videoandgames.site/zb3FQS4t
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 videoandgames.site/zb3FQS4t
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /zb3FQS4t HTTP/1.1
Host: videoandgames.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 14:02:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://videoandgames.site/zb3FQS4t
Pragma: no-cache
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sy2Jb%2FDnDAWphrkR1zfcG9gvM8VH1c0Ki0F3lXWWDRPvbrtkSS6SeruQB9fdxay3z2F46Z5J%2BLOrpq5NLxTfEkNgsJFPXoe3xvHt3AUalVuHvf5QxZLVjFsyouGUpJssL2YB8IM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a4477bf3ab505-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12604
Expires: Sat, 28 Jan 2023 17:32:48 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10193
Expires: Sat, 28 Jan 2023 16:52:37 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 13:43:05 GMT
content-type: application/json
age: 1179
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7374
Expires: Sat, 28 Jan 2023 16:05:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v0mHwNhILo3tx0b9/91djlXEKUNmBKzjpZGLozJ99u1ik0UeRnoAacWc6g3FgkhP9MW9iYZUMxopSQDcaOygpA==
x-amz-request-id: MQ67XN3J6TWTMP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:54 GMT
age: 770
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5f09f6c0fe86f08a542a44cc48c5dd79
e3b73fe26b3871a37c665caf84278349962a0605
e09ff6d0bdc5aa6ed9b9d6e678a0213e7161932092eac740c7a9da195744c570
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E09FF6D0BDC5AA6ED9B9D6E678A0213E7161932092EAC740C7A9DA195744C570"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 28 Jan 2023 20:02:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5f09f6c0fe86f08a542a44cc48c5dd79
e3b73fe26b3871a37c665caf84278349962a0605
e09ff6d0bdc5aa6ed9b9d6e678a0213e7161932092eac740c7a9da195744c570
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E09FF6D0BDC5AA6ED9B9D6E678A0213E7161932092EAC740C7A9DA195744C570"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 28 Jan 2023 20:02:38 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 13:41:40 GMT
age: 1264
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11059
Expires: Sat, 28 Jan 2023 17:07:03 GMT
Date: Sat, 28 Jan 2023 14:02:44 GMT
Connection: keep-alive
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 316 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash b28b6536661ce359f5c6b1891ea8190b
fdbea692565529f59fef75667c6a18ca51286aa7
d0c08585f36355476c926149ca47903fe1ded545a551912a33c0df828e682bfc
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:02:44 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 04:07:14 GMT
Expires: Thu, 02 Feb 2023 04:07:13 GMT
Etag: "fdbea692565529f59fef75667c6a18ca51286aa7"
Cache-Control: max-age=395668,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790a447d4dddb51d-OSL
news-yuyuve.com/lands/36/lp.js
193.108.118.121200 OK 1.4 kB URL HTTP/2 news-yuyuve.com/lands/36/lp.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/36/lp.js HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/revopush.js?v=4
193.108.118.121200 OK 10 kB URL HTTP/2 news-yuyuve.com/revopush.js?v=4
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (9954), with no line terminators
Hash fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /revopush.js?v=4 HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/logo.png
193.108.118.121200 OK 7.4 kB URL HTTP/2 news-yuyuve.com/lands/36/img/logo.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/logo.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/search-icon.png
193.108.118.121200 OK 461 B URL HTTP/2 news-yuyuve.com/lands/36/img/search-icon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/search-icon.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
193.108.118.121200 OK 31 kB URL HTTP/2 news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type GIF image data, version 89a, 80 x 80\012- data
Hash 68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.203.75.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.203.75.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gbHxU3xlpAwr+0LVZvDYYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gfjO2ljsvHgCHoSo2HtZI24+X7M=
news-yuyuve.com/lands/36/img/player-controls-l.png
193.108.118.121200 OK 945 B URL HTTP/2 news-yuyuve.com/lands/36/img/player-controls-l.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/player-controls-r.png
193.108.118.121200 OK 408 B URL HTTP/2 news-yuyuve.com/lands/36/img/player-controls-r.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/player-bg.jpg
193.108.118.121200 OK 11 kB URL HTTP/2 news-yuyuve.com/lands/36/img/player-bg.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-1.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-1.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-2.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-2.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-3.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-3.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-4.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-4.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 107bdcec0a201d69db378827b68127cd
efc977edd0a369769d5f32d88e9858302bed1e5e
cb8a23effd64618021ebe40be5ed24bfb27c17f6d0a82c87a96d9efd91e06468
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-4.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9468
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-5.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-5.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-6.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-6.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-7.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-7.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-8.jpg
193.108.118.121200 OK 9.8 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-8.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-9.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-9.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-10.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-10.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-11.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-11.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-12.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-12.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-13.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-13.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-14.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-14.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-15.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-15.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-16.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-16.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-17.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-17.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/pics-18.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 news-yuyuve.com/lands/36/img/pics-18.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/img/style.css
193.108.118.121200 OK 4.9 kB URL HTTP/2 news-yuyuve.com/lands/36/img/style.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 39263af7a5cc956076dc4b124cabbe31
f01129767704f6755a7e6ed5d348c7225c1f1c37
48eb259dc49b8abeefd079dcebb079b050886371b1e409e9ef6d64516741cd9b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/style.css HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js
144.76.158.184200 OK 1.9 kB URL HTTP/1.1 errors.house/js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js
IP 144.76.158.184:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (512)
Hash 80932f4dcde89b05c9a4e8f491d1137a
790824b7aee301fa9a3794fa34b7cef37a88f730
9a0262ebf8e5fcb4028b6ea0876c9e06270170be66a752a08dd4acdfa6ca7b93
GET /js-sdk-loader/f1c7cfc107e94764b41b7a2b50de5ae0.min.js HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://news-yuyuve.com
Connection: keep-alive
Referer: https://news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sat, 28 Jan 2023 14:02:45 GMT
Content-Type: text/javascript
Content-Length: 1855
Connection: close
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
Surrogate-Key: project/3 sdk/7.15.0 sdk-loader
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000
news-yuyuve.com/sw.js
193.108.118.121200 OK 4.2 kB IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (4168)
Hash 569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /sw.js HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/hd.png
193.108.118.121200 OK 536 B URL HTTP/2 news-yuyuve.com/lands/36/hd.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Hash 53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/hd.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/stars-5.png
193.108.118.121200 OK 566 B URL HTTP/2 news-yuyuve.com/lands/36/stars-5.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-5.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/stars-4.png
193.108.118.121200 OK 733 B URL HTTP/2 news-yuyuve.com/lands/36/stars-4.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-4.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/favicon.png
193.108.118.121200 OK 1.2 kB URL HTTP/2 news-yuyuve.com/lands/36/favicon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/favicon.png HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
151.101.130.217200 OK 20 kB URL HTTP/2 browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (62031)
Hash 1c6083f7ae34ed2fa3236569eec9ff56
0c1be1b5468042e65e02c8b886c50d26427c9ce7
2b1d69121eb9dc0629126ff02cf7acef2f1924b32b0bb654792ecd9101e10c44
GET /7.19.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 11 Nov 2023 17:34:32 GMT
last-modified: Thu, 10 Nov 2022 15:50:35 GMT
etag: "1c6083f7ae34ed2fa3236569eec9ff56"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:45 GMT
age: 6726493
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20174
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/lp.js
193.108.118.121200 OK 1.4 kB URL HTTP/2 1.news-yuyuve.com/lands/36/lp.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/36/lp.js HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/revopush.js?v=4
193.108.118.121200 OK 10 kB URL HTTP/2 1.news-yuyuve.com/revopush.js?v=4
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (9954), with no line terminators
Hash fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0
Analyzer Verdict Alert quad9 Sinkholed
GET /revopush.js?v=4 HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/logo.png
193.108.118.121200 OK 7.4 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/logo.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/logo.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/search-icon.png
193.108.118.121200 OK 461 B URL HTTP/2 1.news-yuyuve.com/lands/36/img/search-icon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/search-icon.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
193.108.118.121200 OK 31 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type GIF image data, version 89a, 80 x 80\012- data
Hash 68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/player-controls-l.png
193.108.118.121200 OK 945 B URL HTTP/2 1.news-yuyuve.com/lands/36/img/player-controls-l.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/player-controls-r.png
193.108.118.121200 OK 408 B URL HTTP/2 1.news-yuyuve.com/lands/36/img/player-controls-r.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/player-bg.jpg
193.108.118.121200 OK 11 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/player-bg.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-1.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-1.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-2.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-2.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-3.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-3.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-4.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-4.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 107bdcec0a201d69db378827b68127cd
efc977edd0a369769d5f32d88e9858302bed1e5e
cb8a23effd64618021ebe40be5ed24bfb27c17f6d0a82c87a96d9efd91e06468
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-4.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9468
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-5.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-5.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-6.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-6.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-7.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-7.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-8.jpg
193.108.118.121200 OK 9.8 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-8.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-9.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-9.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-10.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-10.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-11.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-11.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-12.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-12.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-13.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-13.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-14.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-14.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-15.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-15.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-16.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-16.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-17.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-17.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/pics-18.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/pics-18.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/sw.js
193.108.118.121200 OK 4.2 kB IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (4168)
Hash 569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /sw.js HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/hd.png
193.108.118.121200 OK 536 B URL HTTP/2 1.news-yuyuve.com/lands/36/hd.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Hash 53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/hd.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/stars-5.png
193.108.118.121200 OK 566 B URL HTTP/2 1.news-yuyuve.com/lands/36/stars-5.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-5.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/stars-4.png
193.108.118.121200 OK 733 B URL HTTP/2 1.news-yuyuve.com/lands/36/stars-4.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-4.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/favicon.png
193.108.118.121200 OK 1.2 kB URL HTTP/2 1.news-yuyuve.com/lands/36/favicon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/favicon.png HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
151.101.130.217200 OK 20 kB URL HTTP/2 browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (62031)
Hash 1c6083f7ae34ed2fa3236569eec9ff56
0c1be1b5468042e65e02c8b886c50d26427c9ce7
2b1d69121eb9dc0629126ff02cf7acef2f1924b32b0bb654792ecd9101e10c44
GET /7.19.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 11 Nov 2023 17:34:32 GMT
last-modified: Thu, 10 Nov 2022 15:50:35 GMT
etag: "1c6083f7ae34ed2fa3236569eec9ff56"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:46 GMT
age: 6726494
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20174
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.15.0/bundle.es5.min.js
151.101.130.217200 OK 20 kB URL HTTP/2 browser.sentry-cdn.com/7.15.0/bundle.es5.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (61994)
Hash 630573cba95f68cf0b327187fb13c020
d43f4f70268aa019fc4d2627cd477864dc291271
ece93676dd48b988b7f480f72442e66e243ed2d1a5989ed742687391c1f21ef6
GET /7.15.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1.news-yuyuve.com
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 01 Dec 2023 08:56:47 GMT
last-modified: Mon, 10 Oct 2022 12:23:16 GMT
etag: "630573cba95f68cf0b327187fb13c020"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:02:46 GMT
age: 5029559
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20163
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive
2.news-yuyuve.com/lands/36/lp.js
193.108.118.121200 OK 1.4 kB URL HTTP/2 2.news-yuyuve.com/lands/36/lp.js
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 159d11255591f1189cdd471f1fa71918
74649e2f0996d88c2acb6736e1db6c3e84ad82db
8703a0a2f1a3e35d011618de0a4495926ef6c0595203759c14912f669a28371d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lands/36/lp.js HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 1420
last-modified: Mon, 30 Sep 2019 17:01:18 GMT
etag: "5d9234de-58c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 58031
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
2.news-yuyuve.com/revopush.js?v=4
193.108.118.121200 OK 10 kB URL HTTP/2 2.news-yuyuve.com/revopush.js?v=4
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (9954), with no line terminators
Hash fc284a0e5d580856ae4863715ad6733e
eb69f303c80ff8e44abc9601b8616c0cf92faafa
2240a1d10744494668058ba210d0d87203609def9fd69d2ac82092ebc79583c0
GET /revopush.js?v=4 HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 9954
last-modified: Thu, 15 Dec 2022 09:31:10 GMT
etag: "639ae95e-26e2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RBvJ-kohSNIneW4uHfp0sGGhpKGkzDWt6RjDTqFkK_UJvH2Bq2N8Rg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:00:20 GMT
age: 57746
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/logo.png
193.108.118.121200 OK 7.4 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/logo.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 180 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cd3a78b39a704ee1c84f31c8c4e5808
bb5c81cadfcd60bd5c7b29af2395ef24b11ebb93
4cfbf07b7b4def7ad505f3be44e311c631ffec252a93f031d11356bc1b0c8193
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/logo.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 7398
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1ce6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/search-icon.png
193.108.118.121200 OK 461 B URL HTTP/2 2.news-yuyuve.com/lands/36/img/search-icon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 28 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 71a97f63eeafce6cc8dd4e7b92e77303
e92e36474a69fcf7b932efc581e024a1c25773e5
fc2f527dba6449b1d9a7f17e4e9926039806904f58a7b4278dccf398900371d2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/search-icon.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 461
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-1cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
193.108.118.121200 OK 31 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/Spin-1s-80px.gif
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type GIF image data, version 89a, 80 x 80\012- data
Hash 68556766cd260e97fec2b60a9bfaf8c7
26c969371c9a3de360fab6d7a7a3bec2c5d5c99f
ef50b84645244197917d80f6bcd6f604dce892ec4cdcdc96f11ea40f4a093676
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/Spin-1s-80px.gif HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/gif
content-length: 30677
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-77d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:02:46 GMT
Connection: keep-alive
2.news-yuyuve.com/lands/36/img/player-controls-l.png
193.108.118.121200 OK 945 B URL HTTP/2 2.news-yuyuve.com/lands/36/img/player-controls-l.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 146 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash 6865c8700b582e4c7848472bb23dd65a
c5ea2c514de8f55145550f9589e1e07cda457994
e1f5b32f965cf94fdb788fa9cff4f2f80b34c234f7e9fa9139de890e89438324
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-l.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 945
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-3b1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/player-controls-r.png
193.108.118.121200 OK 408 B URL HTTP/2 2.news-yuyuve.com/lands/36/img/player-controls-r.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 60 x 60, 8-bit gray+alpha, non-interlaced\012- data
Hash f0e42db89f7d0994b3723b35eb05a49f
b4e08e7b2c525345d86dc2299663915c84a41b2b
13bbdf214a22994e4e0e655c256ab493cc495f15f9c1f08772cad0761625a9be
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-controls-r.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 408
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:01:09 GMT
age: 57697
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
news-yuyuve.com/traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36
193.108.118.121200 OK 7.7 kB URL HTTP/2 news-yuyuve.com/traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 08a3e4aedf7326b54d9c44db76e1d39e
d582a43509ab65568317009f847619078cd27dc0
4321edaf0fc2fd58a1349437aa56c8568c5aa57b07ced2dfa44793535631b389
Analyzer Verdict Alert quad9 Sinkholed
GET /traffback.php?site=8058609&sub1=sub1&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/player-bg.jpg
193.108.118.121200 OK 11 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/player-bg.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash d0c6f02d6933f0b93db0942e3e7f3609
bc96b3878d13d0f46aa464e94515f27ad53531b0
7296089ccd9e42b305c5b0398d47a78f900b40225c592c6f1ef23ade5bbe667a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/player-bg.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 11291
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2c1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 31363
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-1.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-1.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8374be5c573da988b4d76c1051f8cbc7
c319af79d391edeac2268173798952dd71f0ecf2
41889b3a66aec88fc8a474f19a6c2f6933200524597ccf76f2c9f995687099ea
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-1.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9604
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2584"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-2.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-2.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash b1444ede1cb63c55f07c4b7cc861ec58
504823696a6990f0c6892721e34a7496cfe4e704
628146e090737199d0b92e0d069cdc8fa95d65391a7e84b7da053dbc0275b2f8
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-2.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9474
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-3.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-3.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 76025b7cd7b3e168342e9f6916d8c7f4
bd2a6ea7c9105935c7a616fec2d6d85dbf98bfc2
46eaa0e5c25c663d858a5c65629f960ed17d2fe30b2484f629158e6d6460d775
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-3.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9413
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
193.108.118.121200 OK 12 kB URL HTTP/2 2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash a58a100822c91169abd506e3fce4f83f
f1cafaee9c22ab2f0624141dd47cbe1772ed1e31
e4f630f06c2fa15064d0e71f2e3169aa69a74b3930b58cc27c583c09a61ac4e6
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:46 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-5.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-5.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 628b98b82d0aca1c1b2155aa5ec51a6a
db663b2b85cf8828f3e9c5aa879325bb50e684a0
d7dfe6be5b49bee8bbf743bc58d74af3dc7d0250c89bd6dd7e9ad268c287289d
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-5.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9557
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 57960
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-6.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-6.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash a83d5196e71bd6f9c55ef3e7322e527c
9dbddad413391599552c4d9cc5c9e8a287ef910f
52212d360cbbf493678d8e8bf75c20b7ad4b1d6cf86bf03e1c87fb5b4d6cb818
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-6.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9620
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2594"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-7.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-7.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 94edfad63e95c79618692b8d8dc20587
f582b7b70443ea1fff184ade49ab560fc8fd3318
0940f729e51d0fb610affca787415657f39a630cc0450d08576f69fd0f71756e
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-7.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9484
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-8.jpg
193.108.118.121200 OK 9.8 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-8.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 2e7eafc3878ee465f96bca0f9d1e1712
c4f353f12542db5d2df3be74dbae890e0430ac6e
df67f968a051026a5c43eb3e40b8d02a0c72bc742055526fef7e2655dd837cc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-8.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9750
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2616"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-9.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-9.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash c3af10d166a4447c21f25e4a32383a5d
37a0342d08d6933b3bbfd4063b7ba998c991dd73
963fbe86dc33b1a1ba5c695bf9b74ebde439bc7a9260137121d747cf4cfbdd73
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-9.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9646
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-10.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-10.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 00ad8eccd280144f038e883859beeabe
e13583bbe25712e827b8b22b1353c883531f849f
21397b18bd87b564f70404ea1ff41d8d23ba804ed6eea4de323ac1c94e096ada
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-10.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9681
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-11.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-11.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 8611f67b36ff57eaa1060e793b9e6ad4
49f273a5760e7375adb1efc58f0ed2c665da6ae8
de70c6d29629dd9ec1b85e3146390c1019bd608eeb3d7ffdc196627f70ee30b2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-11.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9483
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-12.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-12.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3971b0cd6849aef8e63c281fe7e53c57
690281f0f9a05a32be18029632240693f7b26270
20a9e9a79f97878e87f805b977eb6046480b734dfd9e90df9f34b22ef484777a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-12.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9487
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-250f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-13.jpg
193.108.118.121200 OK 9.4 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-13.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash cd911694d58b5fb86c94cf7a1d5b530b
f32925a79b755d76fdf1ae56fa898ef23d816699
5a8f5f99cb386403813964a7ee271660131e9c50eb5267f932a67ce0f4fb2ea2
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-13.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9378
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-24a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-14.jpg
193.108.118.121200 OK 9.5 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-14.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 4957499f251b620472eb5fe6fd126c22
a237ac15f4b16256f1c49a40ca07ca168dea540c
de5d64cc00dd3bc0e0998e274f41bb78de69cae402e53c4f41c0ab8e0af2cd0b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-14.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9498
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-251a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-15.jpg
193.108.118.121200 OK 9.7 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-15.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash bf608c2d10293273951a88b8d38de015
15b2a17c7300725aacc27f320480dfe5bf173a00
118f446f628921fb7cab1afeac932ef77d63a7c5a31ffa288427d80c4de69f9f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-15.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9673
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25c9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-16.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-16.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 700dfe65fca751e5c160aa1ed38c0389
61a7a9ba2a5209bb28b6a36c4b7ba9088f4b2886
8f8c3d5f93cc6dc00172cf203f6b0113819e853de45518cbcee1e68f9e95fbc1
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-16.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9570
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-2562"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-17.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-17.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 3617c828a4589dfd2af8f90e31f92666
0e7a1dbe743c9eaad109659f7b21ab86719b9cd0
f3ab898058b0ebaba11001b5a2b3c5b5db2d7f766000d95abdbfb841fcb16c1f
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-17.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9595
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-257b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/pics-18.jpg
193.108.118.121200 OK 9.6 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/pics-18.jpg
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type JPEG image data\012- data
Hash 52ada45615791fefe3513b98a28d6c61
334b68a65108b2274dc0d41bbed58d10cbfb41a0
204715e71db20e5daffe8494816412e0998ec0b97b303f16fb4102226c492fa4
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/pics-18.jpg HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/jpeg
content-length: 9645
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-25ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/img/style.css
193.108.118.121200 OK 4.5 kB URL HTTP/2 1.news-yuyuve.com/lands/36/img/style.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash f703290344242cf0401b26a5880f708a
5cbc334f4ba5bbac2fd4e54fe1988c4c129230d0
54535237153d181416bb54babe24d466428c664a6d92583fe7ed5a4dd2d97143
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/style.css HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
2.news-yuyuve.com/sw.js
193.108.118.121200 OK 4.2 kB IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (4168)
Hash 569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /sw.js HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/hd.png
193.108.118.121200 OK 536 B URL HTTP/2 2.news-yuyuve.com/lands/36/hd.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 45 x 20, 8-bit gray+alpha, non-interlaced\012- data
Hash 53475f3df75ff7693ed12733fe8c513b
3e5b6828ae03b83de9db383ae125590941b74bd4
e6678356fad62a540950f23311cb2704270ce52d932d6e04334c617d35cd3f2a
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/hd.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 536
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-218"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/stars-5.png
193.108.118.121200 OK 566 B URL HTTP/2 2.news-yuyuve.com/lands/36/stars-5.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b85774317204f3aa10523b7785ef174
7e5319bf11a3435dc7d2fe79d5a6ca370f55e3bd
025a6f839973370a8ac0f25f2d1063999e44f58b0feabadca224d293407f68d5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-5.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 566
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-236"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/stars-4.png
193.108.118.121200 OK 733 B URL HTTP/2 2.news-yuyuve.com/lands/36/stars-4.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 198 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 8073bfb03d67c8ad7c6bc391ecb99b1f
345fcecfda68fa6da48eb42486039a87743b9430
5c0e326819bba7889e3940ab5f19a33130c0ee1c6b784413ea321cf2b8be36b5
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/stars-4.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/img/style.css
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 733
last-modified: Sun, 29 Sep 2019 17:45:28 GMT
etag: "5d90edb8-2dd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/favicon.png
193.108.118.121200 OK 1.2 kB URL HTTP/2 2.news-yuyuve.com/lands/36/favicon.png
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ffe9c659d8c729e12e20dfe05509be
2c413e09ebd14dd3020209fe9c9183e0335fc250
880c000a3ca23bb89262d9c2ccf9d48bab37dcec09f3b3bf55c8385f58745f50
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/favicon.png HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: image/png
content-length: 1233
last-modified: Tue, 13 Aug 2019 10:07:02 GMT
etag: "5d528bc6-4d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
2.news-yuyuve.com/lands/36/img/style.css
193.108.118.121200 OK 24 kB URL HTTP/2 2.news-yuyuve.com/lands/36/img/style.css
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (41409), with CRLF, LF line terminators
Hash 8118705bb174ccd1c84e92a2045054a6
48309bccf6a157950a717727160afee7701bc29f
7bfedeb687406307eae5dcc5ea8af1b1805c71e73a8c282b2feb56b095e60e9b
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/img/style.css HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/css
last-modified: Tue, 15 Mar 2022 13:19:33 GMT
etag: W/"62309265-5de6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2b184b1c03218a7335c0fa11fdeacad7
7228b73aad628c47ffaac4b45224523818998461
4832024da0568520f54d8472269d2b3394f3afe4ce1e4257e91b1b390c5861a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Server: ECS (amb/6BBD)
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2b184b1c03218a7335c0fa11fdeacad7
7228b73aad628c47ffaac4b45224523818998461
4832024da0568520f54d8472269d2b3394f3afe4ce1e4257e91b1b390c5861a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Last-Modified: Sat, 28 Jan 2023 14:02:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 03f8e321e7c88e30a465997a7d401b96
6fda16b440f97668ed326258854a61d1f91f7a49
43a5048f89f43eff66468479abdac62aa9a848862b52845d2d48602426d5f3c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=143907
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:02:47 GMT
Etag: "63d4ba2a-116"
Expires: Mon, 30 Jan 2023 06:01:14 GMT
Last-Modified: Sat, 28 Jan 2023 06:01:14 GMT
Server: nginx
Content-Length: 278
sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}
104.18.5.162200 OK 8.2 kB URL HTTP/2 sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}
IP 104.18.5.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10967)
Hash 7072bd02ad06eead33daff74d191c9eb
21d2a0faa15886c6dced7dc4e02018e1f21a45f7
ed1257bdccac8c1d9bd9c59009717280af509044a4ce5e6339ebd0ae05b07042
GET /aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1} HTTP/1.1
Host: sdfjjd.globatds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2.news-yuyuve.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:02:47 GMT
content-type: text/html
last-modified: Tue, 12 Jan 2021 09:35:39 GMT
cf-cache-status: MISS
expires: Tue, 28 Feb 2023 14:02:47 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a44902ad5b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0
144.76.158.184429 Too Many Requests 162 B URL HTTP/1.1 errors.house/api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0
IP 144.76.158.184:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 7f44c7691673d77d8557d4d5699ef23a
f30daebcb81f94af5e6dfd9e70585b8904d72ac1
413d294fad14524bf94e764b33ff0f327682549408545171fcf9240189c154ae
POST /api/3/envelope/?sentry_key=f1c7cfc107e94764b41b7a2b50de5ae0&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.15.0 HTTP/1.1
Host: errors.house
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 135
Origin: https://2.news-yuyuve.com
Connection: keep-alive
Referer: https://2.news-yuyuve.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 429 Too Many Requests
Server: nginx/1.22.1
Date: Sat, 28 Jan 2023 14:02:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
2.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
193.108.118.121200 OK 13 kB URL HTTP/2 2.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Hash 2e563e8c899a9a4ada37ac4696dbee6f
66b215f92278a8c7bd2360bff013880aed2d7a38
bd821a791982472dae7d46ce3bd788fd4c826fbf138ace8ddafe7ae9a5790c2b
Analyzer Verdict Alert quad9 Sinkholed
GET /traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: 2.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ab744f1fbf03bf793085117f6691a062
f26ee7a876fee3e80c2521374a4c527d55b17e83
fc5b8cb6f5bd7396921cac6bf1bbd6cb41715cdcd19527ae5310e59eafd07928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC5B8CB6F5BD7396921CAC6BF1BBD6CB41715CDCD19527AE5310E59EAFD07928"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16441
Expires: Sat, 28 Jan 2023 18:36:50 GMT
Date: Sat, 28 Jan 2023 14:02:49 GMT
Connection: keep-alive
my.rtmark.net/gid.js?pub=0&checkDuplicate=true
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&checkDuplicate=true
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 10bbc03b268a3b2662cfe540115b0e3a
15725cc96a0baf000db138abcd723fe2919c7276
53a29e73d57c3019d7fbd8e11f00cbb19709c4be3e2d4bd2fa01c4fda2243ca3
GET /gid.js?pub=0&checkDuplicate=true HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6.globatds.com/
Origin: https://6.globatds.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:49 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://6.globatds.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0f0877b5c0184aca90b070b5b6a2f75d; expires=Sun, 28 Jan 2024 14:02:49 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
193.108.118.121200 OK 0 B URL HTTP/2 1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4= HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:45 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:45 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
1.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
193.108.118.121200 OK 0 B URL HTTP/2 1.news-yuyuve.com/traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Analyzer Verdict Alert quad9 Sinkholed
GET /traffback.php?site=8058609&sub1=&sub2=&sub3=&sub4=&land=36 HTTP/1.1
Host: 1.news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1.news-yuyuve.com/lands/36/?site=8058609&sub1=&sub2=&sub3=&sub4=
Connection: keep-alive
Cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:46 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
oneloveworld.space/zawsqe
172.67.223.242302 Found 0 B URL HTTP/2 oneloveworld.space/zawsqe
IP 172.67.223.242:0
GET /zawsqe HTTP/1.1
Host: oneloveworld.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2.news-yuyuve.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 28 Jan 2023 14:02:47 GMT
content-type: text/html; charset=UTF-8
location: https://sdfjjd.globatds.com/aff_rs_3840686.html?ymid={clickid}&zoneid=3840686&sourceid={t1}
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpadms65p;Expires=Tuesday, 28-Feb-2023 14:02:47 GMT;Max-Age=2678400;Path=/
ac3b8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjQxNVwiOjE2NzQ5MTQ1Njd9LFwiY2FtcGFpZ25zXCI6e1wiNDFcIjoxNjc0OTE0NTY3fSxcInRpbWVcIjoxNjc0OTE0NTY3fSJ9.jg2ehfvgAqAFzm4HxgSZnGIEODFEGYot6_DfiIM4rVs;Expires=Wednesday, 26-Feb-2076 04:05:34 GMT;Max-Age=1675000967;Path=/
_token=uuid_s8hnpadms65p_s8hnpadms65p63d52b075a2555.89698990;Expires=Tuesday, 28-Feb-2023 14:02:47 GMT;Max-Age=2678400;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2ic%2FOunVp15QbDa1LhHnxSo8STSB%2Bj3VCOsX1qkHRIiu4GHEgYOQncLapG8WsRcaXU41tBbz8jaw5n2upV6FfTk5zFRiRwP7Ep%2By3SmFc222SlP3TQfdeQGWSHQAHDKmzpD%2FYk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a448d7d72b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
193.108.118.121200 OK 0 B URL HTTP/2 news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Analyzer Verdict Alert quad9 Sinkholed
GET /lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4= HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, must-revalidate
pragma: no-cache
set-cookie: clickdata=ODA1ODYwOXw6fDM2fDp8fDp8fDp8fDp8; expires=Sat, 28-Jan-2023 15:02:44 GMT; Max-Age=3600; path=/
content-encoding: gzip
X-Firefox-Spdy: h2
videoandgames.site/zb3FQS4t
188.114.96.1302 Found 0 B URL HTTP/2 videoandgames.site/zb3FQS4t
IP 188.114.96.1:0
Analyzer Verdict Alert fortinet Phishing
GET /zb3FQS4t HTTP/1.1
Host: videoandgames.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
location: https://news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _subid=s8hnpadms65c;Expires=Tuesday, 28-Feb-2023 14:02:44 GMT;Max-Age=2678400;Path=/
ac3b8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjIzMDZcIjoxNjc0OTE0NTY0fSxcImNhbXBhaWduc1wiOntcIjI5N1wiOjE2NzQ5MTQ1NjR9LFwidGltZVwiOjE2NzQ5MTQ1NjR9In0.rO0jxrTtyd0ZhVOLRAWEp_Z84ce7ABbLTip0CuAeREc;Expires=Wednesday, 26-Feb-2076 04:05:28 GMT;Max-Age=1675000964;Path=/
_token=uuid_s8hnpadms65c_s8hnpadms65c63d52b04781f22.33794117;Expires=Tuesday, 28-Feb-2023 14:02:44 GMT;Max-Age=2678400;Path=/
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pEngX6LCuqv3xE12ruzryGueol4E%2FJxvAQ3%2Bnzj5j8gXDcgvrEPHDUCR9WDXsocblzSzVt2w6DCW21s5yw7%2FEvNbdG%2FIYcI%2FWGc%2FjoE17sj5G%2FxAm17tuAV3%2B8WAwJxNMD6ktcU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a447b19e70b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com
193.108.118.121302 Found 0 B URL HTTP/2 news-yuyuve.com/tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com
IP 193.108.118.121:0
ASN #61003 GlobalTeleHost Corp.
Analyzer Verdict Alert quad9 Sinkholed
GET /tds.php?sid=8058609&p1=sub1&domain=news-yuyuve.com HTTP/1.1
Host: news-yuyuve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 14:02:44 GMT
content-type: text/html; charset=UTF-8
location: https://news-yuyuve.com/lands/36/?site=8058609&sub1=sub1&sub2=&sub3=&sub4=
cache-control: no-cache, must-revalidate
pragma: no-cache
X-Firefox-Spdy: h2