Report - 6c4h75444w.youtuhe.biz

Report Overview

Submitted URL
6c4h75444w.youtuhe.biz
IP
104.21.14.162
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-28 07:51:50
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
36
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	238 B	34.117.65.55
ugyplysh.com	51119	2019-05-21T15:46:58Z	2023-03-28T02:46:56Z	18 kB	48 kB	139.45.197.253
my.rtmark.net	9054	2015-02-04T10:54:57Z	2023-03-29T13:00:14Z	8.5 kB	58 kB	139.45.195.8
youturbe.biz	unknown	2022-07-14T02:28:02Z	2023-03-27T12:56:56Z	447 B	761 B	104.21.74.147
oyhekzdncw.youturbe.biz	unknown			497 B	628 B	172.67.159.97
6c4h75444w.youtuhe.biz	unknown			670 B	8.3 kB	172.67.160.9
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	56 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	3.0 kB	8.0 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-28 07:51:59	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:51:59	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:00	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:00	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:00	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:00	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:01	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:01	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:02	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:02	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:02	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:02	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:03	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:03	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:03	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:03	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:04	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:04	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:04	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:04	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:05	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:05	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:05	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:05	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:06	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:06	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:06	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:06	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:07	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:07	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:07	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:07	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-28 07:52:08	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-28	medium	youtuhe.biz	Sinkholed
2023-03-28	medium	youtuhe.biz	Sinkholed
2023-03-28	medium	youturbe.biz	Sinkholed
2023-03-28	medium	youturbe.biz	Sinkholed

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	6c4h75444w.youtuhe.biz/	659 B	2023-03-29	2023-05-24
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-05-24 13:10:14 Times Seen13 Hash 447c939ad165d81ec6cafecede578bcf 08e1025dfd830497012e6e01242dedaa0fbcdcbb 429aa0798b1296c2f2d1e77b231f645683d63d5f2f0d5204670e7438fb08d5e9 Loading...

	6c4h75444w.youtuhe.biz/	3.3 kB	2023-03-29	2023-03-29
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-03-29 23:32:06 Times Seen1 Hash 8dd3346f16390c6396d0425cd07fad21 1554bd4550d6f7487680382f652e4a6c8e35844c 87795baffd202d659b7b950e085e57a7fdb455c7f3199645de0f9acbe5388d3c Loading...

	oyhekzdncw.youturbe.biz/?cnv_id=undefined	201 B	2023-03-29	2023-06-02
Pretty URL oyhekzdncw.youturbe.biz/?cnv_id=undefined IP 172.67.159.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-06-02 17:25:12 Times Seen57 Hash 63264a179d5ba9fb7f2540038d16a94f d06a61f07dd4680215ab81534511891c92463be9 2eaa50ba2b4289a4ec6afb8e87df989159eb0753499eaa14f9efb849530bee6e Loading...

	oyhekzdncw.youturbe.biz/?cnv_id=undefined	337 B	2023-03-29	2023-06-02
Pretty URL oyhekzdncw.youturbe.biz/?cnv_id=undefined IP 172.67.159.97 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-06-02 17:25:12 Times Seen55 Hash 8de3fdc4e315f1cac1fa77e5ce8f1f40 8b67ae19febcbfd9131926629d618dceb9b7ec3e 7716985b9071ddc04bd0c50b121900777cc4f1677198e85ec84c39414acd2276 Loading...

	6c4h75444w.youtuhe.biz/	192 B	2023-03-29	2023-04-02
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-04-02 21:33:21 Times Seen9 Hash 6b3cdc4881a1c1322d6dc2e23a245826 0e3ae3387c90faae77c490fc5f55f68613c6b611 13634ba6b130e27e9143a218f54ed0b12b2e61a38af0f66499e450c3c2939b96 Loading...

	6c4h75444w.youtuhe.biz/	319 B	2023-03-29	2023-04-02
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-04-02 21:33:21 Times Seen9 Hash 83b7f2658262d091240b368fa38333fd da5d7c3a27564050e99a98fa1fcb1fb465c9e866 98f25cf135182290c37103dcbd69ba7ea9e5fab1e01f1ab9bda17184c03d7683 Loading...

	6c4h75444w.youtuhe.biz/	444 B	2023-03-07	2024-03-30
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:01 Last Seen2024-03-30 22:04:03 Times Seen490 Hash a5964115c589e6ac706966bdd17b4318 574e85a6842075c22750856eb7c06da299389ceb 8f979b26375828fea21e1a76ea1b844f171a0da1348ad25631a92dd98bfb3945 Loading...

	6c4h75444w.youtuhe.biz/	948 B	2023-03-29	2023-03-29
Pretty URL 6c4h75444w.youtuhe.biz/ IP 172.67.160.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:32:06 Last Seen2023-03-29 23:32:06 Times Seen1 Hash c21f5ee0531e19f93a5c25bc89ec391b e8c952e0ec972fdd9b4d28bc81f21d800d12b1c2 3b781fff0658c3ab4eea350cbdefd6d3382550b88fd0f5fa9f696d7e59102246 Loading...

	youturbe.biz/micro.tag.min.js?z=5137789&cdn=1&ymid=null&var=null&sw=/sw-check-permissions-local-5137789.js	79 kB	2023-03-07	2023-11-02
Pretty URL youturbe.biz/micro.tag.min.js?z=5137789&cdn=1&ymid=null&var=null&sw=/sw-check-permissions-local-5137789.js IP 104.21.74.147 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-02 23:01:53 Times Seen1049 Hash 93b0d41455f0af39bf64922cda7fb1a0 3fe05102febbd048c087077eb5a358d7185e64e1 0b5b28e6ae35f80268f88464e3a380338becd3d9d0cf0c9b3807a9ceb9cc89f1 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d1d3f514be5b82ab195fda21c83d4cdc	35 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash d1d3f514be5b82ab195fda21c83d4cdc 443d41302d9576f58043488c78e44be3823712dd ed500e291c731b0cc2f1caf4e9927da2ac7914b225970279b328f3a56c041f3c Loading...

	#2 Eval - c510d5a3d97cb2f599576a56b2703434	17 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-20 00:14:28 Times Seen9057 Hash c510d5a3d97cb2f599576a56b2703434 9bc8f27eddd88f1e3f879b2dceb86f92486dc1e3 b4a3a83fe09d48db0c0b4416fefb19af5f9e069c12d2af8793a18f159574bb79 Loading...

	#3 Eval - 902c460afdd3e381e561395b818a5dbf	18 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-20 00:14:28 Times Seen9167 Hash 902c460afdd3e381e561395b818a5dbf 91008cfe46804ec773a2e4f72302086a0a41366b 64e360e85164e7675724c7fe1ed681b25a138c51d437bac5ff97e8910ccf2aa7 Loading...

	#4 Eval - db6dd56ada24f16b78646aa90fccf3a4	24 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash db6dd56ada24f16b78646aa90fccf3a4 2957fb207b1c3aba7b432bcec2c3b311e1e0c8e7 c8d1362c2bd18114ff660083ed3a26efcbd954ffbfbc6da18befb481655f6be9 Loading...

	#5 Eval - 16caa856f664ac5cc1c32d6575b47796	25 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:33:24 Last Seen2024-04-19 02:49:23 Times Seen1035 Hash 16caa856f664ac5cc1c32d6575b47796 35eea3d04b3e34ace8cb8162d2ee9ef95988ff19 0d104b78124bc9cede335899791af4e0c98eb238bbefa13e7a7738c5f37db74a Loading...

	#6 Eval - 3320716567ca7a52b2585b52a8e5dfc7	14 B	2023-03-07	2023-11-29
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-29 11:22:59 Times Seen202 Hash 3320716567ca7a52b2585b52a8e5dfc7 51715d46f57c481254c748257037e2baa4e81dca 4c3889c04dd1832c457ef1f9c8683b03d1249c0c57932346fe3f6935e58f5883 Loading...

	#7 Eval - e1a7013e58913416b7f855d3a8932b98	20 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2024-04-19 02:49:23 Times Seen487 Hash e1a7013e58913416b7f855d3a8932b98 63e749063210734dbdaea64eb11cf520b439bd6d c90d924b8f1f149646ff5cac8b44a3b1efa487a09b0a9567f3660c016c01946e Loading...

	#8 Eval - 1efbdbe3cf6bf8b1b5ab03a264680404	26 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash 1efbdbe3cf6bf8b1b5ab03a264680404 fb9c61b5aaec994818affe12776440e7460b2b74 ed09fa8a79e4b096a8d260f70b72323ec4f4c72858da25dbc70932bcb86f34df Loading...

	#9 Eval - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 06:55:11 Times Seen36970046 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	#10 Eval - 8ecb76d7d80c22c626b04a06cbd87b63	43 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash 8ecb76d7d80c22c626b04a06cbd87b63 abf41522096b05e5f8a0fa293061acffcebcf1e6 afc1f9fdca8cad62c2628787435ebe288ff48955b29b2d1c25f388133a46753e Loading...

	#11 Eval - 61d9031f2b0da3ac81b6732b6d1ecf83	36 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-20 00:14:29 Times Seen8733 Hash 61d9031f2b0da3ac81b6732b6d1ecf83 515d4db3d1120a7160d1bc7d93d57f7fbdea1fc4 436179ef4964c80a03e62015696ba10c5ae70602c6538d07f50b75f35bd72a27 Loading...

	#12 Eval - bff9ea9963b0a6ad0580115d9348e3cb	69 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash bff9ea9963b0a6ad0580115d9348e3cb 43aca0609cd33d25d5f205435b23620312c121d1 45aa6c53c20a609e2ff8f20279c5b478042d31f9f0cf21e68c46d3200deb960b Loading...

	#13 Eval - 97027e2582ced35b186bf66d3601cfd2	17 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:03:04 Last Seen2024-04-20 00:14:29 Times Seen9166 Hash 97027e2582ced35b186bf66d3601cfd2 4133fa316e585c4426c58951884d2db2d0e21548 b18f7c2e4dbfe2926b0413634f7cd6781be55e27b4b885dc68a8f740a80d72e1 Loading...

	#14 Eval - 210641588691e73f107d9c6e3837e28b	73 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash 210641588691e73f107d9c6e3837e28b 30b085ddcd674aa6bd73d8d7431396a3a32c6d7e de84b3266e4cc158adc76562722f1bc09cf92e2f84752076d2b148d7ff6e6743 Loading...

	#15 Eval - 37c58fab986ab2a8716ceb641184cd26	25 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:02 Times Seen191 Hash 37c58fab986ab2a8716ceb641184cd26 9e58da66657100ea42fd65d43e7740d5ce9190a5 a2e8cd298383fffc88d2620c554fafd288a4a2c0b25a0df452aa2acd04f94abf Loading...

	#16 Eval - d8892a65c52f9aa6072c70c97c720460	19 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2024-04-19 02:49:23 Times Seen487 Hash d8892a65c52f9aa6072c70c97c720460 310f7f2c9514ce701cb0521cd7b3af4113ee26f9 e63ab147abec2559a09a62bfdb04cf786dc3d387fe8c0eb27c84b4fd5a1251d9 Loading...

	#17 Eval - 817a0e7af0e2db02e66b686f464c4341	14 B	2023-03-07	2023-11-29
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-29 11:22:59 Times Seen202 Hash 817a0e7af0e2db02e66b686f464c4341 758d7bb671b48ed94df224dff14fbdc6e315aec7 8c1e2d50150476d46b33950be46689fbaa84a72406236cca4cf5c0e5ec2db849 Loading...

	#18 Eval - c6e2b9a571e35b24ae67e7216c220b5a	87 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash c6e2b9a571e35b24ae67e7216c220b5a 335ff90d256eaa23aa20f5affe09755eb30d3283 c9f62dbb60981aa9dde0ee2099435234305721066ef86254a477d871f774f108 Loading...

	#19 Eval - 4260c01394765a497287987f27d6823a	18 B	2023-03-07	2024-04-20
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-20 00:14:28 Times Seen9057 Hash 4260c01394765a497287987f27d6823a 7162f84a1608c790ba9e01abfa0e0ddd067feb97 0200f755a2c13b9335fe39b3a88f696c334e518e8407780c4731d8e6be966c4e Loading...

	#20 Eval - 85ef281ef08677afa67a66d49086e601	50 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash 85ef281ef08677afa67a66d49086e601 e668f3b8376595d1efd4486c77e5f8bc06c8daf3 ada3c7ff28ebb54f892df7ab5d0565921d8964508a62c3567d70179fc0f85a8f Loading...

	#21 Eval - a43ef377a5107009124b5188a6c0c0a3	65 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:02 Times Seen191 Hash a43ef377a5107009124b5188a6c0c0a3 31c2ee8f61e51281c08316d003b42fc3abaec736 88554f4735242d0e22d0ac195ff0f014f9e6e97b3b2f0a3959aa53eabf5e7fa8 Loading...

	#22 Eval - f339d377ad386cf7581781a87a239647	73 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash f339d377ad386cf7581781a87a239647 401f3108c894885a48224ebb5d369f7dac5b520f 27ec647750bbee044f3d840aba7d0607ef662bef7df942087e8133fb5bcb3fee Loading...

	#23 Eval - 82295ed9d037912f7380dcdcd6cb388b	61 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 12:28:01 Last Seen2023-11-15 15:41:01 Times Seen191 Hash 82295ed9d037912f7380dcdcd6cb388b 79edf893883b9ec5ae212c644b217b6363d17597 2393720c4d4835b1fd9e98df4d6a91127add2b99a5c0e46b3089ab1f35f9d94d Loading...

HTTP Transactions (72)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2850
Expires: Tue, 28 Mar 2023 08:39:10 GMT
Date: Tue, 28 Mar 2023 07:51:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
911d74784325663a0d95b463b0e9ae9b
21e999229be584d8e42696bce71236ad5bcb9a25
f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4880
Expires: Tue, 28 Mar 2023 09:13:00 GMT
Date: Tue, 28 Mar 2023 07:51:40 GMT
Connection: keep-alive

6c4h75444w.youtuhe.biz/

172.67.160.9

200 OK

5.6 kB

URL HTTP/1.1
6c4h75444w.youtuhe.biz/
IP
172.67.160.9:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5373)
Size
5.6 kB (5559 bytes)
Hash
d50d5e33aa08c0ea1531ecf0916fbd21
7b1dbeec1c02c41b8554b2698640674a20ecd6bd
9180b65502f1356ed1f78adb2e915b70b0610a8283224d2ccf86c297f22514a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 6c4h75444w.youtuhe.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 07:51:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EaWELtEqMR4q7ImUyD6uYjjVkV2jX01DKNaAxGeAqzQXjTjga9ucizOMUzwSx4tWYexdY8d1zGaQQi6Wa09oT84DGVSHDSj4szY2eJoy1glhQS4IxtMCJJEPOlrf%2BjD0Q316oVGa4ts0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee4a0b18ecb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 07:28:01 GMT
content-type: application/json
age: 1419
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16731
Expires: Tue, 28 Mar 2023 12:30:31 GMT
Date: Tue, 28 Mar 2023 07:51:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ZcvOvzmGbuZD3j2ts7KToWT2oETZNf7e0enzbg++jfoI3gbQBAgWRqrCSp9lFnm0QcfRlMPmU+o=
x-amz-request-id: QS47FTD3HKEYBJZW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 06:56:07 GMT
age: 3333
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:40 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a740252e7b24892a3e34f6dfed6e3bde
d44d21abb95edd1ccc775632254f11ee94fb585e
e289995a2b4b340364dd7dfa32c79c7722ece6cc4b893b38fc68bbce680d2f94

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E289995A2B4B340364DD7DFA32C79C7722ECE6CC4B893B38FC68BBCE680D2F94"
Last-Modified: Mon, 27 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19702
Expires: Tue, 28 Mar 2023 13:20:02 GMT
Date: Tue, 28 Mar 2023 07:51:40 GMT
Connection: keep-alive

6c4h75444w.youtuhe.biz/favicon.ico

172.67.160.9

404 Not Found

1.4 kB

URL HTTP/1.1
6c4h75444w.youtuhe.biz/favicon.ico
IP
172.67.160.9:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (660)
Size
1.4 kB (1433 bytes)
Hash
5d5311d668a4899c6a2851284adc4f8d
f2142341d483367c49583914e9d60e8f25f6e176
cce548759b07863c03628991f10afb1bd8770055c1f5af113db0622c5b84b08e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 6c4h75444w.youtuhe.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://6c4h75444w.youtuhe.biz/

HTTP/1.1 404 Not Found
Date: Tue, 28 Mar 2023 07:51:40 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 14 Jul 2022 00:22:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=002wwgykNF6CYJfGPzJ5XhOB6LnMx3BO7tudMswfKFlWvTRooXrFR3CGetXY9maHRP2xjlzLN5iLVdP7hb%2FhCfBzV3H9ug8zuYTspzX11%2Fa9fmGj0XNedlUz%2BgBGdkWQ7xzu6NrzmoJc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee4a0e4de3b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 07:17:24 GMT
age: 2056
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.117.65.55

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.117.65.55:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R3tkQZqdxwb9XsGst1bzZw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aoU4p2zD0vKhXQw9pdIXBC2ypHc=
Date: Tue, 28 Mar 2023 07:51:40 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
67d77242085741a30e0cbae4cb5d88c1
9820cd9d2504e9a1aeae881eb2eb17e121b9481d
93fe45c91c38f47df7d6378679878eed447c4d5b160b3e44b2fa731ec13353d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93FE45C91C38F47DF7D6378679878EED447C4D5B160B3E44B2FA731EC13353D1"
Last-Modified: Mon, 27 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3578
Expires: Tue, 28 Mar 2023 08:51:18 GMT
Date: Tue, 28 Mar 2023 07:51:40 GMT
Connection: keep-alive

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=6c4h75444w.youtuhe.biz&var=null&ymid=null&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=6c4h75444w.youtuhe.biz&var=null&ymid=null&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=6c4h75444w.youtuhe.biz&var=null&ymid=null&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://6c4h75444w.youtuhe.biz
Connection: keep-alive
Referer: http://6c4h75444w.youtuhe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:39 GMT
content-length: 0
x-trace-id: 998af6009760879b9e556b3671d144b9
access-control-allow-origin: http://6c4h75444w.youtuhe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
67d77242085741a30e0cbae4cb5d88c1
9820cd9d2504e9a1aeae881eb2eb17e121b9481d
93fe45c91c38f47df7d6378679878eed447c4d5b160b3e44b2fa731ec13353d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93FE45C91C38F47DF7D6378679878EED447C4D5B160B3E44B2FA731EC13353D1"
Last-Modified: Mon, 27 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3577
Expires: Tue, 28 Mar 2023 08:51:18 GMT
Date: Tue, 28 Mar 2023 07:51:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
56d72c7381344b08be112103e1b5c782
a4c58387755def675fbee69c29e661582faf2ade
8608aa7074c50ed5356aeb60c8445e5c0bdc3de4f701b8f8f5520f516ddc4c42

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8608AA7074C50ED5356AEB60C8445E5C0BDC3DE4F701B8F8F5520F516DDC4C42"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20379
Expires: Tue, 28 Mar 2023 13:31:20 GMT
Date: Tue, 28 Mar 2023 07:51:41 GMT
Connection: keep-alive

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oyhekzdncw.youturbe.biz
Connection: keep-alive
Referer: https://oyhekzdncw.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:38 GMT
content-length: 0
x-trace-id: 4087b61b7123ce7f9c8b28552c209a65
access-control-allow-origin: https://oyhekzdncw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=oyhekzdncw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oyhekzdncw.youturbe.biz/
Origin: https://oyhekzdncw.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:33 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: f4afe227c8d01f71c6091ddc5e6daeeb
access-control-allow-origin: https://oyhekzdncw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

25 kB

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
data
Size
25 kB (25431 bytes)
Hash
7874cf03aee845e1c19046add9da32a9
034f22fc58e34d145335187131c906b4485d9271
593730dc77809b38797d0b4c43ca703c69a7394c6a387ff04ea80357a98141ba

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oyhekzdncw.youturbe.biz/
Origin: https://oyhekzdncw.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:41 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://oyhekzdncw.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:41 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://k4l4exh5q8.youturbe.biz
Connection: keep-alive
Referer: https://k4l4exh5q8.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:38 GMT
content-length: 0
x-trace-id: 5a9d83992cf1cf55f3704e0d501becca
access-control-allow-origin: https://k4l4exh5q8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=k4l4exh5q8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://k4l4exh5q8.youturbe.biz/
Origin: https://k4l4exh5q8.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:34 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 784af1a66a68ee688106f563f030e6ed
access-control-allow-origin: https://k4l4exh5q8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://k4l4exh5q8.youturbe.biz/
Origin: https://k4l4exh5q8.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://k4l4exh5q8.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4100
Expires: Tue, 28 Mar 2023 09:00:02 GMT
Date: Tue, 28 Mar 2023 07:51:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4100
Expires: Tue, 28 Mar 2023 09:00:02 GMT
Date: Tue, 28 Mar 2023 07:51:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8553 bytes)
Hash
e828b7227de7aa7a7b7c54c96e0cef9a
9a717142ab25dabf9123485ef51ed586662d2a71
0390f8771432de010cc11e11be2e2dfa7c303664858a5b066e66a628a1f3dd66

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8553
x-amzn-requestid: 05cb5115-a27b-485a-89fd-670bdb5bb06f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbofHHPIAMFkQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-774bb5d725336b35088e2527;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: OUJZjN0YFRbVlZWNMbOXCvz9Ttj5bYtGwAOuGXR_T-GtUyWkXQAxhQ==
via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:53:24 GMT
etag: "9a717142ab25dabf9123485ef51ed586662d2a71"
content-type: image/jpeg
age: 35898
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (6970 bytes)
Hash
e5d955ec5d3a9f655e4ca0523acfd039
e8b2cd28a02a2cee1b4e57c57570f2598721ff57
e7753ef91d6f04dce00f83cb1ba3ea4f1abb52140993fbee375e506597cee529

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6970
x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdn3zGn7oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 23:10:22 GMT
age: 31280
etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9859 bytes)
Hash
da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: wlc65ytdELa_faMSddEDHZNsbtF1_CgMOho3W3BvkaOSrFyAkKUagg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:43:57 GMT
age: 36465
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10744 bytes)
Hash
ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: KAI78tfv0ATn1DQvBGyodBs9UWsIGdj1Fa50KowbUAO4ab2ceaYhMw==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:49:26 GMT
age: 36136
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7426 bytes)
Hash
1da68df9d96e2758e37b9f15daab027b
5ff19ed6dc5752aa4b15fb88da972b736fd55783
ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcsgGZsoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: JDa9YUJ9xo5mo8tb7poZC8XJDp6USTidZjWEwTZCrioJxR7vur6uJw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:00:12 GMT
age: 35490
etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6542 bytes)
Hash
15e37de1dba62187e1e5f012145813f3
cfe8cd953330252e15594f403e2f38ec56acdfd7
89bf7dbcf5a7fca006545f001b47de0ab6f94014de4bd4c519f6050e6daa5aa0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6542
x-amzn-requestid: 1106a670-cf68-4e3d-b5af-3013407acc5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbsjGAaoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-726c7ba02ddb31182834d82d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: hWI0gKHs2830OtWE9Or5YEsE4aQSNLzf85--OGAQEqPEN-6bgWBbFw==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 1570d93226c1bbca2ebaad510cff3e0c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:05:26 GMT
age: 35176
etag: "cfe8cd953330252e15594f403e2f38ec56acdfd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5po1oapzgg.youturbe.biz
Connection: keep-alive
Referer: https://5po1oapzgg.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:39 GMT
content-length: 0
x-trace-id: 8cbbecae0d3e662ac869d87e472516ce
access-control-allow-origin: https://5po1oapzgg.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://5po1oapzgg.youturbe.biz/
Origin: https://5po1oapzgg.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:42 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://5po1oapzgg.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:42 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=5po1oapzgg.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://5po1oapzgg.youturbe.biz/
Origin: https://5po1oapzgg.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:34 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 09078cd73956dfdb379a8f0ebd368528
access-control-allow-origin: https://5po1oapzgg.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bjrqy8luuo.youturbe.biz
Connection: keep-alive
Referer: https://bjrqy8luuo.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:39 GMT
content-length: 0
x-trace-id: 8c83c9793053127c073cac79f892956a
access-control-allow-origin: https://bjrqy8luuo.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bjrqy8luuo.youturbe.biz/
Origin: https://bjrqy8luuo.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:43 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://bjrqy8luuo.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=bjrqy8luuo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bjrqy8luuo.youturbe.biz/
Origin: https://bjrqy8luuo.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:35 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: fbadfd4e47e26efa799ac30d0ff8135c
access-control-allow-origin: https://bjrqy8luuo.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=ldftp39axs.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=ldftp39axs.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=ldftp39axs.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ldftp39axs.youturbe.biz
Connection: keep-alive
Referer: https://ldftp39axs.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:40 GMT
content-length: 0
x-trace-id: cea2b51eb4ee828df28738c18519e8cf
access-control-allow-origin: https://ldftp39axs.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ldftp39axs.youturbe.biz/
Origin: https://ldftp39axs.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:43 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://ldftp39axs.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f16fa6w0ow.youturbe.biz
Connection: keep-alive
Referer: https://f16fa6w0ow.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:40 GMT
content-length: 0
x-trace-id: 947ef02e3f5f8d40497197deab4cd7ea
access-control-allow-origin: https://f16fa6w0ow.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

5.3 kB

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
data
Size
5.3 kB (5265 bytes)
Hash
894bd3cc1b5b079a1387514b0d9cdc77
38b1241d2da57532ae48cd5648398d515a92f829
83a3ab5b7ec0a769aa9fe0c14cad1fbc5b094ab700eac56aace308f5cda14f8e

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f16fa6w0ow.youturbe.biz/
Origin: https://f16fa6w0ow.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:44 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://f16fa6w0ow.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:44 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=f16fa6w0ow.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f16fa6w0ow.youturbe.biz/
Origin: https://f16fa6w0ow.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:36 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: edf8ef9c93c17967ee93182a662c3785
access-control-allow-origin: https://f16fa6w0ow.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

5.2 kB

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
data
Size
5.2 kB (5200 bytes)
Hash
77ef19240b614d0b22a169710a39facd
091f8ce351c079eb6e8332043d1de86370451e0a
3feb16fa13c776ac6dd3ec1969dd29c039b16b80ca7b37047c9160a6cc7b3cfc

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pwyz10v8u8.youturbe.biz
Connection: keep-alive
Referer: https://pwyz10v8u8.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:41 GMT
content-length: 0
x-trace-id: f5680346b1c5838bddab9806a2a6260a
access-control-allow-origin: https://pwyz10v8u8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pwyz10v8u8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pwyz10v8u8.youturbe.biz/
Origin: https://pwyz10v8u8.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:36 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 0c2a8c2954572cfcb8a999a5737d4192
access-control-allow-origin: https://pwyz10v8u8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pwyz10v8u8.youturbe.biz/
Origin: https://pwyz10v8u8.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:44 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://pwyz10v8u8.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:44 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pasuilq7eo.youturbe.biz
Connection: keep-alive
Referer: https://pasuilq7eo.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:41 GMT
content-length: 0
x-trace-id: c59e8b1f37cc0f603ce718a25c6dfdfe
access-control-allow-origin: https://pasuilq7eo.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

10 kB

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
data
Size
10 kB (10465 bytes)
Hash
6b2faf23da5e3733747ae9d19aa7dc6d
0bf3b3514250bcfba940610c55b1f78d95552b0b
0efdd207cee3063b3f731753e657debf53fb383bde7801df057a71b67329547a

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pasuilq7eo.youturbe.biz/
Origin: https://pasuilq7eo.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:45 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://pasuilq7eo.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=pasuilq7eo.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pasuilq7eo.youturbe.biz/
Origin: https://pasuilq7eo.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:36 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 7bbcb2af2f0db75262a5320e17d5c6ea
access-control-allow-origin: https://pasuilq7eo.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://t554veeu8w.youturbe.biz
Connection: keep-alive
Referer: https://t554veeu8w.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:41 GMT
content-length: 0
x-trace-id: aa55a4e9edd151d28fee5deb593d38e8
access-control-allow-origin: https://t554veeu8w.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t554veeu8w.youturbe.biz/
Origin: https://t554veeu8w.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:45 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://t554veeu8w.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

6.1 kB

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
data
Size
6.1 kB (6109 bytes)
Hash
df8cb23404bdc166e43011e020372f5f
051a93aa712542f55554288cee6fc38a7823f46b
ba30a8f9bc8c7c158ee91d5a315a3b93955c668f78e152683074509b7136b85d

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=t554veeu8w.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t554veeu8w.youturbe.biz/
Origin: https://t554veeu8w.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:37 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 3b767c3ffabd2b90267dc1d7a3dc7cbb
access-control-allow-origin: https://t554veeu8w.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://tytu827pkw.youturbe.biz
Connection: keep-alive
Referer: https://tytu827pkw.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:42 GMT
content-length: 0
x-trace-id: d033f7f6a78dc2d24a48237db75658da
access-control-allow-origin: https://tytu827pkw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tytu827pkw.youturbe.biz/
Origin: https://tytu827pkw.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:45 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://tytu827pkw.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=tytu827pkw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tytu827pkw.youturbe.biz/
Origin: https://tytu827pkw.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:37 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 651ad8e33199b2af30bf31c5ca77ecd3
access-control-allow-origin: https://tytu827pkw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cng2i5lb80.youturbe.biz
Connection: keep-alive
Referer: https://cng2i5lb80.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:42 GMT
content-length: 0
x-trace-id: 8e6bf18c306cea8ee97c53a4bb688151
access-control-allow-origin: https://cng2i5lb80.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

5.3 kB

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
data
Size
5.3 kB (5265 bytes)
Hash
894bd3cc1b5b079a1387514b0d9cdc77
38b1241d2da57532ae48cd5648398d515a92f829
83a3ab5b7ec0a769aa9fe0c14cad1fbc5b094ab700eac56aace308f5cda14f8e

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cng2i5lb80.youturbe.biz/
Origin: https://cng2i5lb80.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:46 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://cng2i5lb80.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:46 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

6.1 kB

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
data
Size
6.1 kB (6109 bytes)
Hash
df8cb23404bdc166e43011e020372f5f
051a93aa712542f55554288cee6fc38a7823f46b
ba30a8f9bc8c7c158ee91d5a315a3b93955c668f78e152683074509b7136b85d

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=cng2i5lb80.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cng2i5lb80.youturbe.biz/
Origin: https://cng2i5lb80.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:38 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 8aabcd8e0db4eb652e9ec30839756796
access-control-allow-origin: https://cng2i5lb80.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3xe0pu7mgw.youturbe.biz
Connection: keep-alive
Referer: https://3xe0pu7mgw.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:43 GMT
content-length: 0
x-trace-id: 1d2905ea62fdd85d3f982443897a6b1b
access-control-allow-origin: https://3xe0pu7mgw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3xe0pu7mgw.youturbe.biz/
Origin: https://3xe0pu7mgw.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:46 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://3xe0pu7mgw.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:46 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=3xe0pu7mgw.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3xe0pu7mgw.youturbe.biz/
Origin: https://3xe0pu7mgw.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:38 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: a5368b02409e4df5456f0c901889c4c7
access-control-allow-origin: https://3xe0pu7mgw.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://plrvztc5ao.youturbe.biz
Connection: keep-alive
Referer: https://plrvztc5ao.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:43 GMT
content-length: 0
x-trace-id: bf2e63560bb8dd13ba19983a6bbd8d91
access-control-allow-origin: https://plrvztc5ao.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plrvztc5ao.youturbe.biz/
Origin: https://plrvztc5ao.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:47 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://plrvztc5ao.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:47 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=plrvztc5ao.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://plrvztc5ao.youturbe.biz/
Origin: https://plrvztc5ao.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:39 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: fe6c4d6bb1ca00a663e714a042746f6d
access-control-allow-origin: https://plrvztc5ao.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

5.2 kB

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
data
Size
5.2 kB (5200 bytes)
Hash
77ef19240b614d0b22a169710a39facd
091f8ce351c079eb6e8332043d1de86370451e0a
3feb16fa13c776ac6dd3ec1969dd29c039b16b80ca7b37047c9160a6cc7b3cfc

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://n2vna8p900.youturbe.biz
Connection: keep-alive
Referer: https://n2vna8p900.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:44 GMT
content-length: 0
x-trace-id: e9ee992068fb9aa503297ca526e68e5e
access-control-allow-origin: https://n2vna8p900.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n2vna8p900.youturbe.biz/
Origin: https://n2vna8p900.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:47 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://n2vna8p900.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:47 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=n2vna8p900.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n2vna8p900.youturbe.biz/
Origin: https://n2vna8p900.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:39 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 1aff12e40089cccc270883af3079df8f
access-control-allow-origin: https://n2vna8p900.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://q1imoyafy8.youturbe.biz
Connection: keep-alive
Referer: https://q1imoyafy8.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:44 GMT
content-length: 0
x-trace-id: 08424db4523e5d72e693056bf6a2b705
access-control-allow-origin: https://q1imoyafy8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://q1imoyafy8.youturbe.biz/
Origin: https://q1imoyafy8.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:48 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://q1imoyafy8.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:48 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q1imoyafy8.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://q1imoyafy8.youturbe.biz/
Origin: https://q1imoyafy8.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:40 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: 59b756c47b9fa91b6818e4a01821c81f
access-control-allow-origin: https://q1imoyafy8.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest

139.45.197.253

200 OK

0 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=prerequest HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://q7w4u02m4g.youturbe.biz
Connection: keep-alive
Referer: https://q7w4u02m4g.youturbe.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:45 GMT
content-length: 0
x-trace-id: a7d52b9b2fd810dd5d067d96eb831ffb
access-control-allow-origin: https://q7w4u02m4g.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
f46da1e5a09b7a1bb328bf5839df1821
ac70ca9910ab1e24273ce94b5bee5a84a0cdb3ae
b19ccfe49718746dfe8934f80dec6cd192f7968e0e9812819e437b324d786660

HTTP Headers

GET /gid.js?pub=0&userId=&zoneId=5137789&checkDuplicate=true&ymid=undefined&var=null HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://q7w4u02m4g.youturbe.biz/
Origin: https://q7w4u02m4g.youturbe.biz
Connection: keep-alive
Cookie: ID=f735d8434f004ff6a5757175f4fcd90f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:48 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://q7w4u02m4g.youturbe.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f735d8434f004ff6a5757175f4fcd90f; expires=Wed, 27 Mar 2024 07:51:48 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings

139.45.197.253

200 OK

909 B

URL HTTP/2
ugyplysh.com/zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings
IP
139.45.197.253:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (908)
Size
909 B (909 bytes)
Hash
7d10b60dfb7fc2f4aa92e51ceff2e923
e20cec57b2389f86d863496173afcdddd1e5efdb
bc3076aba45c84692af4ba84d0ff81ee9ea34129482a12090e8bfe855b81a996

HTTP Headers

GET /zone?&pub=0&zone_id=5137789&is_mobile=false&domain=q7w4u02m4g.youturbe.biz&var=null&ymid=undefined&var_3=&dsig=&action=settings HTTP/1.1
Host: ugyplysh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://q7w4u02m4g.youturbe.biz/
Origin: https://q7w4u02m4g.youturbe.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 07:51:40 GMT
content-type: application/json; charset=utf-8
content-length: 909
x-trace-id: c5bb9c3652b6a6f1a2ecd0dff6eba2f4
access-control-allow-origin: https://q7w4u02m4g.youturbe.biz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

youturbe.biz/micro.tag.min.js?z=5137789&cdn=1&ymid=null&var=null&sw=/sw-check-permissions-local-5137789.js

104.21.74.147

200 OK

0 B

URL HTTP/2
youturbe.biz/micro.tag.min.js?z=5137789&cdn=1&ymid=null&var=null&sw=/sw-check-permissions-local-5137789.js
IP
104.21.74.147:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /micro.tag.min.js?z=5137789&cdn=1&ymid=null&var=null&sw=/sw-check-permissions-local-5137789.js HTTP/1.1
Host: youturbe.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://6c4h75444w.youtuhe.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 28 Mar 2023 07:51:40 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 14 Jul 2022 16:07:30 GMT
vary: Accept-Encoding
etag: W/"62d03f42-133cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6NaZWEjFitKKKuguzgKtTszeCk1AcVlByIQPh2r7PMleok5yPxNWohSccrlkSgR8fs%2FqTnqErJMciw7%2FBk95wmdxgtYmv6CBqMtqF6i2KxagZoAkrN1Vb2tS9C76e2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aee4a0e0d5bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

oyhekzdncw.youturbe.biz/?cnv_id=undefined

172.67.159.97

200 OK

0 B

URL HTTP/2
oyhekzdncw.youturbe.biz/?cnv_id=undefined
IP
172.67.159.97:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?cnv_id=undefined HTTP/1.1
Host: oyhekzdncw.youturbe.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://6c4h75444w.youtuhe.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 28 Mar 2023 07:51:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V1CHwNQbaBetVutid91onI3MBBlur2njDZkV7XBTyVYl%2FLQWp%2Bfk0WPzwEdH5pR4V1rnKnE%2BAuM%2BWWHDxGvLe0kIux2ckDz9cRZ6Uj1qQ6iU4rjAecFaGAYoF5oZaNME7Auya8wcq7iMWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aee4a1119c70b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML