| en.yts-official.mx/static/yts/image/default_avatar.jpg |  104.21.69.3 | 200 OK | 2.4 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/default_avatar.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100", baseline, precision 8, 60x60, components 3 Hashe55b123ffd0b26cddf175715a76ff22d 0cbeba4643578c972bb79bf8e3b0b83a794df5bc 9412c68d8f2bad5e7abe0ca709a3258cf8c2b7a14bcc1654abf2316debf902cc
GET /static/yts/image/default_avatar.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 2449
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-991"
expires: Thu, 30 May 2024 16:20:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 858230
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yUpj%2FACahLAwE7PYvChD%2BGNduj7i4Ltq4kyDUAfptJGqOvWA5LyaLQm1mSgKXowydQNTWRAiO11kL4U%2BOFCXXQrjinNdukap72LtBy4JNGNbUMoAmz2lZipzhKGfwm5%2F4BeZ4F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541bb72b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/high-life-2018.jpg | 104.21.69.3 | 200 OK | 27 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/high-life-2018.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash7889765e906aa0bc69e4b90b59188e70 acaf3144623ed02d55f91ed1b2cfefee7798ae46 9d56b5f59ca5df125c5083baab00463618b0a5ec0fbc07fd36bf7d99679cc9f3
GET /movies/poster/high-life-2018.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 26965
last-modified: Tue, 02 Nov 2021 03:56:40 GMT
etag: "6180b6f8-6955"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUMNTYTawzilePeXK2DThX%2Fdd5ef7eYUfTA%2F3fhRm9R2RUEi%2B4ulv6eITe5pm2s6QPjYLZNobkJdimhg6TBVIUs9e63IH%2BeXnDJCk4dcb0fR2jdRrqRsJ2PgEKMbaNLJ0zUbMzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab52b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot1.jpg | 104.21.69.3 | 200 OK | 25 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot1.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x211, components 3 Hashf63dcf6e7b42f4ce823100d3cbf7a5eb 56f2931deabddca627711f7cb9fd6044a2b11fe6 917d4521e441ae3571c079549ed95d6afe02170540b2be394b648ddbc0163157
GET /movies/screenshot/high-life-2018-medium-screenshot1.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 24775
last-modified: Tue, 02 Nov 2021 03:56:42 GMT
etag: "6180b6fa-60c7"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bf2NTuQfu9TXjz89SFrn%2B1NlTULP5DF1xy488QdJEPe3E9Htvr57eI00kWxc0Glw%2BfQ1cFZsHpQvaJeYh36bN0ta%2BDTkeASsrSyr6N3lkmKfwljhjTEiGYXz11JuqKvqQnEahyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541bb6ab52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/style/modded1.js?yify=1 | 104.21.69.3 | 200 OK | 57 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/modded1.js?yify=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typegzip compressed data, from Unix Hashec5844437367ba4e25bdd248cfacb09a 40180af10930ee27fa011d7a50c032c25993c6f0 672f4983b33bb41800f3a5d95200b973c96d2f85a7af2135022550cb537ed794
GET /static/yts/style/modded1.js?yify=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:38 GMT
vary: Accept-Encoding
etag: W/"65d2c88e-27b24"
expires: Fri, 10 May 2024 20:33:51 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 22243
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WYfwSgr2Axua1ZhfREMIWUhzXo%2F1Whhi4%2BWo8PzMsmnAHyfjyuh3R4TnueaV9PGmyCqe7wNRtPpYWuh04SKnAUo3XY9OPaF76WzBnJZudJeF7G4SbkSMrQz%2F2s7YdHyiqrrFRXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab541db99b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/a-bugs-life-1998.jpg?v=1 | 104.21.69.3 | 200 OK | 34 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/a-bugs-life-1998.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashb5b249396197c1405423a6c97bd8feb8 075682f16c3684bba5fe72b1461686a44acc4058 85ffdbc3c07a4840cac1b23d8d6b74914d687f305fb980ba629d19bfcb9e07ba
GET /movies/poster/a-bugs-life-1998.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 33816
last-modified: Thu, 28 Oct 2021 13:06:56 GMT
etag: "617aa070-8418"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=edmMAbM95WM7u5TC2PpJmKn7JYZe5wSsiRjTJi45svTQsCrfcLRmGEesmObbriNRProAdTPMdSevR705deFPQ1KbSnyviruC2ih1YumqNAa0%2FhZSDvyL3FKbewYV4WiNOMJmwec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab60b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/life-of-pi-2012.jpg?v=1 | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/life-of-pi-2012.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashac9a3204f6890c284023037b085ef3af f8d256db0edd299cfa6b76522ce8fbfb68016d46 59ecdd67938eec9aa758b2e1d17157b20d7e457562fb9dbe02317641f23419b5
GET /movies/poster/life-of-pi-2012.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 23092
last-modified: Thu, 28 Oct 2021 09:17:45 GMT
etag: "617a6ab9-5a34"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cs%2FsnbdZeUTJ70O3zWO686j7erYQamKJck%2F7VDsBNZTbfHZRH%2BmDV9BrH7oaUwEya%2BAgScMulRtnPXNwc9ZCG38bk7NLRU62SnmM9LF3rG4bTwYXEHviSBPkmrM74FvsNztfn34%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab64b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vidsrc.to/assets/embed/min/all.js?v=663d8cfa | 104.21.64.103 | 200 OK | 45 kB |
URL GET HTTP/3vidsrc.to/assets/embed/min/all.js?v=663d8cfa IP104.21.64.103:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typegzip compressed data, from Unix Hashf51f3d473519860be9ed25be58397458 bf03e5dfb2b2538c861724efd179f14d3a53816c 3a7fd7e039f99d43744963c8550029485118152f6acdd53a67e0db9c785ece63
GET /assets/embed/min/all.js?v=663d8cfa HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt4827558/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 02:57:19 GMT
etag: W/"663d8d0f-15634"
content-encoding: gzip
e-cache: HIT
access-control-allow-origin: *, *
expires: Sun, 09 Jun 2024 02:57:24 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 42430
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qo9TEzbjguYrF%2FoIl8JFQKLwYOVuGettgV0yCTJDuJQStZv60JSWuHxgQ3fcDu3ruiyhkIWA0GVDEyTchuPWgm0zbNpbc%2BZOt2%2B%2FB0uKwh%2FmefU%2FE5h5DryBCbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5439e74b4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, TrueType, length 23320, version 1.0 Hash68ed1dac06bf0409c18ae7bc62889170 22037a3455914e5662fa51a596677bdb329e2c5c fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /static/yts/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: font/woff
content-length: 23320
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-5b18"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2518
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XZNxuziuwopZbZfr8oXh7IWPBsIUTgcntaWOJhvZKzxWUYL31tGaVi%2FKBMVCIsi%2BJ83KGHRhCqinajzDQy2ub9LOygOKAXmevpB4bsO2YXZbbbrqK1%2FUR1db1X%2FvTiLmx%2BAuCxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5443eafb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js IP104.17.24.14:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hasha0805bca912ec901f2a7096228b62d46 3233fd01d87fba457eaad8dcbc289f75b170f814 19126b874a32753d42c12dfa6c17892bfd93820a5a5100ba1b34da4d07599b49
GET /ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 19448
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62d72277-4bf8"
last-modified: Tue, 19 Jul 2022 21:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 212356
expires: Wed, 30 Apr 2025 14:44:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C6dRN8tjEVdZTfeYBOPBn6I9niLeUKgpXwvveRZXljHZoYdQ%2BsdTXbdqNsfwA4srwaC2SUnXc41Jah0JSPvSU%2BpCtukAYIrxFvc2YWzRxdC2CW2LYtNC8Auo30B3fkOi410BIkPB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881ab5445ccf569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css IP104.17.24.14:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hashded1c367363e8b20bdc6a19b8350a737 8c06d82739d14b094ff6d9036021a252bd1d985d 1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf
GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/css; charset=utf-8
content-length: 18752
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6421d693-4940"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 224237
expires: Wed, 30 Apr 2025 14:44:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eg3ZmDeYMzTEu2DlwpS8NpMOyZEhjWv64vs10vt%2FZuOUmrez86Q2RaaKEwMYzYqnVwPLho2LD3Neveu2bXxV%2BxlcAINFXHou5Vkf2Loo1H45tICl6BCcUyy2rDyHuFj6r3fAykeX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881ab5446ce5569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 159916
expires: Wed, 30 Apr 2025 14:44:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kju12Sb4tCD0qW%2B2kPvCh8gm%2FCXztChRnFNIlum9TtG8CcPZzAwpaa5xnqUlvmDdG3ORZc3GF9xo3AyoEea9z3zrCoKeV6Ijs5v%2Bmd%2F5UUgBfUyGdBRjhbzE6%2Fi05Od635nWkswa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881ab5446cda569d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot3.jpg | 104.21.69.3 | 200 OK | 19 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot3.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x211, components 3 Hasheca4ff30d8959e421fbb097b242d78af 7f2996cd2dc0fe39d1d067058d155621d929a874 9cbed7f8c9f7cb8e95b273bf21c673ce0770654131b898ffdc48d7876c3495d2
GET /movies/screenshot/high-life-2018-medium-screenshot3.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 19387
last-modified: Tue, 02 Nov 2021 03:56:44 GMT
etag: "6180b6fc-4bbb"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LFBrP2jckFDV%2BMofGsykCyeIy0k1t7pJxrsU42CTSzoS4ZcKNsPFLd1xe2RNqL9mUSkZDfnUp4N3I23zxaY6KOX16sHhYc%2BGVDBB4RnSIhYIHjYj0WhriXw%2FYu%2F%2B8sw3y%2Bdc8QM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541bb6cb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot2.jpg | 104.21.69.3 | 200 OK | 28 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/high-life-2018-medium-screenshot2.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x211, components 3 Hash45f5325e417d69af816738a7f3a6008f 1f9cca1616bdb0873c4f8db69d21c728a0ba23fd cd04652f920fad8dfff91fd61506d72c9822be4014aaee19b2284826af651906
GET /movies/screenshot/high-life-2018-medium-screenshot2.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 27974
last-modified: Tue, 02 Nov 2021 03:56:43 GMT
etag: "6180b6fb-6d46"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KSHZQhRsBuv8ATP4ZTDCS%2B8hBJFHtCLzk4tB6J1e0MkC0jVLuTtBXhGitmXyeRoTwwhm8l8tHC1nEh%2BMa3jggPqIqsGMpou6f5qNVlrtIGk6adhKntcLV1ioqD2PWJ4nNZebpLQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541bb6bb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/a-high-wind-in-jamaica-1965.jpg?v=1 | 104.21.69.3 | 200 OK | 37 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/a-high-wind-in-jamaica-1965.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashf195bb50600c204cbe2d47853efdb2df 466375ec027fd0fd7de9cde5ffc1180787ab3dbd 80673c3de3e39ba39280011fe77cbfab1cba714a312880bc8a635c0693403767
GET /movies/poster/a-high-wind-in-jamaica-1965.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 37419
last-modified: Thu, 28 Oct 2021 21:05:28 GMT
etag: "617b1098-922b"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QkEjQE9vxyqItzq48NX7sG8mXpyPtjd2OwjPrLi9G9LCjB0dGXIzFOihuMeRwPhC%2B%2Fz44%2FJnCHdm%2BU09rvWGdHO5sur%2Bc2AzP6emsn5rcqwK%2BYnVl0lo6dkygoRdEWYqcv%2BeRgc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab5fb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/sky-high-2005.jpg?v=1 | 104.21.69.3 | 200 OK | 31 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/sky-high-2005.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash5f25053be517095ff89abb104b338a6f 14fac1e7209decfbd3a456d2f330fd87989c4df8 dc09fdddcd8f90571cacee788dbd445f535cf522677cd1c26da1d1aa8c0be14d
GET /movies/poster/sky-high-2005.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 30592
last-modified: Thu, 28 Oct 2021 09:03:06 GMT
etag: "617a674a-7780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9zZmwyJ63Fl%2F4tDSKnrRcXs05eqxQCS9Na3L3a330BbH7pddrFHStiiMCIPkKHCsWA7f70eIBOKXUOaplj1xwpvcDngq%2FOGymabGmaVPN0eMrYzrjAvPjZICznAQByBySUJfZho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541bb69b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 |  216.58.207.227 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 IP216.58.207.227:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20040, version 1.0 Hasha61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6
GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 22:08:55 GMT
expires: Fri, 09 May 2025 22:08:55 GMT
cache-control: public, max-age=31536000
age: 59739
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/style/minified.css | 104.21.69.3 | 200 OK | 26 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/minified.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typegzip compressed data, from Unix Hash8a17e8bd4f1b566bf17239be3b6b224f 8939929347f4954b4bb742b72f78f3d5480947ef 46fd7cd363996cf0f6177076055be0728eb6f5b654ee8ae0279ad11097376ad3
GET /static/yts/style/minified.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 08:38:28 GMT
vary: Accept-Encoding
etag: W/"65d31384-1d423"
expires: Fri, 10 May 2024 20:33:50 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 22244
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jr2%2FVGcnjimMKPgwNrFySeuW8IrhKSD9XiFMPBopyMwnnoLuEBGBoRKlB2SwhtGG5dd71Qff0mblxRoO0BLVIsAU0LdbMXF270SH0fBwhYsO4F3nyvCluUWQuY%2F%2BB6cLghG5sr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab5419b3cb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/image/logo-YTS.svg | 104.21.69.3 | 200 OK | 3.9 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-YTS.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashfdd85bfbf80d872ea41b942cf21d1db9 6a2d54565cbffa3af342a63931e412ad8837f92d 2234cb288342eab0edfb65ebda4189cf47b40a4b639a25af62c57c03f7ace459
GET /static/yts/image/logo-YTS.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Feb 2024 02:51:28 GMT
etag: W/"65d413b0-5b34"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2601
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pfCZu6Ceyll%2BVEZKoteQfEffJLYpaP7VKjfwTLNBTB2G3TZ6V5P1qa7JVQ7EQRfYjDxFLlOquA%2Fg7DBi5XynsAy4RBp8w%2BIt%2FIGAFh0%2BAm2Yrj%2F%2FMTHkbDcT6GGW8sI040V6qrQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab4eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 IP216.58.207.227:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22052, version 1.0 Hashf0e48ce2beda9e8cbd7d915bf1b1ae71 3dc1cfff1759b0959cc7fb17517651ec850d584d b2504b3c20c2feb37e78773b788dd09a9cc43c9f36086bc1e2f83a6366ebaa34
GET /s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:53:36 GMT
expires: Fri, 09 May 2025 01:53:36 GMT
cache-control: public, max-age=31536000
age: 132658
last-modified: Thu, 14 Sep 2023 00:00:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| vidsrc.to/assets/embed/min/all.css?v=663d8cfa | 104.21.64.103 | 200 OK | 32 kB |
URL GET HTTP/3vidsrc.to/assets/embed/min/all.css?v=663d8cfa IP104.21.64.103:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typegzip compressed data, from Unix Hash9edb237ec1aea576f5085d2c7698316b e0cb5ad207d416d40f49806dd9139807a495e3f7 441e4c67fa8bfa255fa2591076bbd4beda1eacfe68401c9223dba85c0e4dcf1b
GET /assets/embed/min/all.css?v=663d8cfa HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt4827558/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/css
last-modified: Mon, 31 Jul 2023 07:18:46 GMT
etag: W/"64c76056-139ba"
content-encoding: gzip
e-cache: HIT
access-control-allow-origin: *, *
expires: Sun, 09 Jun 2024 02:57:24 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 42430
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XzpxodayJnT9%2FNOR3mpClsyEj6kL2bb6eQ%2Ba4GIII%2FTBaeu%2F6h6Og%2B0mfFJdjE7r8BXvdeYMi2XxwVX5XXNU%2BIqZX%2BZDM%2Fd3LQ3sIDF2zYHiC9qDB0v78hA9e2k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5439e6eb4f7-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 19:57:12 GMT
expires: Fri, 09 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
age: 67642
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150124, version 772.256 Size150 kB (150124 bytes) Hashc64278386c2bbb5e293e11b94ca2f6d1 6b99aa650bd12a36caa14e0127435d8f4cd3ba73 7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880
GET /ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150124
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "6421d693-24a6c"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 158526
expires: Wed, 30 Apr 2025 14:44:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yx6BMLSkpcTXqtXPBJk%2BuJIXaxcOjVsKsoZu9C9kMoBTBjs5L8m4Hi%2BWVxV9mzoXGVOUIQ0omJLCeGZdx%2BcXktnRHq7djxUq9syXy1jLefSlC7RDK1%2FOOnl0s1melENMjNirDQ1%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881ab545da2a56b1-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext | 142.250.74.106 | 200 OK | 44 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashabbf53ee00a0d176e2804d41a63cf394 dba32082cd49b41784b50ce1f768bf2fead8249d defc7bf9194259a114cf1d1a6e1d5b489cb9ffeed51049d75fb6448d4b23c8f3
GET /css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 14:44:34 GMT
date: Fri, 10 May 2024 14:44:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cawadversityinheritance.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js | 192.243.61.225 | 200 OK | 28 kB |
URL GET HTTP/1.1cawadversityinheritance.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectcawadversityinheritance.com Fingerprint98:A5:90:6F:84:77:92:A9:84:C5:F4:B2:1A:32:B6:38:4A:43:F7:E9 ValidityTue, 30 Apr 2024 14:56:47 GMT - Mon, 29 Jul 2024 14:56:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb7cc703a65d1c55eed11233a60869899 a27595a0f02d522118f7bf493846a35b07285597 69b2f83d259c3dbda84cdb85d1562f5d57ede016ea76dcf9d1b0d82b39c26e86
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /b1/27/0e/b1270e96b85c3dd200807d09a940c676.js HTTP/1.1
Host: cawadversityinheritance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 14:44:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e8e4a4aaccd8d7aba2bbe35aea24236
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cawadversityinheritance.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js | 192.243.61.225 | 200 OK | 16 kB |
URL GET HTTP/1.1cawadversityinheritance.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectcawadversityinheritance.com Fingerprint98:A5:90:6F:84:77:92:A9:84:C5:F4:B2:1A:32:B6:38:4A:43:F7:E9 ValidityTue, 30 Apr 2024 14:56:47 GMT - Mon, 29 Jul 2024 14:56:46 GMT
File typeJavaScript source, ASCII text, with very long lines (44019), with no line terminators Hashc5eabda4b794116feb84305eb8eac35c 5346b90312b186dbbe2a66d7ef62243a4d9ad480 ded3df8d8b20eb053e5d611c8024e5dd85b2396d85024cfb77ce6b58094f1a38
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js HTTP/1.1
Host: cawadversityinheritance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 14:44:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2803f61967457ea22a4d4edf473ba846
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashc1ae368dfcd18c3fe0a38f18783ecfe1 591b78d8c937af6063def58fa5d376d07e7d005e 58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 14:44:35 GMT
Last-Modified: Fri, 10 May 2024 13:02:07 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8YBIw41nlqlGYNVKYCJc9YLjoOe6qOQMyY2jKq8NTHNsFwTYO07hKg==
Age: 6148
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashc1ae368dfcd18c3fe0a38f18783ecfe1 591b78d8c937af6063def58fa5d376d07e7d005e 58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 14:44:35 GMT
Last-Modified: Fri, 10 May 2024 13:04:33 GMT
Server: ECAcc (ska/F790)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: t3UqgEtlLTkrkxgTJD2zqmaY2yG7lgV3m7k6lRlGQ6XpzIgGzC5eOw==
Age: 6002
|
|
| proftrafficcounter.com/stats |  3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash9c152982e022313de7d559880ab810f8 f334b4bb527cd898b100d648d338713188d1f813 4b78114e28c28b9d8cf97efbcb07da20baa392d4a620b3281353b2754ad691db
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3a7b9ed5-5eb8-498a-b0cf-bf8e940538af:3:1; expires=Mon, 08 May 2034 14:44:35 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5d1f65b7076b017b680daa33a9fac601 98acff74e5a55116e8e98c6df00b6eff36f04cae 427b86fd4acb5bbd3a6bc6e0973f009629aed1956263307ab837bd2e40aa2acb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; expires=Mon, 08 May 2034 14:44:35 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png | 104.21.69.3 | 200 OK | 7.0 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 152 x 152, 8-bit/color RGB, non-interlaced Hashf87afcf11d459620ff02da6112365db2 d09e6d4e7db706569474bfb7ec93f31ccbd6ed69 a70913fad67537f16d871e4c456c8f4484106f6d4ef3e12fa3c3b2eceefee508
GET /static/yts/image/apple-touch-icon-180x180.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=131883bd-596d-4792-a072-4e6f6718d171%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:35 GMT
content-type: image/png
content-length: 6973
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-1b3d"
expires: Sat, 08 Jun 2024 09:41:50 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 104565
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hiLceEWVuth2S3Xvz6%2F4Xu02VaS94Ao94xFtunlJglNZOHwKv5xk%2BxCaRwT1XJuGEQfCN2DQKHu9r3r3piXW7%2BxZTIKi2GyME6cICmjn5plMaigJ285mQEKoLVrkqJar6MpT1Ng%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab54a7ddfb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/image/favicon-16x16.png | 104.21.69.3 | 200 OK | 619 B |
URL GET HTTP/3en.yts-official.mx/static/yts/image/favicon-16x16.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Hashea830fdd4f9a6d19aa7455dabdac987a b0d567d6b4d40959e1bd44032f6bc2331057b319 71148160c085a70d1af7708c1d52cfcf39f8ef6e4ce13f0f20c080b2e19195db
GET /static/yts/image/favicon-16x16.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=131883bd-596d-4792-a072-4e6f6718d171%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:35 GMT
content-type: image/png
content-length: 619
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-26b"
expires: Sat, 08 Jun 2024 09:23:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 105667
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fWwXZThuMfeXGxOphTCkdJlIXBfGa6JkJfSidai3Ync4E4Xkh3%2BqHCvXzwVqqr2fi19S6I5Pfpqz3xRhcrXogE%2BUxJyUBWmA50ofwpx7xzfD2wZCiV90Hhd0kZkgAdoiiujXMJ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab54a8de1b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.127.234 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.127.234:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4 ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 14:44:35 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63861f096e628ace92c0aafb89e1da43
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| wansafeguard.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=131883bd-596d-4792-a072-4e6f6718d171%3A2%3A1 | 192.243.59.13 | 200 OK | 8.1 kB |
URL GET HTTP/1.1wansafeguard.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=131883bd-596d-4792-a072-4e6f6718d171%3A2%3A1 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hash61c2d1dcc6365995147f0dedd946c6d2 e204c76f440afb93b98ae7c8d383d8d27b8595e1 c0d115b491e97fc90f2fe436ec4c5c3b72664591e381dcf001745991fb1f08fb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=131883bd-596d-4792-a072-4e6f6718d171%3A2%3A1 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:36 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://en.yts-official.mx
Access-Control-Allow-Origin: https://en.yts-official.mx
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16587847; expires=Sat, 11 May 2024 14:44:36 GMT; secure; SameSite=None
uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; expires=Fri, 17 May 2024 14:44:36 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 14:44:36 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 14:44:36 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 11 May 2024 14:44:36 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 11 May 2024 14:44:36 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1e0c34dcea76c279047b8d6c2bcc107f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| wansafeguard.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSunqwnQVByUKIwBw8R3NnunpnuGQMG47phdc2GJKI3qe6qni23pqup6pqe3dNiQHIcvXjt%2FWY3ixokuQoG6Q14WBB29LIH9%2BI%2FUMhNkRkHR9%2Bh3nv1fUV99dX7bN%2BeEx%2BWnq2%2Br3aFlHSl3XDrlz%2FyvCv1DZHaYX3YCT4OWlfqevBGN2i4r9Wv83hbrfiu57qe69XXhOaJGq5MQYjsQddrdN1Gy2947RaG%2Bv%2B9sQ4MdcAG5%2BQFCDZZeuJchIgrpP2Hq9xs5yp7%2FZ2%2BlTRXGgN29EG6naoiRX9RJtpBkh7N2VDmdO0xVHo4kws1%2BJcYiQlxfnyMKD2ai0Q0OJjpjCR4iog9i2JQgcsKglaI1V0IdkqAmOHGJtL%2B%2FRtKF3TnH5RO0QlZevoHRDEhS79eRNr%2F9poUw%2FptJW0uVGowTEqIYQXRq5DZY%2BS7NYjiGHH%2BKQT7iaw83UDaP9g0UkGws1e9ptfpNCO23O4GbLkVdv1l6ob%2BcosHSRB6HeaF3swgISqIpILkI1BTgzUOrHBgEwc2c9BnZ%2FXY87zQZTF1O904brKQRwFzPRomHvXcoAMbT98wQp6NEMsRYr2HTO9hW3x%2B2n4X2v4As1XCMAcmJxiwEgUnKAxBQQkKQVDkBMWgPGTS%2BKa8z6SxkTfP%2Fjw3y7HKe%2Fv0UOU9nhJQPYJm5X52Tp6fefjny9exzc%2FqLvWTbpTwhPqs3Y2CsOMnYasTcR53k6bLYUQJYWqgxsGumJCX1l9EJibkmS%2F%2FQkSPYeQxYuGA2ldAixJ0q8RuerSTm4ZKOZgqkeVLyHecfXlOLs0uX998CB6fXP2tOQvEukSmS3winhD05L3xLVWQg1uqMOTRZpaLvtil08%2B9ndOcX%2Fj6Pb5TKM3WV83oq7fiKTAtH9zhJt%2BgKRNpz5BvrgnGuF5TOubk%2B3XzIY9uWrN1zerUZhs3315b72eaGyNUWoFO5%2FR3jVhMyHOX7szm9vJ3mxC6grYl%2BvaEzANCVYizPZhsod8oAi0XnChzUNhyrP1osSkFgeSLnkYlzH%2F6aFGPNZ2epqLcN%2FfQ0zXQ%2FC7SfomBLjGQJagcwdgL4zzTJ1d%2FnsuIZG0cSV07iKSWX8xsni6PYMRZPWw2XRp0214YUh5GLb%2BTBB6j1G8FfhDQJnIzSd70f%2FkbAAD%2F%2FwEAAP%2F%2FUWoaFpEEAAA%3D | 192.243.59.13 | 200 OK | 7 B |
URL GET HTTP/1.1wansafeguard.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSunqwnQVByUKIwBw8R3NnunpnuGQMG47phdc2GJKI3qe6qni23pqup6pqe3dNiQHIcvXjt%2FWY3ixokuQoG6Q14WBB29LIH9%2BI%2FUMhNkRkHR9%2Bh3nv1fUV99dX7bN%2BeEx%2BWnq2%2Br3aFlHSl3XDrlz%2FyvCv1DZHaYX3YCT4OWlfqevBGN2i4r9Wv83hbrfiu57qe69XXhOaJGq5MQYjsQddrdN1Gy2947RaG%2Bv%2B9sQ4MdcAG5%2BQFCDZZeuJchIgrpP2Hq9xs5yp7%2FZ2%2BlTRXGgN29EG6naoiRX9RJtpBkh7N2VDmdO0xVHo4kws1%2BJcYiQlxfnyMKD2ai0Q0OJjpjCR4iog9i2JQgcsKglaI1V0IdkqAmOHGJtL%2B%2FRtKF3TnH5RO0QlZevoHRDEhS79eRNr%2F9poUw%2FptJW0uVGowTEqIYQXRq5DZY%2BS7NYjiGHH%2BKQT7iaw83UDaP9g0UkGws1e9ptfpNCO23O4GbLkVdv1l6ob%2BcosHSRB6HeaF3swgISqIpILkI1BTgzUOrHBgEwc2c9BnZ%2FXY87zQZTF1O904brKQRwFzPRomHvXcoAMbT98wQp6NEMsRYr2HTO9hW3x%2B2n4X2v4As1XCMAcmJxiwEgUnKAxBQQkKQVDkBMWgPGTS%2BKa8z6SxkTfP%2Fjw3y7HKe%2Fv0UOU9nhJQPYJm5X52Tp6fefjny9exzc%2FqLvWTbpTwhPqs3Y2CsOMnYasTcR53k6bLYUQJYWqgxsGumJCX1l9EJibkmS%2F%2FQkSPYeQxYuGA2ldAixJ0q8RuerSTm4ZKOZgqkeVLyHecfXlOLs0uX998CB6fXP2tOQvEukSmS3winhD05L3xLVWQg1uqMOTRZpaLvtil08%2B9ndOcX%2Fj6Pb5TKM3WV83oq7fiKTAtH9zhJt%2BgKRNpz5BvrgnGuF5TOubk%2B3XzIY9uWrN1zerUZhs3315b72eaGyNUWoFO5%2FR3jVhMyHOX7szm9vJ3mxC6grYl%2BvaEzANCVYizPZhsod8oAi0XnChzUNhyrP1osSkFgeSLnkYlzH%2F6aFGPNZ2epqLcN%2FfQ0zXQ%2FC7SfomBLjGQJagcwdgL4zzTJ1d%2FnsuIZG0cSV07iKSWX8xsni6PYMRZPWw2XRp0214YUh5GLb%2BTBB6j1G8FfhDQJnIzSd70f%2FkbAAD%2F%2FwEAAP%2F%2FUWoaFpEEAAA%3D IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSunqwnQVByUKIwBw8R3NnunpnuGQMG47phdc2GJKI3qe6qni23pqup6pqe3dNiQHIcvXjt%2FWY3ixokuQoG6Q14WBB29LIH9%2BI%2FUMhNkRkHR9%2Bh3nv1fUV99dX7bN%2BeEx%2BWnq2%2Br3aFlHSl3XDrlz%2FyvCv1DZHaYX3YCT4OWlfqevBGN2i4r9Wv83hbrfiu57qe69XXhOaJGq5MQYjsQddrdN1Gy2947RaG%2Bv%2B9sQ4MdcAG5%2BQFCDZZeuJchIgrpP2Hq9xs5yp7%2FZ2%2BlTRXGgN29EG6naoiRX9RJtpBkh7N2VDmdO0xVHo4kws1%2BJcYiQlxfnyMKD2ai0Q0OJjpjCR4iog9i2JQgcsKglaI1V0IdkqAmOHGJtL%2B%2FRtKF3TnH5RO0QlZevoHRDEhS79eRNr%2F9poUw%2FptJW0uVGowTEqIYQXRq5DZY%2BS7NYjiGHH%2BKQT7iaw83UDaP9g0UkGws1e9ptfpNCO23O4GbLkVdv1l6ob%2BcosHSRB6HeaF3swgISqIpILkI1BTgzUOrHBgEwc2c9BnZ%2FXY87zQZTF1O904brKQRwFzPRomHvXcoAMbT98wQp6NEMsRYr2HTO9hW3x%2B2n4X2v4As1XCMAcmJxiwEgUnKAxBQQkKQVDkBMWgPGTS%2BKa8z6SxkTfP%2Fjw3y7HKe%2Fv0UOU9nhJQPYJm5X52Tp6fefjny9exzc%2FqLvWTbpTwhPqs3Y2CsOMnYasTcR53k6bLYUQJYWqgxsGumJCX1l9EJibkmS%2F%2FQkSPYeQxYuGA2ldAixJ0q8RuerSTm4ZKOZgqkeVLyHecfXlOLs0uX998CB6fXP2tOQvEukSmS3winhD05L3xLVWQg1uqMOTRZpaLvtil08%2B9ndOcX%2Fj6Pb5TKM3WV83oq7fiKTAtH9zhJt%2BgKRNpz5BvrgnGuF5TOubk%2B3XzIY9uWrN1zerUZhs3315b72eaGyNUWoFO5%2FR3jVhMyHOX7szm9vJ3mxC6grYl%2BvaEzANCVYizPZhsod8oAi0XnChzUNhyrP1osSkFgeSLnkYlzH%2F6aFGPNZ2epqLcN%2FfQ0zXQ%2FC7SfomBLjGQJagcwdgL4zzTJ1d%2FnsuIZG0cSV07iKSWX8xsni6PYMRZPWw2XRp0214YUh5GLb%2BTBB6j1G8FfhDQJnIzSd70f%2FkbAAD%2F%2FwEAAP%2F%2FUWoaFpEEAAA%3D HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:36 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5c02165d06dd6a100973d39f02e00cb1
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html | 45.133.44.3 | 200 OK | 661 B |
URL GET HTTP/2cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html IP45.133.44.3:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com Fingerprint08:55:F0:C8:EA:24:54:0D:3C:B9:2C:95:3E:DC:BF:FB:A8:76:BA:BC ValidityThu, 09 May 2024 03:01:15 GMT - Wed, 07 Aug 2024 03:01:14 GMT
File typeHTML document, ASCII text Hash027fddd0d322239ada2f2b8b93934fda 6f99560bca5c6d8d747c802f26058344eb179cec a5b2073d8f57ef0469b777f73d6c3f4a85cc17b4c2ed2a53aa3f1acb2273dbd5
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 10 May 2024 15:44:36 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png |  188.114.96.1 | 200 OK | 6.0 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 849972
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iBzp8L%2F1vzHkW8wU4oV8f%2FKCBNv34LehEcXo4%2Be%2BeFlmn8KmPEpYD66JPrUJ8q7QYtZNtgCyaDsVT2%2FIiwvJ%2Bnqpw%2FNhtq9r0oQnepuCUtFTUJThYBCEnWDg5PzMbSJjHUfDWbZ52QLr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5519d8ab524-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashabee5b4158760e1ff8d221a319f824fa d69df14fdd7d1270e1260b99a3abfc65dff4784a e7513b518649ebe3c6f3be178ce006e0ab044e73541752cd874104caf06f189f
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 14:44:36 GMT
date: Fri, 10 May 2024 14:44:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css | 188.114.96.1 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash630f303dfe147dec2c4a226287393b69 3e9f8270b84e09595181bd55de6785a89f53ba10 967d085a33a12064d83cb38f582c3e418e021a2d523dd9597bb75dc00589fec7
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 850825
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fyliq8V%2B1luR5VhkjJLSIAe%2FH4AlBt06kjBggVXIKpQOF2sJ6Day1hlBn%2FCN6%2Blb6dQIhzv54YAqyPlDvIj4qUM%2Fk8e8RT9AgXp3XUbn%2ByePvpJiDM8MUJloNpW41x8z6JRFOjSZ%2FDk3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5507abe568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 42 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:35 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 047e8f27c2dc0360231d0f280632934f
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 14:44:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SCygTy9P1ppma1FAHCPv4TPYWsobj%2Bfhgf1euoekVRLCujR0bUaMFqq1ImJwPxfOwG8EHe3NBDWJUPeMXDEXOiSPXEhrhoAdyjfHnykmdeIF%2FGaUj2VXN15s%2FCxscWmM7aN5X9bItwnOQvgG5Up9bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5481e3eb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 537360
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:55:00 GMT
expires: Fri, 09 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
age: 132577
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=34 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=34 IP172.240.253.132:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=34 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 14:44:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| wansafeguard.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunqwnQVByUKIwBw8R3Nnunt8GDMZ1w%2BqaDUlEb1K%2Ferbcmq6mqnt6dk%2BLAclx9OK195vdLGqQ5CoYpDfgYUHY0cse3Iv%2FgUJuisw4OPoO9d6r7yvqq6%2FeZ%2FvZOQmR0bPV982u0pquNGt%2B9fJHQXCluqHibFgddloftxpXqnbwRrdV81%2BrXpd826yEfuD7gR9U15SVkRmuTEGo5EE3qHX9WiOsBc0Ghvb%2Fvcs8OOpBDM7JC1BisvTEuwjFS8T9h6vSbacmef2dfqZpaiwG4uiDeDs2eYz%2Booyshyg%2BmrNh3OnaY5j4cCYXZvAvkakJ8X58DBYfzUWCDQ5mOpmGjMHEs8gHJaQuoWgJbu5CiVMCcIEbm4j7928Ym9Odf1A6RSdk6ekfUPmELP16EXH%2F22taDau3jc5SZWKHYVRADUuoXokkO0a6W4HKj8HTT6HET2Tl6Qbi%2FsGm0wZKnL0a1INOp87EcrPbEsuNdjdcpn47XG7IVtRqBx0RtIOZQUqVUFEJLUegroLMeciUhyzykCUe%2BuKsyoMgaPuCU7%2FT5bwu2pK1hB%2FQdhTQwG91kPHpG0ZIkxG4HoHbPSR2D9vq89Pmu7DZD3BbBZzw4FKCgSiQS4LcEeSUIFcEeUqQD4pDoV3oivtCu4wF8xzOc70Ym7S3Tw9N2pMxAbUjWFHsJ%2Bfk%2BZmHf758HdvyrOrTMOqySEY0FM0ua7U7YdRudJiUvBvVfQmnCihXAXUedtWEvLT%2BIhI1Ic98%2BRcYPYbTx%2BDKA81eAc0L0K0Cu%2FHRTupqJpYQpkCSLiHd8fb1Obk0u3x98yEkP7n6W30W4LZAYgt8op4Q9PS98S2Tk4NbJnfk0WaSqr7apdPPvZ3SVF74%2Bj25kxsr1lfd6Ku3%2BBSYlg%2FuSJdu0FiouOfIN9eUENKuGcsl%2BX7dfSjZzcxtXctsnCUbN99eW%2B8nVjqnTFyCTuf0dwuuJuS5S3dmc3v5u00oW8JmBfrZCZkHlCnBkz24ZKHfGQKrFxyWeMizYmxDttjUikDLRU9ZAfefni3qsaXT01QV%2B%2B4eerYCmt5F3C8wsAUGugDVI7jswjhN7MnVn%2BcymK6MmbaVA6at%2FmJm83R5BKfOqnVftJmMZJvJRrMRSS5Ys8l8HnFWF50OR%2Bom0ZvhL38DAAD%2F%2FwEAAP%2F%2F0b7P%2FpEEAAA%3D | 192.243.59.13 | 200 OK | 7 B |
URL GET HTTP/1.1wansafeguard.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunqwnQVByUKIwBw8R3Nnunt8GDMZ1w%2BqaDUlEb1K%2Ferbcmq6mqnt6dk%2BLAclx9OK195vdLGqQ5CoYpDfgYUHY0cse3Iv%2FgUJuisw4OPoO9d6r7yvqq6%2FeZ%2FvZOQmR0bPV982u0pquNGt%2B9fJHQXCluqHibFgddloftxpXqnbwRrdV81%2BrXpd826yEfuD7gR9U15SVkRmuTEGo5EE3qHX9WiOsBc0Ghvb%2Fvcs8OOpBDM7JC1BisvTEuwjFS8T9h6vSbacmef2dfqZpaiwG4uiDeDs2eYz%2Booyshyg%2BmrNh3OnaY5j4cCYXZvAvkakJ8X58DBYfzUWCDQ5mOpmGjMHEs8gHJaQuoWgJbu5CiVMCcIEbm4j7928Ym9Odf1A6RSdk6ekfUPmELP16EXH%2F22taDau3jc5SZWKHYVRADUuoXokkO0a6W4HKj8HTT6HET2Tl6Qbi%2FsGm0wZKnL0a1INOp87EcrPbEsuNdjdcpn47XG7IVtRqBx0RtIOZQUqVUFEJLUegroLMeciUhyzykCUe%2BuKsyoMgaPuCU7%2FT5bwu2pK1hB%2FQdhTQwG91kPHpG0ZIkxG4HoHbPSR2D9vq89Pmu7DZD3BbBZzw4FKCgSiQS4LcEeSUIFcEeUqQD4pDoV3oivtCu4wF8xzOc70Ym7S3Tw9N2pMxAbUjWFHsJ%2Bfk%2BZmHf758HdvyrOrTMOqySEY0FM0ua7U7YdRudJiUvBvVfQmnCihXAXUedtWEvLT%2BIhI1Ic98%2BRcYPYbTx%2BDKA81eAc0L0K0Cu%2FHRTupqJpYQpkCSLiHd8fb1Obk0u3x98yEkP7n6W30W4LZAYgt8op4Q9PS98S2Tk4NbJnfk0WaSqr7apdPPvZ3SVF74%2Bj25kxsr1lfd6Ku3%2BBSYlg%2FuSJdu0FiouOfIN9eUENKuGcsl%2BX7dfSjZzcxtXctsnCUbN99eW%2B8nVjqnTFyCTuf0dwuuJuS5S3dmc3v5u00oW8JmBfrZCZkHlCnBkz24ZKHfGQKrFxyWeMizYmxDttjUikDLRU9ZAfefni3qsaXT01QV%2B%2B4eerYCmt5F3C8wsAUGugDVI7jswjhN7MnVn%2BcymK6MmbaVA6at%2FmJm83R5BKfOqnVftJmMZJvJRrMRSS5Ys8l8HnFWF50OR%2Bom0ZvhL38DAAD%2F%2FwEAAP%2F%2F0b7P%2FpEEAAA%3D IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunqwnQVByUKIwBw8R3Nnunt8GDMZ1w%2BqaDUlEb1K%2Ferbcmq6mqnt6dk%2BLAclx9OK195vdLGqQ5CoYpDfgYUHY0cse3Iv%2FgUJuisw4OPoO9d6r7yvqq6%2FeZ%2FvZOQmR0bPV982u0pquNGt%2B9fJHQXCluqHibFgddloftxpXqnbwRrdV81%2BrXpd826yEfuD7gR9U15SVkRmuTEGo5EE3qHX9WiOsBc0Ghvb%2Fvcs8OOpBDM7JC1BisvTEuwjFS8T9h6vSbacmef2dfqZpaiwG4uiDeDs2eYz%2Booyshyg%2BmrNh3OnaY5j4cCYXZvAvkakJ8X58DBYfzUWCDQ5mOpmGjMHEs8gHJaQuoWgJbu5CiVMCcIEbm4j7928Ym9Odf1A6RSdk6ekfUPmELP16EXH%2F22taDau3jc5SZWKHYVRADUuoXokkO0a6W4HKj8HTT6HET2Tl6Qbi%2FsGm0wZKnL0a1INOp87EcrPbEsuNdjdcpn47XG7IVtRqBx0RtIOZQUqVUFEJLUegroLMeciUhyzykCUe%2BuKsyoMgaPuCU7%2FT5bwu2pK1hB%2FQdhTQwG91kPHpG0ZIkxG4HoHbPSR2D9vq89Pmu7DZD3BbBZzw4FKCgSiQS4LcEeSUIFcEeUqQD4pDoV3oivtCu4wF8xzOc70Ym7S3Tw9N2pMxAbUjWFHsJ%2Bfk%2BZmHf758HdvyrOrTMOqySEY0FM0ua7U7YdRudJiUvBvVfQmnCihXAXUedtWEvLT%2BIhI1Ic98%2BRcYPYbTx%2BDKA81eAc0L0K0Cu%2FHRTupqJpYQpkCSLiHd8fb1Obk0u3x98yEkP7n6W30W4LZAYgt8op4Q9PS98S2Tk4NbJnfk0WaSqr7apdPPvZ3SVF74%2Bj25kxsr1lfd6Ku3%2BBSYlg%2FuSJdu0FiouOfIN9eUENKuGcsl%2BX7dfSjZzcxtXctsnCUbN99eW%2B8nVjqnTFyCTuf0dwuuJuS5S3dmc3v5u00oW8JmBfrZCZkHlCnBkz24ZKHfGQKrFxyWeMizYmxDttjUikDLRU9ZAfefni3qsaXT01QV%2B%2B4eerYCmt5F3C8wsAUGugDVI7jswjhN7MnVn%2BcymK6MmbaVA6at%2FmJm83R5BKfOqnVftJmMZJvJRrMRSS5Ys8l8HnFWF50OR%2Bom0ZvhL38DAAD%2F%2FwEAAP%2F%2F0b7P%2FpEEAAA%3D HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:37 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d0e6c5ed75d5b2d714277a0715914ef6
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| en.yts-official.mx/movies/high-life-2018/ | 104.21.69.3 | 200 OK | 9.5 kB |
URL GET HTTP/3en.yts-official.mx/movies/high-life-2018/ IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1059), with CRLF line terminators Hasha9b4f870b5a52298a2d6726063a88318 1f0e07f7f239d41a7e903f07de4ce3156324b433 4428b9405a01f2867812dc7fbc21274ac40143d8ddcad6b3b8c81ffd7480a86d
GET /movies/high-life-2018/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VB761CVpmQ4TsPjll8E06Fihzv1X8EvXFhxL%2BMvNv8HKA4LofjKXlkFCV1%2Fg2iVP2JVQl2B0kGvLkJqxdUrqqKukCxbWsYa%2By%2FGoVPB8Xr8gK5GCzYqL3E1C5sWBkOYRMQwv7GM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab53ded720afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js | 188.114.96.1 | 200 OK | 36 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 858420
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=InY7KIfazL3HY0rHDxuoHNduJN9eJRT6%2F7ECVP3F9MDkLd8%2BTbHOg%2FsAt54TWGce3cpP%2FggDRkwmBPhxvJivXTQzCNOME3UVotu1PS169%2BSOuzDPc%2BmJc4RqgOvrOfRYUC%2FdbCEO7t6M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5519d94b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/magnet.svg | 104.21.69.3 | 200 OK | 982 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/magnet.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashb1f2c0a1384b292d61d6ccdb9b4de056 24cb951e1e6da31c99ba0c45638e9d210de60a62 a1339a5f93ce740459f0ef5967f57827ecf0a708e3504146a401d4968650c854
GET /static/yts/images/website/magnet.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-3d6"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DqNHz1dGMRt6EPljaDIhvSoPB9cxNHUYigY%2F9wUBqRqHbVQ%2FoEuun%2F9McWfu0aCvDUa%2BJs5aO52graJvAuBDnApSNwxPJEYSIM6HTd12WvkPfeMP8h0H20rlLa1xx%2FF9Tv2VJo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543bdf4b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/cover/high-life-2018.jpg | 104.21.69.3 | 200 OK | 44 kB |
URL GET HTTP/3en.yts-official.mx/movies/cover/high-life-2018.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 896x539, components 3 Hash8ea50ebb7ef10307545abb5299115e77 508dc1a399ca338f7d30ec0471a324001e2d4831 5330fdaab391b5bd6ea51802d2882b97e67e4b25d61ee3352fd6ffbd3d3decc0
GET /movies/cover/high-life-2018.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/jpeg
content-length: 43616
last-modified: Tue, 02 Nov 2021 03:56:41 GMT
etag: "6180b6f9-aa60"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=khL8fewoSkuPweh68rpNrNQR%2FDBx%2F5IRfv9Ayh0PakJ%2FavoI%2Fg%2BaDEvXjVWk4ouQYU9wtEtlpGCguzFHNLSJ8Q3qxcVtHNFIgKwi1mil825MTrFlZQHR8fmF4XBH15RVYmsHnXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543ade9b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/720p-quality.svg | 104.21.69.3 | 200 OK | 2.3 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/720p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash0243315d20763efcf6b17f0d6b2ffb67 ab981c0c8a34d72f8f714be0eae96f404e434dd4 d7cccf166cfb73bded63e922e00ff99805a3ddbf0024a00904e39bdb3994f33c
GET /static/yts/images/website/720p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-8e1"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0AHSr3unsfMq7L3kdd4HSo%2BnhJUNBps3p2M6hNCz9SUVYKa88t44TQz46mc%2FGAaIhQwmpJaWn4isqbqeRkHOuu9hh9qn1eN2GFTu6p01KBqNmUdbEp9SzcJcj4v%2FB7TktlPHRxA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543bdf7b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js | 188.114.96.1 | 200 OK | 382 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (411), with no line terminators Hash9ffae600059bf4e6adb35ebb274ae385 6130e466c04551baa2a5d650e6bd5a87daba73a7 a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 828603
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NFitF3%2Bo3dKPSHlV3BdBJa6hqnjhQoVAtMokWyjpd2RPnZP9%2FkRDbuboOnwXPtAM%2Bv%2B3PZMmdxP6gX5rLmX5DWLzsDSA4AZ9LlGymK8xz23oKLysiCPIUtFM0K%2F0BfETS%2Fzh6QBIrEst"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab551fe22b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/js/jquery.min.js?v=1 | 104.21.69.3 | 200 OK | 84 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/js/jquery.min.js?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators Hashb0dc11d0a434aafe88908c7f33d71095 1327f754ff87d26bced46568543207e9df190aaa de4b3c3d1dc2506b6693f0f98884e1dc074cda9d66cab39b7b48a115fdfc4c0f
GET /static/yts/js/jquery.min.js?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-1497d"
expires: Fri, 10 May 2024 20:13:41 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 23453
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uI66TuKgV3MhhbhXgw0SATRx1o0Ifn0WC82z8HheJse58V2qIVdEB73N9MLyhXVrSmWex%2BE3FCyveGoSWypYW9i6Ku4Zq2mHlUsPyBhj0zptk8Tb97RUz65mrK%2FvSwSa0%2F3rGzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab541bb6eb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| vidsrc.to/embed/movie/tt4827558/ | 104.21.64.103 | 200 OK | 4.9 kB |
URL GET HTTP/2vidsrc.to/embed/movie/tt4827558/ IP104.21.64.103:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typeHTML document, ASCII text, with very long lines (5034), with no line terminators Hash3aeef88e75b9ed74afd93b49eeb2233c 4cc8618c49f2969d64999da080c597f67986c538 527c06833f43b7dab86ecc9782df26157e13a13a321790317b73781ad1138b89
GET /embed/movie/tt4827558/ HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/html; charset=UTF-8
e-cache: HIT
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C9%2FH1V42ItAm4t54FNnHYdVCzpjeSLHxJZA1JKsO2CvwtGe0hIodMi6n%2Br9fknaOBwEozluMYMBEXGb%2FAphNfMb%2FpeEmWKuQdt6Cdi81l4klV%2FFmYZ2bUCovvQk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab541eb7e7130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png | 45.133.44.9 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash962ac416cce3fad636d4904386c8d3d4 811166fceb971353dc6a9ea3a153367f20b47592 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Sun, 12 May 2024 14:44:36 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 1.6 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttps://vidsrc.to/embed/movie/tt4827558/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1606), with no line terminators Hashaf52a7e30ecc42e4484ea19a9adf765d c4db1da944d399dbab91e367ac2a8724c31cd57f f795d20ee3721e15c2fa2568b74a6d39cd16329e91d7026cd7b4aa79f45fea44
GET /css2?family=Poppins:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 14:44:34 GMT
date: Fri, 10 May 2024 14:44:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/fonts/fonts.css | 104.21.69.3 | 200 OK | 1.3 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/fonts.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (1384), with no line terminators Hash0ea9baa4ec422b74a6cf6ef7cd998e7b 28edd12415ade93ae8ce77cc26054ec487d73508 a284eec07f7cc18bb397bffc2b34b52f8bacde6198dc1eaeef2924ac61190bb4
GET /static/yts/fonts/fonts.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-524"
expires: Fri, 10 May 2024 17:44:09 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 32425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIIpFLfbDP8gwhmkqq%2Fvor7yCMy%2F1C7z6qai208Y9VVCPLESVTgmc%2FZOeAX0Vr6EnAOOVxeRLP5PEJsR46LaTCHH5HY83OHnnPcoQt23724pilwOE5dihYB1E48PASK8xa0DrUU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab5419b38b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/1080p-quality.svg | 104.21.69.3 | 200 OK | 2.9 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/1080p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash3bcafca097344993580b747f088e7715 c2d58a3d4ae585c470489fd1f41d20f29ff266ca 59119beab43729f25cd7387785275dee4b80fffb59d1cdfa9bf778066b1ab3b6
GET /static/yts/images/website/1080p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-b77"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hd3M%2Fc%2BE4nF8PoX1Z2RpwtUgmdyxtGp6aVMGkf3Er6N1XSW5r%2F7tX9Xvn9tBbDk2wADJqIyBWDKA5Iv3ynXF2LeG82rgtR2u9XEm3C5nFL21NvmvfOfHIH7nsNLEKtxNUmmMG%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543bdf2b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 | 104.21.69.3 | 200 OK | 3.6 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, CFF, length 3560, version 0.0 Hash4e54891305c71736de2da03f14b57434 fbf29db32b5514cad7a908167ce63c76a91a2f12 332ec1d337a38ad421deff49f3585da56563253756da3870b26b46bd025f96e4
GET /static/yts/fonts/icomoon.woff?fmg7s2 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/fonts/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: font/woff
content-length: 3560
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-de8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2601
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5iuf6UB%2FhrF7Cv0xju6DFv2wwbSr8aoex6Ry3E00hzA0DPXH3X8bEkoaWnKjrvmK6LDJ47IchQGmTk6Lnbeu7igEuh4kNNIfVBbetbC0IxMjROI0TmzQM34F4MSRFLxgASBbi7o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543ce13b52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=83 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=83 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=83 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| wansafeguard.com/pixel/sbs?c=1 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1wansafeguard.com/pixel/sbs?c=1 IP172.240.253.132:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 14:44:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/images/website/play-trailer.svg | 104.21.69.3 | 200 OK | 4.7 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/play-trailer.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash0242c3a16be471023ee4e484a76cb850 811c46ab5800fc814b427e9469b5b55e7f41a35c 6f014889db48c67c7e651a9377b0415007ef9766fbf2ba90a1180b9e539c176a
GET /static/yts/images/website/play-trailer.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-122a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qUyNo7kEJB0U%2BaOykCgLGqmybfCu69r7twMIojyGkbJUKQrCV87q1HMFHwjLN%2FF3vrG3BZ67TYdmMA%2B259NtEnlQdXK9XAdyyFaaNx3WQgnoSU2C%2Fw41Qs%2BR8b3qtvuSQ2LB8eE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543bdf9b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=32 | 192.243.59.13 | 200 OK | 0 B |
URL GET HTTP/1.1wansafeguard.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=32 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerLet's Encrypt Subjectwansafeguard.com Fingerprint83:00:BB:A8:D5:FE:57:11:E3:EF:6F:5E:2E:29:2F:7A:BC:DC:D5:3D ValidityMon, 06 May 2024 12:58:51 GMT - Sun, 04 Aug 2024 12:58:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=32 HTTP/1.1
Host: wansafeguard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=131883bd-596d-4792-a072-4e6f6718d171:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 14:44:36 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/css/loading.css | 104.21.69.3 | 200 OK | 2.8 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/css/loading.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (3095), with no line terminators Hasha4e08ea672b525407c93c52dcedabbad 2d01194a908b02dff41147969f92027d83b082d2 ebde13ee7b0fe214ec069389b397750aaa5e58688b527e24ac69506cfdbb7704
GET /static/yts/css/loading.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-b13"
expires: Fri, 10 May 2024 20:13:41 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 23453
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zLtwxOoZTrXMuL%2FnGJfThx0hOBGlzWJQS4VntNimAUV%2FjCpaA1oX5zEKJ%2FXoO%2B9aDW9S%2FtHBinfmnUxA4avN9fTuY%2B1CW%2B9qXxlq70SD8TcVNSy0VyMypMQrd4nMPBpZBW3pO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881ab541ab4cb52d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/icon-search.svg | 104.21.69.3 | 200 OK | 894 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/icon-search.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash9caad64a555d10c835c1e121b53743b0 5db8cc1d36d939a65725c4869ebec8cc0b5ce9e3 fa70e1614aed8ae3b0463b4d9884de60fd528951a068e6a13a60a329ef93face
GET /static/yts/images/website/icon-search.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-37e"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XOfXtxifprG8QboupJ4YwfqANtiIBfX3UuVfJPsjQxu0qv84JBO7qI1xJ4LlXftbLgicza6eoOhwsdJ%2Fq7Wi%2BVgZ4Syje4mKV6AOOnpGy84KKgv2b1OIduf13SBr%2FLJznbYRHjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab543ade3b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css | 188.114.96.1 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css IP188.114.96.1:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashfc638645a938f69e69360c75335ffd1a 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 14:44:36 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 828603
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WzDNI1lrYGdG2m%2FJLzJdvUqRWHCfeXl%2BzsCUvzV2XXe7CymMGLqvjVDgYI65%2FOougCGAArtOQOs%2BQ0vFcg0ESpgZULBsikcn1zbPwFMW0yQsMebFmALIDZx3j%2F6yOe60id%2BbdCMu9hcG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab5508ac5568e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/image/logo-imdb.svg | 104.21.69.3 | 200 OK | 1.8 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-imdb.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/high-life-2018/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash5cd012116b0d0e653f8e53e813f57ce1 ce512c7a43e9361790d42723f6742856ea546225 48cd81eac0d91d7302265418beeba17e24df75334487e7fa83111ec861b9398a
GET /static/yts/image/logo-imdb.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/high-life-2018/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 14:44:34 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: W/"65d33152-710"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2518
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e5spZViX4D0WQIQM%2B1QQ20wz8iYtDOxtv13bXNhAEhmfEBw7ljT7V%2FdIBStBsWfvfDp2w4YW4Bs3rTuIEhctkzYmYTumXaSmZZuBC%2BRp8afS3f6%2F4FJzzcf%2BYmBXIx7Vyk5L2K4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881ab541ab54b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|