Report - torrentz2.uproxy2.biz/

Report Overview

Visited public
2024-09-17 23:40:33
Tags
URL
torrentz2.uproxy2.biz/
Finishing URL
torrentz2.uproxy2.biz/
IP / ASN
104.21.60.30
#13335 CLOUDFLARENET
Title
Torrentz2 Search Engine

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
i.ibb.co	13485	2010-07-20	2018-11-25 11:13:48	2024-09-17 18:28:27	445 B	5.9 kB	162.19.58.159
origunix.com	unknown	2021-11-30	2021-11-30 13:40:27	2024-06-12 13:35:04	440 B	362 B	178.162.215.162
pupspu.com	unknown	2022-08-11	2022-08-11 18:49:58	2024-09-17 08:36:29	438 B	62 kB	178.162.215.162
matomo.hellohi.me	545402	2019-07-03	2019-07-03 22:13:04	2024-01-20 06:49:26	407 B	7.1 kB	104.21.94.42
r11.o.lencr.org	unknown	2020-06-29	2024-06-07 07:43:57	2024-09-17 18:12:27	2.0 kB	5.3 kB	23.33.119.57
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-09-17 18:13:19	524 B	19 kB	142.250.74.67
vmuid.com	939822	2018-10-22	2019-07-09 16:53:12	2024-06-12 13:35:04	440 B	10 kB	178.162.215.162
gemfowls.com	unknown	2024-04-02	2024-04-26 11:21:29	2024-06-12 13:35:04	874 B	52 kB	172.240.108.68
torrentz2.uproxy2.biz	unknown	2019-10-26	2022-11-04 10:40:08	2024-01-31 17:43:59	5.0 kB	182 kB	172.67.191.27
metrica-yandex.com	783336	2021-09-14	2021-09-19 06:17:37	2024-04-01 00:34:55	420 B	61 kB	172.67.193.32
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-09-17 18:17:00	457 B	2.9 kB	142.250.74.74
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-09-17 18:12:05	2.0 kB	5.3 kB	23.36.77.32
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-09-17 18:12:15	1.3 kB	2.8 kB	142.250.74.67
heartilyscales.com	unknown	2022-12-16	2022-12-16 09:32:11	2024-03-01 03:22:57	443 B	17 kB	172.240.253.132
theusualsuspectz.biz	unknown	2023-01-27	2023-01-27 02:27:31	2024-03-17 13:12:34	414 B	49 kB	172.67.142.129

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-09-17	medium	heartilyscales.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	torrentz2.uproxy2.biz/	ScriptElement	26 B	2023-03-07	2025-06-22
Pretty URL torrentz2.uproxy2.biz/ IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:40 Last Seen2025-06-22 02:17 Times Seen857 Hash 5779365b0a28c08298ca5847c65b769d 3076ad9e094690cd6c4ee200ae254e6e7260fd30 57c620405714b8baa51067e0ca9bc9a9b252985292b857360aec8a9936688709 Loading...

	torrentz2.uproxy2.biz/	ScriptElement	551 B	2023-03-10	2025-06-17
Pretty URL torrentz2.uproxy2.biz/ IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 10:04 Last Seen2025-06-17 04:25 Times Seen89 Hash b85b27987b7c92064e74b404f8a00fb0 43647fe515e06f0134195978c737a8edac8758b8 9bd4d3bba5b8f86e8322f0b65bb3a5c3d31f1d16a0da3346dba895c36cede91e Loading...

	torrentz2.uproxy2.biz/app/apx19.js	ScriptElement	9.2 kB	2023-03-07	2025-06-22
Pretty URL torrentz2.uproxy2.biz/app/apx19.js IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-06-22 02:17 Times Seen894 Hash 2344c3f05f624d595f6fb920e4d74ded eb4d1404ac2d5eecd307f4588aeeab5c8ef463f1 3a28fe59e4a2af96d8edeeb12d7040c574cf71fa88fccb5cf49e9c0a1d4e4c7a Loading...

	torrentz2.uproxy2.biz/app/apx14.js	ScriptElement	7.7 kB	2023-03-07	2025-06-22
Pretty URL torrentz2.uproxy2.biz/app/apx14.js IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-06-22 02:17 Times Seen894 Hash dfb1f327618e201778f2de85cfbcd173 fceb89a2221463e5bc5a71feff1247683ab08cc5 dc03bc8b63938916a73dd976e186d05559ddc61da2725e1063b7936fa9f0fc33 Loading...

	unknown	Function	34 B	2023-04-11	2025-06-22
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-06-22 05:22 Times Seen67302 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	torrentz2.uproxy2.biz/	ScriptElement	816 B	2024-09-19	2024-09-19
Pretty URL torrentz2.uproxy2.biz/ IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-09-19 19:56 Last Seen2024-09-19 19:56 Times Seen1 Hash 6f424905d1fbbc610d8fa1bf2da899bd e2c074a40ff3156030be80f2b41b18f3adf9fe90 28e0eb9dd56f436001590f83b852d8bd38f522ced875004074ab28f8a465f98e Loading...

	torrentz2.uproxy2.biz/	ScriptElement	464 B	2023-05-23	2025-04-08
Pretty URL torrentz2.uproxy2.biz/ IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-23 02:47 Last Seen2025-04-08 08:27 Times Seen8 Hash ecd5a0aaf5f1986b81bfc3b3ff86c04e b157cbb3cfed24e602be648516a49155ecc2d7b6 fa268a8bc41e2cde56507e3c85aa37dc4c004aa3590caad5ce2f5d7aa00051ba Loading...

	torrentz2.uproxy2.biz/	ScriptElement	449 B	2023-03-07	2025-06-18
Pretty URL torrentz2.uproxy2.biz/ IP 172.67.191.27 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:40 Last Seen2025-06-18 20:11 Times Seen396 Hash 8ec4ea2cc07fb4298dd793cbc67d3755 04c34c92ef5baad58af7c56b728d4a84c55f7185 9a0e8ee9789c9f554b318f332bf0d2c61f85cdcf33afc1228b6f94181f841b1d Loading...

HTTP Transactions (38)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
b4ddabe3dc0fdf5ea3a82a9aebbb01c6
bfbff7cc66b83f1e16d8739a987f175866a6de68
73c53b2f9ea6cb310eb9df3e6d917f4649a2c2470b3ae7ee1e4bbb7102550016

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "73C53B2F9EA6CB310EB9DF3E6D917F4649A2C2470B3AE7EE1E4BBB7102550016"
Last-Modified: Sun, 15 Sep 2024 21:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9142
Expires: Wed, 18 Sep 2024 02:12:28 GMT
Date: Tue, 17 Sep 2024 23:40:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a4e61c096fb8a0f28561b209588076fe
84634c409a230cba663826d593379499fce545a8
17f85499c27b8bafbc202dc51cd5e7fa80be0988a0d820dbf8a4c81344f26da9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "17F85499C27B8BAFBC202DC51CD5E7FA80BE0988A0D820DBF8A4C81344F26DA9"
Last-Modified: Tue, 17 Sep 2024 12:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10273
Expires: Wed, 18 Sep 2024 02:31:19 GMT
Date: Tue, 17 Sep 2024 23:40:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
946bd983da8ed3f6d5c12abcab5273e0
eaf94210f1202240080722b9f0a78aa64b6cc1b3
f772e410f6d95169a72a7473bf8ff96f7c642b0e8cd820c34b9debdfc367c44e

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F772E410F6D95169A72A7473BF8FF96F7C642B0E8CD820C34B9DEBDFC367C44E"
Last-Modified: Tue, 17 Sep 2024 14:37:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8698
Expires: Wed, 18 Sep 2024 02:05:05 GMT
Date: Tue, 17 Sep 2024 23:40:07 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
a31eb23bb83183cf82d06967d5e3f31e
803053eed17ab1e4d902c93d5f20ae6e930c89e4
116549023fd841d0418e44c97968a7f84c98b643b76ce6b9a94ca70446de13f1

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "116549023FD841D0418E44C97968A7F84C98B643B76CE6B9A94CA70446DE13F1"
Last-Modified: Tue, 17 Sep 2024 14:38:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18715
Expires: Wed, 18 Sep 2024 04:52:02 GMT
Date: Tue, 17 Sep 2024 23:40:07 GMT
Connection: keep-alive

GET i.ibb.co/pyC2VvJ/alert-xxl.png

162.19.58.159

200 OK

5.6 kB

URL GET HTTP/2
i.ibb.co/pyC2VvJ/alert-xxl.png
IP
162.19.58.159:443
ASN
#16276 OVH SAS

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint26:FE:71:E0:50:E8:60:94:E3:4F:62:05:27:41:82:DD:84:EE:89:AC
ValidityThu, 22 Aug 2024 08:17:43 GMT - Wed, 20 Nov 2024 08:17:42 GMT

File type
PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced
Size
5.6 kB (5554 bytes)
Hash
8d0eed07b450044fdca282d1daf8a58c
794e1284cdf81fd60154955c1805282ae21240cd
baac89456a2d4dfdcdc14244fbe50a04ade7a401c82de605938a92e16f35c1af

HTTP Headers

GET /pyC2VvJ/alert-xxl.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: image/png
content-length: 5554
last-modified: Mon, 07 Aug 2023 04:09:39 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.67

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4887ddff9834733524105327f17fb03
7f2f5a8776b55bd6c946bb10d242b01468727881
f42a281739e5a40177225cbafbcf960194fcf70b0caead1ed4b07f6ca20fef77

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Sep 2024 23:40:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r11.o.lencr.org/

23.33.119.57

504 B

URL
r11.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
55cf5e9bd9922027b0a0cf3edeed86d6
a295f6903963e00adcfe96f3d06330e65700df35
0485177d788aebfcbf273397ae7761de9764ea439b6980d990cc641c6383eb65

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0485177D788AEBFCBF273397AE7761DE9764EA439B6980D990CC641C6383EB65"
Last-Modified: Tue, 17 Sep 2024 15:33:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8434
Expires: Wed, 18 Sep 2024 02:00:42 GMT
Date: Tue, 17 Sep 2024 23:40:08 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
cb1fc3a6bee80b18bfb54d16ab42e21f
0a4c731038cea748332f05528cbe694cc28fa115
05f4f6e70bdd0e34d227fa231dbfd8fd50acd498339053fe84f52353f22b0a4f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "05F4F6E70BDD0E34D227FA231DBFD8FD50ACD498339053FE84F52353F22B0A4F"
Last-Modified: Tue, 17 Sep 2024 15:48:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7128
Expires: Wed, 18 Sep 2024 01:38:56 GMT
Date: Tue, 17 Sep 2024 23:40:08 GMT
Connection: keep-alive

GET origunix.com/sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8

178.162.215.162

302 Found

0 B

URL GET HTTP/1.1
origunix.com/sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8
IP
178.162.215.162:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectorigunix.com
Fingerprint17:89:69:29:07:7E:54:83:FD:0F:4F:9F:AD:F4:2F:CD:15:A0:C7:E2
ValidityFri, 26 Jul 2024 00:32:16 GMT - Thu, 24 Oct 2024 00:32:15 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8 HTTP/1.1
Host: origunix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx
Date: Tue, 17 Sep 2024 23:40:08 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, max-age=0
Accept-Ch: Sec-CH-UA-Platform-Version
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Location: https://pupspu.com/sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8
X-Cache-Status: MISS

GET vmuid.com/script.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8

178.162.215.162

200 OK

10 kB

URL GET HTTP/1.1
vmuid.com/script.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8
IP
178.162.215.162:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectvmuid.com
FingerprintA6:18:FD:B1:EA:01:F1:FB:BE:F3:58:1D:08:31:1A:7C:E4:E5:4D:7C
ValidityFri, 26 Jul 2024 01:16:49 GMT - Thu, 24 Oct 2024 01:16:48 GMT

File type
JavaScript source, ASCII text, with very long lines (10178), with no line terminators
Size
10 kB (10178 bytes)
Hash
dedd352338543b137f608adc8d0d4aa8
100edb4e8fef9b6da043d51135077e68d2a61b22
b338a91ba1d2ab7c3a7a0dd659426f5ffa4cd699be38e2bed5075c4d3e773a48

HTTP Headers

GET /script.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8 HTTP/1.1
Host: vmuid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Sep 2024 23:40:08 GMT
Content-Type: text/javascript
Content-Length: 10178
Connection: keep-alive
Cache-Control: no-store, max-age=0
Accept-Ch: Sec-CH-UA-Platform-Version
X-Cache-Status: MISS

r11.o.lencr.org/

23.33.119.57

504 B

URL
r11.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
9bf3dd8dea3cadc858a82bd1309be495
3f1762f5efd1889cdbab46c7f35b395731ae2020
4077e1210233f5097543618c8ae73791a01477a1bd20fb57c784246314bea6a7

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4077E1210233F5097543618C8AE73791A01477A1BD20FB57C784246314BEA6A7"
Last-Modified: Tue, 17 Sep 2024 15:44:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12956
Expires: Wed, 18 Sep 2024 03:16:04 GMT
Date: Tue, 17 Sep 2024 23:40:08 GMT
Connection: keep-alive

r11.o.lencr.org/

23.33.119.57

504 B

URL
r11.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
9bf3dd8dea3cadc858a82bd1309be495
3f1762f5efd1889cdbab46c7f35b395731ae2020
4077e1210233f5097543618c8ae73791a01477a1bd20fb57c784246314bea6a7

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4077E1210233F5097543618C8AE73791A01477A1BD20FB57C784246314BEA6A7"
Last-Modified: Tue, 17 Sep 2024 15:44:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12956
Expires: Wed, 18 Sep 2024 03:16:04 GMT
Date: Tue, 17 Sep 2024 23:40:08 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
934ec27bd33158faaf03f63b87e19a73
994c2aa8e2d71559ef4a25ba49b089f59015c089
1250f052e0879e48b9ff7e784b48f20a2ff1a15be54ccd49683b50aa6cb72e09

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1250F052E0879E48B9FF7E784B48F20A2FF1A15BE54CCD49683B50AA6CB72E09"
Last-Modified: Tue, 17 Sep 2024 17:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7307
Expires: Wed, 18 Sep 2024 01:41:56 GMT
Date: Tue, 17 Sep 2024 23:40:09 GMT
Connection: keep-alive

o.pki.goog/wr2

142.250.74.67

471 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b4887ddff9834733524105327f17fb03
7f2f5a8776b55bd6c946bb10d242b01468727881
f42a281739e5a40177225cbafbcf960194fcf70b0caead1ed4b07f6ca20fef77

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Sep 2024 23:40:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

o.pki.goog/wr2

142.250.74.67

472 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2e7e651f118d5b3b78a96927f43e3e21
05df10261d5979468bc2ee6d4114bf19f76215e5
bd42007a8299202c8f9d2599cdb1058fe8f5d907ed507dc43f68b948778e2715

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Sep 2024 23:40:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r11.o.lencr.org/

23.33.119.57

504 B

URL
r11.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
e8d49088759c4283d9bcdcbd2fc7cda8
a25cad1b9dec28b6f612949e2a51538e87a92799
f1d4b89c535fdea4e7ccafd94e3d3ce601ff59a0341fcc2f7dcd0af192c0cce2

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F1D4B89C535FDEA4E7CCAFD94E3D3CE601FF59A0341FCC2F7DCD0AF192C0CCE2"
Last-Modified: Tue, 17 Sep 2024 15:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12071
Expires: Wed, 18 Sep 2024 03:01:20 GMT
Date: Tue, 17 Sep 2024 23:40:09 GMT
Connection: keep-alive

GET fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.67

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA8:8E:91:B3:04:E9:C9:F3:CD:3D:27:83:B0:53:22:C0:21:23:9A:92
ValidityMon, 12 Aug 2024 07:17:58 GMT - Mon, 04 Nov 2024 07:17:57 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Size
18 kB (18536 bytes)
Hash
8eff0b8045fd1959e117f85654ae7770
227fee13ceb7c410b5c0bb8000258b6643cb6255
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571

HTTP Headers

GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://torrentz2.uproxy2.biz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Sep 2024 15:24:20 GMT
expires: Fri, 12 Sep 2025 15:24:20 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
age: 461749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET gemfowls.com/a0/32/b4/a032b4d33c8aea68a4f9b84235614bff.js

172.240.108.68

200 OK

16 kB

URL GET HTTP/1.1
gemfowls.com/a0/32/b4/a032b4d33c8aea68a4f9b84235614bff.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectgemfowls.com
FingerprintE5:35:9F:A9:BA:72:BE:63:23:BC:ED:9B:90:AF:42:2D:11:7E:A7:8C
ValidityThu, 01 Aug 2024 10:55:42 GMT - Wed, 30 Oct 2024 10:55:41 GMT

File type
JavaScript source, ASCII text, with very long lines (44511), with no line terminators
Size
16 kB (16200 bytes)
Hash
6f042bf18a8766d98edd68c1b31a81a8
a0844634ecf2cca2be1aa833500f3353562e0bcf
bcd4ff91ead7152df4d81c10bd77d633055a3e3e168f533552d5fb8b2df39c35

HTTP Headers

GET /a0/32/b4/a032b4d33c8aea68a4f9b84235614bff.js HTTP/1.1
Host: gemfowls.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Sep 2024 23:40:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_BS-125-7=1; expires=Tue, 17 Sep 2024 23:40:09 GMT; secure; SameSite=None
Host: gemfowls.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4a1d097cc148499087facd3633882565
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET gemfowls.com/22/00/54/2200540f09f939738419313a1a090c32.js

172.240.108.68

200 OK

34 kB

URL GET HTTP/1.1
gemfowls.com/22/00/54/2200540f09f939738419313a1a090c32.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectgemfowls.com
FingerprintE5:35:9F:A9:BA:72:BE:63:23:BC:ED:9B:90:AF:42:2D:11:7E:A7:8C
ValidityThu, 01 Aug 2024 10:55:42 GMT - Wed, 30 Oct 2024 10:55:41 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (33596 bytes)
Hash
9733a4a55e7c8fb476769d82bb9f8d0b
fb821973f2e51ad844aa22598f19e95817b1bfcb
e29c383ede32cbc1683a639a304be8dd5b11e6186c183a30d3293490824b1c62

HTTP Headers

GET /22/00/54/2200540f09f939738419313a1a090c32.js HTTP/1.1
Host: gemfowls.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Sep 2024 23:40:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: gemfowls.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9ca0cc82247353c5f8cd5d1c80e7dcec
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

o.pki.goog/wr2

142.250.74.67

472 B

URL
o.pki.goog/wr2
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2e7e651f118d5b3b78a96927f43e3e21
05df10261d5979468bc2ee6d4114bf19f76215e5
bd42007a8299202c8f9d2599cdb1058fe8f5d907ed507dc43f68b948778e2715

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Sep 2024 23:40:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

GET heartilyscales.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js

172.240.253.132

200 OK

16 kB

URL GET HTTP/1.1
heartilyscales.com/a2/86/90/a286902791a7f4c98bcb1e812322cd78.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectheartilyscales.com
FingerprintEB:71:D5:03:05:25:4D:E1:95:8D:78:D6:CD:21:0C:B9:45:46:C3:07
ValidityThu, 08 Aug 2024 12:26:00 GMT - Wed, 06 Nov 2024 12:25:59 GMT

File type
JavaScript source, ASCII text, with very long lines (44511), with no line terminators
Size
16 kB (16232 bytes)
Hash
b3b301fb22fce45b969bef96640cbca7
a497f1624226b61e2422bfb2355ee6dd2be70b50
340d8923a82a31695634613c06f5fc3c81e30934b7b8bf025ccd262004f109ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a2/86/90/a286902791a7f4c98bcb1e812322cd78.js HTTP/1.1
Host: heartilyscales.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 17 Sep 2024 23:40:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_BS-125-7=1; expires=Tue, 17 Sep 2024 23:40:09 GMT; secure; SameSite=None
Host: heartilyscales.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 88c7cc40f13609930ec39be7d6296655
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET pupspu.com/sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8

178.162.215.162

200 OK

61 kB

URL GET HTTP/1.1
pupspu.com/sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8
IP
178.162.215.162:443
ASN
#28753 Leaseweb Deutschland GmbH

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerLet's Encrypt
Subjectpupspu.com
Fingerprint12:74:50:41:52:A8:E5:E8:E0:24:08:49:7F:C5:66:D2:16:B3:DE:16
ValidityFri, 26 Jul 2024 00:54:52 GMT - Thu, 24 Oct 2024 00:54:51 GMT

File type
JavaScript source, ASCII text, with very long lines (61297), with no line terminators
Size
61 kB (61297 bytes)
Hash
40c882df77cab83c1b8d3adc1b255932
1ce0731bf1a768b13a08c6ce12cf196309da994a
f300badea3d005f75ff8be32b2dd6460af7d1bf16e199da04a1f3fca5ac54b11

HTTP Headers

GET /sdk.js?sid=4dd7d833-3142-4a3f-a135-6fb1263ef9b8 HTTP/1.1
Host: pupspu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://torrentz2.uproxy2.biz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 17 Sep 2024 23:40:09 GMT
Content-Type: text/javascript
Content-Length: 61297
Connection: keep-alive
Cache-Control: no-store, max-age=0
Accept-Ch: Sec-CH-UA-Platform-Version
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Cache-Status: MISS

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4960
Expires: Wed, 18 Sep 2024 01:02:49 GMT
Date: Tue, 17 Sep 2024 23:40:09 GMT
Connection: keep-alive

POST torrentz2.uproxy2.biz/user.php

172.67.191.27

200 OK

507 B

URL POST HTTP/3
torrentz2.uproxy2.biz/user.php
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
data
Size
507 B (507 bytes)
Hash
0e55884514c94c5d802e307fc0299064
21513317c2a12fa1dd991474738ddf58b308a4e9
571950bad538f69b394c3da18969bcc3b98c569e00ddff4ddd599c23d48fe613

HTTP Headers

POST /user.php HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 39
Origin: https://torrentz2.uproxy2.biz
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:09 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ysxdjJoB8y3OkpqMOVGt%2BOdDi6d4arWt524rRd5pPa5gt7JvfKfXFFeZLW%2Bzl%2ByJH57t%2FVxlS9ghepcsFhnnYV2REvIIy82foZbGFylIM%2BrcnKRYXiMEEe0mkbSTlWpH%2BFqZKCjnA2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c4cf08c7f75569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

r11.o.lencr.org/

23.33.119.27

504 B

URL
r11.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
bdbfec92a6dfe1ae7eb50b81499db3ef
17c2ddbd585945f641337f53a51e276a8f6fd0cf
5adae3b06c20c5a307d0d48c7b569636d95b88285d3c3ab411629d4fc4015cef

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5ADAE3B06C20C5A307D0D48C7B569636D95B88285D3C3AB411629D4FC4015CEF"
Last-Modified: Tue, 17 Sep 2024 14:34:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4960
Expires: Wed, 18 Sep 2024 01:02:49 GMT
Date: Tue, 17 Sep 2024 23:40:09 GMT
Connection: keep-alive

GET torrentz2.uproxy2.biz/zpp/zpp4.js?q22q2q2

172.67.191.27

200 OK

22 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/zpp/zpp4.js?q22q2q2
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JavaScript source, ASCII text, with very long lines (38995), with no line terminators
Size
22 kB (21806 bytes)
Hash
7dc63553536847077855df4f82f1ec18
146c3aac34cb4e7e1e9c692ccd0161b2e4f018de
3a18b1964d1d209c46d754459b9ef98d4a9a85065e245f8311be727ffee3f960

HTTP Headers

GET /zpp/zpp4.js?q22q2q2 HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 05:53:32 GMT
etag: W/"603dd2dc-9853"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bsMIUUyL%2BAYjCoDk0v9S8vGgFrQo1HCcGlIsiBmn1wQ2NsA%2BaJAKnG6EdXT98msG7CJyfnA4ggTi%2BMaAmPYUNAiUAqcaPC945CI8kw2rtVpQdVFp%2Biy3Kqng5XhXt9ZrtnRIiCnKjBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e7b569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET torrentz2.uproxy2.biz/web/20200618202403im_/https://torrentz2.eu/img/sprite087-min.png

172.67.191.27

302 Found

8.7 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/web/20200618202403im_/https://torrentz2.eu/img/sprite087-min.png
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3
Size
8.7 kB (8687 bytes)
Hash
dcdadae7a2fe1677f96c5f5f7c0093ad
17ae68263ba39241b85b591cdaf5a8e0ef45a161
728a2187e34c1cb1ee7cdc604509fc4f17f697c162fb8cf0a80baed556797283

HTTP Headers

GET /web/20200618202403im_/https://torrentz2.eu/img/sprite087-min.png HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/js/torrentz2.css?300620
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 17 Sep 2024 23:40:09 GMT
content-type: image/png
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
location: /
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 18-Sep-2024 23:40:09 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yf4RNgCmUurydkc780guSSGadrOba7znscd94%2BKN2g0R58eZc3H13oSszN6HwSFKQpYHAJyUI1xOejMbvgSh%2FtWPI1oZmiA9%2FJ9BdFMXaJhahaBsx0lx174r8TZ3Lc1W1MmECJ0HmDM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08c6f72569a-OSL
alt-svc: h3=":443"; ma=86400

GET torrentz2.uproxy2.biz/

172.67.191.27

200 OK

19 kB

URL User Request GET HTTP/2
torrentz2.uproxy2.biz/
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
data
Size
19 kB (19195 bytes)
Hash
bad13892465c4829d0cc4467f208767b
0817284eb3ac9844cb1984f7136c77ec7d8ff1b8
636a015d4cdc0f618a84f536fb88dcaf0fe64b3ea98f11ce72e449017c073271

HTTP Headers

GET / HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://torrentz2.uproxy2.biz/
DNT: 1
Connection: keep-alive
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:11 GMT
set-cookie: view=1; expires=Wed, 18-Sep-2024 23:40:11 GMT; Max-Age=86400
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mWqRl1hL%2Fbs%2Fwn0DkZxyhvzuMXssrj0VIVrixFgYfnP0b%2Bn0GH4wHk%2FCTpSSfXhju0Brx7LYaFnT4xK4Uj2DGmjxA8hn19v1en5hBFUobUNZurF8DZqpChjIMGRp8nlVBarCYKqp1LI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8c4cf09d5e40569a-OSL
alt-svc: h3=":443"; ma=86400

GET matomo.hellohi.me/matomo.js

104.21.94.42

502 Bad Gateway

6.3 kB

URL GET HTTP/2
matomo.hellohi.me/matomo.js
IP
104.21.94.42:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjecthellohi.me
FingerprintBE:D4:D6:5D:5A:45:C6:A3:7A:EA:DC:F9:C5:1C:CE:3A:08:29:BC:85
ValidityThu, 25 Jul 2024 00:34:43 GMT - Wed, 23 Oct 2024 00:34:42 GMT

File type
HTML document, ASCII text, with very long lines (394)
Size
6.3 kB (6338 bytes)
Hash
e58c15789f47284de812491211cad5d2
acd0ef55c587b3ec270cc0e906c0de435edc731d
e460342a462fd9731cb8dfe1ffcfe4da38f0529db433a9dc7e01d9d31ad97e3f

HTTP Headers

GET /matomo.js HTTP/1.1
Host: matomo.hellohi.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 502 Bad Gateway
date: Tue, 17 Sep 2024 23:40:20 GMT
content-type: text/html; charset=UTF-8
content-length: 6338
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9NizqvAG5tQdz9YGgvg%2F6IVaIBewkdZ5H%2BlncRQoQqgmZOK6O3nUvryQcN9dyIJ36IjSC4VdYt22eZh%2FWLJ8nyvV3fNIj8CfiKJqCGDK38RFIpvBmzaSQ7IhU1n1OPPtES15tA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8c4cf08d09207127-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET torrentz2.uproxy2.biz/js/torrentz2.css?300620

172.67.191.27

200 OK

26 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/js/torrentz2.css?300620
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
ASCII text, with very long lines (26450), with no line terminators
Size
26 kB (26450 bytes)
Hash
a3c8349687d14a1f1009b9b9175ed061
895b33f4b4970737f4bed962cbfaef974dd21bab
f1a7e4cbaef43af38c10ee353cfcd198323f3f0b6b61f31bb232a4a26b585843

HTTP Headers

GET /js/torrentz2.css?300620 HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: text/css
last-modified: Sat, 27 Mar 2021 06:08:35 GMT
etag: W/"605ecbe3-6752"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dm9YmHrvqvfp8mIRQaATanukFJsKjJclRe1XwRW7mRLE2FoiVbseMeso5UmoCLgxj1KXvvRFXMJIj1ZAPfLN3qZ9XI58ScOvxnAPJLvqqTBzMcQEL7F1SM8c9lmSfdEwSk1OKHbFZuw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e77569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET torrentz2.uproxy2.biz/app/apx14.js

172.67.191.27

200 OK

7.7 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/app/apx14.js
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JavaScript source, ASCII text, with very long lines (8720), with no line terminators
Size
7.7 kB (7663 bytes)
Hash
3db7729f5768690d08cfbb852bda88b3
29d50e49674a25263da47dec24318c1a68f003e0
997dcda1cc75d9821ee6a9b2dba6fff73b5f104ed1a49792f998d7fe70d24893

HTTP Headers

GET /app/apx14.js HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:26:26 GMT
etag: W/"5f610752-1def"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ry9QGRk64g8ZCmmlTBR%2BuyrX7qP7eancpVcBB2Tpno0wRblKKaICXEu58OmBO2t8zDKJRaK2X92WP6744qUfGYIVvpUmHjXI9XAhTKMRkR3v1xJoNocwZ2%2BHZaD0kGa6n5mh4X%2B68Z4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e7d569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET theusualsuspectz.biz/j/m/qqqq.js

172.67.142.129

200 OK

48 kB

URL GET HTTP/2
theusualsuspectz.biz/j/m/qqqq.js
IP
172.67.142.129:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjecttheusualsuspectz.biz
Fingerprint7B:12:80:68:BC:71:8E:8B:43:D7:AB:3F:91:E1:33:27:5D:2A:33:3F
ValiditySun, 08 Sep 2024 05:54:46 GMT - Sat, 07 Dec 2024 05:54:45 GMT

File type
JavaScript source, ASCII text, with very long lines (48351), with no line terminators
Size
48 kB (48351 bytes)
Hash
febd5bfc829d7c8aa363e93e2e61f414
10d66213a9249bea47b15acf295323f01d217ef0
ff391f38fc73325f58d0626b9415ac121f1461407d74e86ebddefd8180050d76

HTTP Headers

GET /j/m/qqqq.js HTTP/1.1
Host: theusualsuspectz.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 03:16:06 GMT
etag: W/"603dadf6-bcdf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 6445910
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2F%2FEc5CKRL7pYvGtKuVVTeUwVFYy%2B%2FThtPbptW5eLQAXmV1KRSjZ6sJzQ%2F4NETMBOyfQ5GW%2Ft1zk%2FPdwwranWdrWM%2FrmZ45fM9ZzmkaAZUpyjasRlz8PtN1EZmg4%2BTpXn9EPJ6qtwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08ac8541c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET torrentz2.uproxy2.biz/favicon.ico

172.67.191.27

302 Found

14 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/favicon.ico
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type

Size
14 kB (13998 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Tue, 17 Sep 2024 23:40:11 GMT
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
access-control-allow-origin: *
location: /
cf-cache-status: BYPASS
set-cookie: view=1; expires=Wed, 18-Sep-2024 23:40:10 GMT; Max-Age=86400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fCBiTsPQz92%2BlZihr34dfJYbl86RdJ7S35VGq0xmFNpaURySASIFKgZsVMm2tvLBy1O%2Fouoyd%2F04ZyMaT%2BzMJ6n%2FGJ6hCNngJ4HdM2miN%2Fqfg2S2eqZuqt0aZg5bKZlkAnG%2Fznev5Kw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf096aba6569a-OSL
alt-svc: h3=":443"; ma=86400

GET torrentz2.uproxy2.biz/app/apx19.js

172.67.191.27

200 OK

9.2 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/app/apx19.js
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JavaScript source, ASCII text, with very long lines (10516), with no line terminators
Size
9.2 kB (9183 bytes)
Hash
d26dea46bd49f9297502159ed377f84c
2da344f74215617efd03c4805e5e15d7d8039515
77d7964a36f5c3105bc99271b3ffe2d4ebc5541e4acd38def734b3eaea38fd38

HTTP Headers

GET /app/apx19.js HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:46:55 GMT
etag: W/"5f610c1f-23df"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lSQNYa3AFXZkI9Afs8u8eqtc%2FAe%2FgjmKQkpANMbEd4TvEys%2FZdwRC4GVp5kyq5iI%2B1Tm0Br37yTRHjR1PV0Ks9g2tTnnIkS2cfCYy5YLTn35PnVxuY9wL1zAtylTMZUqwli0gl5EtZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e79569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET torrentz2.uproxy2.biz/app/x12.js

172.67.191.27

200 OK

11 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/app/x12.js
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JavaScript source, ASCII text, with very long lines (11180), with no line terminators
Size
11 kB (11180 bytes)
Hash
94efa3c05291ac5cccd32cc3a11c9724
3a033e4d6f5e5eaf76030a81c8a05c619de436c2
58c753f7ffcb584d2ed43470ec9bdd30a4cd4723f368d83de6163413d5555102

HTTP Headers

GET /app/x12.js HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 15 Sep 2020 18:26:27 GMT
etag: W/"5f610753-2bac"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHJQEW6jqxO3UadKOzg9KC%2FTravuf5HIpgT8nlnmwshM5CvPd5b6i1z9i3Sn9%2FH3Nubvf0FkqtErbq8pbHKXoZAbcIJRpPuXCROGFX962lAEWWhv0BXX6JNTrA2o5BrMTJpjEQOFRSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e7f569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET metrica-yandex.com/metrika/tag.js?1001

172.67.193.32

200 OK

60 kB

URL GET HTTP/2
metrica-yandex.com/metrika/tag.js?1001
IP
172.67.193.32:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectmetrica-yandex.com
FingerprintE1:7F:33:ED:2A:CD:4C:81:1D:64:62:E0:1B:76:FC:F6:61:4D:99:08
ValidityThu, 05 Sep 2024 17:38:21 GMT - Wed, 04 Dec 2024 17:38:20 GMT

File type
JavaScript source, ASCII text, with very long lines (60271), with no line terminators
Size
60 kB (60271 bytes)
Hash
ea67b2343fc359662afdae5d4c8c8e03
7f07219a8cd9d6d5c17e20bd7e80fac0281c2b18
5e31460a6eacabdc5895ad2ad898a4a570ac88f2794c61ddce6b0beee304eb11

HTTP Headers

GET /metrika/tag.js?1001 HTTP/1.1
Host: metrica-yandex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 30 Sep 2021 23:00:22 GMT
etag: W/"61564186-eb6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 8338500
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HtbY1b65ffMOtVpaLBVC2IJSRfNIaF8Folvlu1HtTYoDQzGgZicswSAweOLWBzoTJUW9ZziMbTuiHKkPtGDmmwO0e%2BMemzWPdq6sABRXR2xXMEZGMXu8B9d56OJj2oBlOaqAjJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08acf40b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap

142.250.74.74

200 OK

2.3 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint9F:01:79:20:AD:58:33:6E:BF:F2:BF:DA:69:ED:BD:8D:19:F9:2D:D9
ValidityMon, 12 Aug 2024 07:18:03 GMT - Mon, 04 Nov 2024 07:18:02 GMT

File type
ASCII text, with very long lines (2379), with no line terminators
Size
2.3 kB (2316 bytes)
Hash
b7ef056a4ebb0c86446d3ae088a6e6c4
b89111cf2bcfee2d6da5bacf4f903f6b124337d3
90333fe7f7dd3fb2a48a0bb073ce4ecc891beddf88552237ecfa945655e4855f

HTTP Headers

GET /css2?family=Roboto:wght@400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 17 Sep 2024 23:40:08 GMT
date: Tue, 17 Sep 2024 23:40:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET torrentz2.uproxy2.biz/hy.js?q22q2q2

172.67.191.27

200 OK

56 kB

URL GET HTTP/3
torrentz2.uproxy2.biz/hy.js?q22q2q2
IP
172.67.191.27:443
ASN
#13335 CLOUDFLARENET

Requested by
https://torrentz2.uproxy2.biz/
Certificate
IssuerGoogle Trust Services
Subjectuproxy2.biz
FingerprintB9:E3:B8:6B:A0:0D:FC:7F:3A:7D:4E:73:DB:14:E5:36:0F:1C:E0:2B
ValidityMon, 29 Jul 2024 22:49:36 GMT - Sun, 27 Oct 2024 22:49:35 GMT

File type
JavaScript source, ASCII text, with very long lines (56131), with no line terminators
Size
56 kB (56131 bytes)
Hash
667d77da844b6d5ad62b2f26e77b4b12
01ae61192a38af73a93c67468fb8271d7bbfa4f6
f240ce7fa62cd81d92f29081815f2cd2376ea6867887d17d5625009ebdf355b1

HTTP Headers

GET /hy.js?q22q2q2 HTTP/1.1
Host: torrentz2.uproxy2.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://torrentz2.uproxy2.biz/
Cookie: view=1; PHPSESSID=tgen8prv5m4clq69mghm8ad33l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 17 Sep 2024 23:40:08 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 02 Mar 2021 05:53:27 GMT
etag: W/"603dd2d7-db43"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m5ZbAj%2FVPWBmL12rB%2BO5dNJE%2B8ixts1atMRpj7GfGtpy%2B%2FzNUyVzVoqzq40jDNJ01oNGDNEh0Ex76OmKTvROTZsu6DatrfaWPvtSyk%2F0BBs3ngRDNXhXA5JkQfKWCJMxYkxICDiD8es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8c4cf08a6e7a569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (38)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash