72b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=

193.108.118.121

200 OK

0 B

URL HTTP/2
news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4= HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:44 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2

videoandgames.site/zb3FQS4t

188.114.96.1

302 Found

0 B

URL HTTP/2
videoandgames.site/zb3FQS4t
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /zb3FQS4t HTTP/1.1
Host: videoandgames.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
location: https://news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpadms65c;Expires=Tuesday, 28-Feb-2023 14:02:44 GMT;Max-Age=2678400;Path=/
ac3b8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjIzMDZcIjoxNjc0OTE0NTY0fSxcImNhbXBhaWduc1wiOntcIjI5N1wiOjE2NzQ5MTQ1NjR9LFwidGltZVwiOjE2NzQ5MTQ1NjR9In0.rO0jxrTtyd0ZhVOLRAWEp_Z84ce7ABbLTip0CuAeREc;Expires=Wednesday, 26-Feb-2076 04:05:28 GMT;Max-Age=1675000964;Path=/
_token=uuid_s8hnpadms65c_s8hnpadms65c63d52b04781f22.33794117;Expires=Tuesday, 28-Feb-2023 14:02:44 GMT;Max-Age=2678400;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pEngX6LCuqv3xE12ruzryGueol4E%2FJxvAQ3%2Bnzj5j8gXDcgvrEPHDUCR9WDXsocblzSzVt2w6DCW21s5yw7%2FEvNbdG%2FIYcI%2FWGc%2FjoE17sj5G%2FxAm17tuAV3%2B8WAwJxNMD6ktcU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a447b19e70b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com

193.108.118.121

302 Found

0 B

URL HTTP/2
news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com
IP
193.108.118.121:0
ASN
#61003 GlobalTeleHost Corp.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
location: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
cache-control: no-cache, must-revalidate
pragma: no-cache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML