| en.yts-official.mx/static/yts/image/default_avatar.jpg |  104.21.69.3 | 200 OK | 2.4 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/default_avatar.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100", baseline, precision 8, 60x60, components 3 Hashe55b123ffd0b26cddf175715a76ff22d 0cbeba4643578c972bb79bf8e3b0b83a794df5bc 9412c68d8f2bad5e7abe0ca709a3258cf8c2b7a14bcc1654abf2316debf902cc
GET /static/yts/image/default_avatar.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 2449
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-991"
expires: Thu, 30 May 2024 16:20:44 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 891557
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2PG%2FVToIfK60nlidN8MaCw%2FuXPirssk0Av59aRZ0KIggfiuSlM%2FttEGgo7bH7jgVqxSy%2FEjlEZho3dFuCeGdHao0Sy7XSiICXJatCxrrepJ%2FkENpZtwPtjIVL04rUZ2HcgJ%2F4N8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e83da30b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/avengers-endgame-2019.jpg?v=1 | 104.21.69.3 | 200 OK | 52 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/avengers-endgame-2019.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash27acd1f7a5a3b93aa970526559a893cb 9633540a8477de10713af208f85c893b6b812e4d c1ba3cefe5afc62179afa58c63b45f11a057b82fb3e6d6c062d97141b7f6e2dd
GET /movies/poster/avengers-endgame-2019.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 51828
last-modified: Fri, 29 Oct 2021 10:00:22 GMT
etag: "617bc636-ca74"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KguyPMBFrtO%2BCEBetXsa90arocJXm%2Ff6stHfOmMwPrVv8A86MzUGp07Wo0qMLiEM2b095D2jT8qLja0LpKoROBK0SuAfp5tIJP9WfS5zzCanDoj1ULenICSI4wp2xAFmJdKtrCo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e82d9b0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 | 104.21.69.3 | 200 OK | 3.6 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, CFF, length 3560, version 0.0 Hash4e54891305c71736de2da03f14b57434 fbf29db32b5514cad7a908167ce63c76a91a2f12 332ec1d337a38ad421deff49f3585da56563253756da3870b26b46bd025f96e4
GET /static/yts/fonts/icomoon.woff?fmg7s2 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/fonts/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: font/woff
content-length: 3560
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-de8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1940
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PKY8gsziNR8zHNkicpg9SE2jfccSSrhTD0qU81fCNq9noqu0jnJ4n3EaNnbukDvbcZkUxt89UAYN8AbiHULcLTo4jm%2BxxZOrj0SKu%2BdQhrO1hY6AHmBIMCcr5m5LD7p1N0jJPAU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2ea0f0d0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/adult-behavior-1999.jpg?v=1 | 104.21.69.3 | 200 OK | 20 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/adult-behavior-1999.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash7981fd4da44f79aa1ad7c83aa4616931 b7bc2b8687d2c68167cff18d080868e1cce61eb1 91b20774e83a466f485c92769b5960529e628fac47fe0af76f3f6f06edc8dbb8
GET /movies/poster/adult-behavior-1999.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 20537
last-modified: Sat, 30 Oct 2021 12:51:57 GMT
etag: "617d3fed-5039"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KQF2R8AWsc9cW3lSgpiv85KSJ31iBgg2E9YNzsMy%2BsLg2YWu%2BrKYdD7L3y2kC9M9lsIyH%2Bitw%2BmuKgbNtsgdcMBXIcjrPFH%2BTf0BhkmKQdQDmjTfISX9qtrUwFfPfa0XnCyMERU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e81d960b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot3.jpg | 104.21.69.3 | 200 OK | 22 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot3.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 350x184, components 3 Hash0b1b4b6920cdefeb105296c087544c04 ee62008e52b1a1ae5ef6c950b141c3412f787f80 0bde5a3d9b24d7114044d546d7d4c9dd5f329ed40ffc07de8d8ad27c5c57f8e6
GET /movies/screenshot/appropriate-behavior-2014-medium-screenshot3.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 22118
last-modified: Sat, 02 Dec 2023 22:33:15 GMT
etag: "656bb0ab-5666"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BXrf6aHgOwEKMQd5tbQsZMG%2BOBrWujYnemL4CCT0yPt8XK2OSsBLmmTElWu4ygSE13vsrfRFDMIbyyTY6r%2Bwy10yGsDe8%2F9kx1GAGM3AamHZvMOacO4nKxdJZM9VbYYdBZ0UWoc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e82da10b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/portrait-of-animal-behavior-2015.jpg?v=1 | 104.21.69.3 | 200 OK | 25 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/portrait-of-animal-behavior-2015.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashe50db7431799019e61198b34bed0f956 d0a6725688f43cd2fbb0bbe71ba6d36f89d2a949 095d73b1a5d0b56db1d110391d033d91ae27da8284a22b832bf116d11fe317a7
GET /movies/poster/portrait-of-animal-behavior-2015.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 24795
last-modified: Fri, 29 Oct 2021 19:40:12 GMT
etag: "617c4e1c-60db"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zl9vunpJhBjQLah3yrYs9B4cKAo2Kv8vSrlQQZfbG%2Bcu2PkmDIZFDZ0il9gvAYOTJdht35M6gMJF3Llnh%2FuRDI9r5AIWexZKfxz%2FOYAQ6b9oWrXNRVAy6DqflyQJaloNdGBNT8g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e81d990b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot2.jpg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot2.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 350x184, components 3 Hash83ca2696269f0ca2faf0758d0e3f62c0 f02850ceb857b77023dd8d205ba37936742a1be2 9819f5e6935b5394cc7df5eb792ec1d9a9f29ce21698469116cf7f2238c047f5
GET /movies/screenshot/appropriate-behavior-2014-medium-screenshot2.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 23020
last-modified: Sat, 02 Dec 2023 22:33:15 GMT
etag: "656bb0ab-59ec"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NZqhXVwSRZC%2B18fcUqLEtfacfZjGzqEA4It3bOlEnvEPqv0NIgJkT7Fm9CdgVq1eWQCR%2B3EBA%2FXVRQxni3GvTXx1Pecha%2FrXs9sld7X3xBWkQQPTXgevw4MYjz5HU%2FFOItHhsdI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e82da00b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot1.jpg | 104.21.69.3 | 200 OK | 26 kB |
URL GET HTTP/3en.yts-official.mx/movies/screenshot/appropriate-behavior-2014-medium-screenshot1.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 350x184, components 3 Hashd4ddc2923387239743c281b7dfcc39ea 8c5a0ee320bba24e1f54d6fdfa4b5b342f745448 9c50b624680eda674adf3e9c91e507ea121d9a7852fda99a4d49a948a2ecd5b6
GET /movies/screenshot/appropriate-behavior-2014-medium-screenshot1.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 25588
last-modified: Sat, 02 Dec 2023 22:33:14 GMT
etag: "656bb0aa-63f4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7kTkBQXTT9wA0fu8%2B8pddXDgBCGSazC6Ho7r2bEO8ZBXM33K7LcjA3dTQYhmXoudyXDO8EUlCEVCiDvPk6hgL65oApBqRD411HOO%2BPb5K1ffNj7IiFAQ%2FGKyV1Vt7xzohbNdsV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e82d9e0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/appropriate-behavior-2014.jpg | 104.21.69.3 | 200 OK | 21 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/appropriate-behavior-2014.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hashf5d25b6714b27d797554b7a26b65d088 5fc9c585f58080ce7e84092ad55e17637634aa37 f2f7e93aa659991b9056bc31ce62f6474be0e72aa88da56431a74143fadc1a2f
GET /movies/poster/appropriate-behavior-2014.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 21446
last-modified: Sat, 02 Dec 2023 22:33:14 GMT
etag: "656bb0aa-53c6"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CXx%2Bixkah0OfSWBlOWRfIFmw1B0GK3g6oR7tPFYF9l31G4Ns8hTjsW4rc6PZeR1f2nyvHL9YoTpwd7rOmz5WU%2BikdEvXCAB3fzUNuGPGmlNUH%2BsjCgA1IxSf9kUhEt8GMzkO6Ns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e81d930b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/image/logo-imdb.svg | 104.21.69.3 | 200 OK | 1.5 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-imdb.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash6b2f5fc8691f33a804fe6db49474a12e 1173e43d75348cf3a675aadfa9ea488838fcb19e 16d7e5b33ece4e844479e3b873bbb8842f73bd5083287559f7cc5895f4c973ec
GET /static/yts/image/logo-imdb.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: W/"65d33152-710"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5753
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4HCl36RSde8%2BBEDRFPH0z%2F6gKSBTANpmufQTlqAtiTHXFrhy0xn6dXJxHGKvj5Lyk9p55DhS3iEDdEq0PetVab7Ac6XXnNqNBx6493976mxa1mrpBkWDnTCCbnuL0vhCDoz%2Fuig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e81d950b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/poster/misguided-behavior-2017.jpg?v=1 | 104.21.69.3 | 200 OK | 31 kB |
URL GET HTTP/3en.yts-official.mx/movies/poster/misguided-behavior-2017.jpg?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3 Hash77fc0ab49d36cb53c24bbd4a8e382eb6 1f4431084d46cdcbef72ce4bb344ef708518d583 769bafe11a755e0906bd5191b0e4067bb442450bd64320e4bb80aae06370c437
GET /movies/poster/misguided-behavior-2017.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/jpeg
content-length: 31282
last-modified: Thu, 28 Oct 2021 23:22:03 GMT
etag: "617b309b-7a32"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RVnWpcDP2p1t9NBTWw9ZmrvkIhbYDBhM7xyQxahTM57KLPuEmfGrVM61%2Bp2cMBkW%2FZbXfZBHepsW3oUjJc%2FJg4biIm%2FEGTyPe%2FmQEbL%2Bg8Sr3WeYQSLJWWHu9teMDgYjhRuTiME%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e82d9c0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 |  142.250.74.163 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 IP142.250.74.163:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 20040, version 1.0 Hasha61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6
GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:52:43 GMT
expires: Fri, 09 May 2025 01:52:43 GMT
cache-control: public, max-age=31536000
age: 166038
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/movies/appropriate-behavior-2014/ | 104.21.69.3 | 200 OK | 25 kB |
URL GET HTTP/3en.yts-official.mx/movies/appropriate-behavior-2014/ IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeHTML document, ASCII text, with very long lines (1161), with CRLF line terminators Hashd915598034511f554676900ed30f7620 11b64fabbd1df2b6ba4d2a41496d8c2e03e5c1fe 55bd7624f8758f958fe90a93d12a19741a830ef74303c64d95345edf8d8f719f
GET /movies/appropriate-behavior-2014/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1uprCg3qFjL6BbBK0QvM%2Fxc3zYJD6NRuOjxqtzyKajMMe2VsMdcKaltYQUC17uAWmbyXpxlsgTMI2kTW7yM2%2FIhKN1o5NwHG1ZCIjcsy4i5mpnySQWULM8%2BVo4A%2Fr0qS7NjlY9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2df1e57569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vidsrc.to/embed/movie/tt3077108/ | 172.67.181.24 | 200 OK | 22 kB |
URL GET HTTP/2vidsrc.to/embed/movie/tt3077108/ IP172.67.181.24:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typeHTML document, ASCII text, with very long lines (4357) Hash0746e85449bd476f1d7e734b50bb167c f4a60e37295429ff2aa21f3d1a5a58cf2867a616 e8d7b2cab4f00897c947d5d054244f3e0ff533de47d8312ae0733738e62614c7
GET /embed/movie/tt3077108/ HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/html; charset=UTF-8
e-cache: HIT
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJ%2BiCqQiuKrcvxs66NCmJqyK105B9akzo4yeW6G6lGsCEneJN47QOziZ2A4zQevIdoAuYoxrgL7V9WC%2Fa2L36txgpfTAkc2ZjZ2y1BiZy61ngve66JXQ4IT8o0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e85ca6b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 | 142.250.74.163 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 IP142.250.74.163:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22052, version 1.0 Hashf0e48ce2beda9e8cbd7d915bf1b1ae71 3dc1cfff1759b0959cc7fb17517651ec850d584d b2504b3c20c2feb37e78773b788dd09a9cc43c9f36086bc1e2f83a6366ebaa34
GET /s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 16:38:14 GMT
expires: Fri, 09 May 2025 16:38:14 GMT
cache-control: public, max-age=31536000
age: 112907
last-modified: Thu, 14 Sep 2023 00:00:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.25.14:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 193243
expires: Thu, 01 May 2025 00:00:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gIFV3D923q7emYLIrz5x5bpGqu1rxQ%2BEknjnMKYDRfraSsab6uHetMHBzaV0h6zLRWTxKSyxN6NRWBEc5WDtJOtqrcQKhByxXMXOipCY4rsWSaexNZqhE2LVI26OXhW2XcL2yc3v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881de2eb283b56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/image/logo-YTS.svg | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/logo-YTS.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashfdd85bfbf80d872ea41b942cf21d1db9 6a2d54565cbffa3af342a63931e412ad8837f92d 2234cb288342eab0edfb65ebda4189cf47b40a4b639a25af62c57c03f7ace459
GET /static/yts/image/logo-YTS.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Feb 2024 02:51:28 GMT
etag: W/"65d413b0-5b34"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5753
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=acPnC5nDcfMI08Imbnv41PrnDhxDxAbsydlAylpkhrP6AK6ieltCkj3xeGO%2FC4Lh0FCd99P4eyQ1T4uSWzjbfD1sT4YSA%2B0XpVwo5Gu5%2BwOHVyoB4Hahyr3%2B%2BhHeBaIeQLKH%2FB8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e81d920b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff | 104.21.69.3 | 200 OK | 23 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeWeb Open Font Format, TrueType, length 23320, version 1.0 Hash68ed1dac06bf0409c18ae7bc62889170 22037a3455914e5662fa51a596677bdb329e2c5c fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /static/yts/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: font/woff
content-length: 23320
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-5b18"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Nl922CcDEP75c127cIgzjNQcy6R0p8wJlSitq9SWnKuQPYenk%2FupmcvBnYnjQdNAUBGsVSJ8N3ORreEcQ6KPmpvVwW23nZYCYaddXvpq0bZ4XH7mdNr6cMPvdsVQP%2B6xhuOXoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2ea4f280b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/movies/cover/appropriate-behavior-2014.jpg | 104.21.69.3 | 200 OK | 44 kB |
URL GET HTTP/3en.yts-official.mx/movies/cover/appropriate-behavior-2014.jpg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 896x472, components 3 Hash9ac7db196d847b0e827038b44f75733a 7ea6ec9bd94a72a5d6654dd8ad8beca3f364778b 6aac9d74024d5862fa4eb00df76a25fcb2ac20b1d62020d5d2bde680486787a3
GET /movies/cover/appropriate-behavior-2014.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: image/jpeg
content-length: 43873
last-modified: Sat, 02 Dec 2023 22:33:14 GMT
etag: "656bb0aa-ab61"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Icxh89VfVy%2BOobkuWSGBcfTRj9mg9K0FsP4NYcTcqFdK7x%2BFH3XXrcdv4bi2cJK1crdJFNnuIrzjSk33h595A6Vtuj9AXeIiGpWKUe8i58cGCAC4HyZjpNSW%2FOpTqvapFCUA%2FXE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9ce8f0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 870 B |
URL GET HTTP/3fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashab28dfb1fccdda8ca33b06488feafb41 802345f551dc3e333cff8b7dda3221c2bfc1d896 c51c4c6e88ad03c11faf05cac9adbccbdad85e6dab35b7f4d8ef105dfd51ade2
GET /css2?family=Poppins:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 May 2024 00:00:01 GMT
date: Sat, 11 May 2024 00:00:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 | 142.250.74.163 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP142.250.74.163:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:33:12 GMT
expires: Fri, 09 May 2025 01:33:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 167210
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150124, version 772.256 Size150 kB (150124 bytes) Hashc64278386c2bbb5e293e11b94ca2f6d1 6b99aa650bd12a36caa14e0127435d8f4cd3ba73 7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880
GET /ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150124
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "6421d693-24a6c"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 191854
expires: Thu, 01 May 2025 00:00:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cxH7Urh9jvrVd6UP8nA6KBQg8TA2ETf4KMIIUQaSeePjMfrp%2B5EVjAiqDb9xcS4nfGUXcgFIN4cwLxk8YVly5sprrc%2B6rPm99EkKxryt5y2i0HYzIPGi%2FpJcyUSmo8RxhXYoloTA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881de2ed6c8056a4-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cawadversityinheritance.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js | 172.240.253.132 | 200 OK | 16 kB |
URL GET HTTP/1.1cawadversityinheritance.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js IP172.240.253.132:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcawadversityinheritance.com Fingerprint98:A5:90:6F:84:77:92:A9:84:C5:F4:B2:1A:32:B6:38:4A:43:F7:E9 ValidityTue, 30 Apr 2024 14:56:47 GMT - Mon, 29 Jul 2024 14:56:46 GMT
File typeJavaScript source, ASCII text, with very long lines (44034), with no line terminators Hashf0bad2b348b5d49b51fc9295edc65241 65b81e0b28f16f0db46e89d893d54f9271aae661 4803081842837aca57226528a792309e11655cf360c4321fa546313f9c7198d9
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js HTTP/1.1
Host: cawadversityinheritance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 11 May 2024 00:00:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 71c738c48b409200193ec89497532158
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cawadversityinheritance.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js | 172.240.253.132 | 200 OK | 28 kB |
URL GET HTTP/1.1cawadversityinheritance.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js IP172.240.253.132:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcawadversityinheritance.com Fingerprint98:A5:90:6F:84:77:92:A9:84:C5:F4:B2:1A:32:B6:38:4A:43:F7:E9 ValidityTue, 30 Apr 2024 14:56:47 GMT - Mon, 29 Jul 2024 14:56:46 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashfacb9c5b65c233e083a342f3ef92daa1 56860c2f2c620d1a755ef63a50f3d4a92f3e6d27 8af9f98e658b54b7b702ff70c40b0500322da24300e6842adcb5b328f189674f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /b1/27/0e/b1270e96b85c3dd200807d09a940c676.js HTTP/1.1
Host: cawadversityinheritance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 11 May 2024 00:00:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 580ef371a7db375ebf5e69fe41eededc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashf7a3aabaedd5c95463e85c2d7682d410 715b2bd7dd959bb3423d71b22c43302b7a18a3a5 55ab8ca84eb2c090ff2a4eb9ebc48ce053c3f38261d66bded94f03719a384335
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 11 May 2024 00:00:02 GMT
Last-Modified: Fri, 10 May 2024 22:16:04 GMT
Server: ECAcc (ska/F6D2)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2CBvOnFOICpa0qY9JE0oalH_iQ6hohO8o7sFMP0hiyb6f26JXWrXcA==
Age: 6238
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashf7a3aabaedd5c95463e85c2d7682d410 715b2bd7dd959bb3423d71b22c43302b7a18a3a5 55ab8ca84eb2c090ff2a4eb9ebc48ce053c3f38261d66bded94f03719a384335
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sat, 11 May 2024 00:00:02 GMT
Last-Modified: Fri, 10 May 2024 22:16:04 GMT
Server: ECAcc (ska/F6D2)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UKMM9BJwfNUFlzBvieDjX1JRAaAAsQLXLBMKIq4uaYkCuVSPwNbbWw==
Age: 6238
|
|
| proftrafficcounter.com/stats |  18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash31437e41ef248f620fa0b7d53a2ce760 ac303d9e20a4523e8f92177253b6abee0bf08a8b 160ae5981398a0bfb2b64240b0831e21b7d5a3b57b0d67630cc319427c192531
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; expires=Tue, 09 May 2034 00:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5228422a2f80152d3e52828c0586333a ca0b32764ba29809b7465bce22b73609df653ac9 7bf27d7ada596987988e3ef4a23e5627ce0e9c69b874c969403498420dadfb47
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=082d08bb-0e22-4077-a939-b14332c9f8f4:1:1; expires=Tue, 09 May 2034 00:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png | 104.21.69.3 | 200 OK | 7.0 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 152 x 152, 8-bit/color RGB, non-interlaced Hashf87afcf11d459620ff02da6112365db2 d09e6d4e7db706569474bfb7ec93f31ccbd6ed69 a70913fad67537f16d871e4c456c8f4484106f6d4ef3e12fa3c3b2eceefee508
GET /static/yts/image/apple-touch-icon-180x180.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=082d08bb-0e22-4077-a939-b14332c9f8f4%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: image/png
content-length: 6973
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-1b3d"
expires: Sat, 08 Jun 2024 09:41:50 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 137892
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2BIcfWHf3hMrbU4W6wh9bM7h1JbMQxpVImf4lLqnjNZlDRqXb52EvVC6MarjD%2F1g74A9bu6YPnQTItbXhWdAeTIuPW1WUBTVt6D8wr%2F2QNyJx5kupOfZOHttACkZFfqxPSvKMzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f1cabd0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/image/favicon-16x16.png | 104.21.69.3 | 200 OK | 619 B |
URL GET HTTP/3en.yts-official.mx/static/yts/image/favicon-16x16.png IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typePNG image data, 16 x 16, 8-bit/color RGB, non-interlaced Hashea830fdd4f9a6d19aa7455dabdac987a b0d567d6b4d40959e1bd44032f6bc2331057b319 71148160c085a70d1af7708c1d52cfcf39f8ef6e4ce13f0f20c080b2e19195db
GET /static/yts/image/favicon-16x16.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=082d08bb-0e22-4077-a939-b14332c9f8f4%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: image/png
content-length: 619
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-26b"
expires: Sat, 08 Jun 2024 09:23:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 138994
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FQyBngGY5Dw95YTlkIVOjRqljgM95YxN1xMfJV8SUbzlORx7kTun6SwlWQHN6jadDIA%2BIBvEsvz%2Bdnu4PSb9e4ZemXqwtsqHFC%2F55qTv7gRyvRtevBfDgrzX0zPEbsXrf7ncqeM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f1cacd0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.76:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4 ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 11 May 2024 00:00:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f08fd2c8e62e94755ffb602fd5b8b6f0
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| criticizewiggle.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=af85cf40-40c2-44c0-98e0-ae355ae0bce4%3A1%3A1 | 192.243.59.20 | 200 OK | 8.3 kB |
URL GET HTTP/1.1criticizewiggle.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=af85cf40-40c2-44c0-98e0-ae355ae0bce4%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hash01b365cb99357bbd2eb62ef7aabffeeb 980c82e3840c645e27d31aeeafbf5fb4e0f5bb03 6c7a3a97871da1006c28773955a31ab16cd77be3d152b58c961c7fc012624d2b
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=af85cf40-40c2-44c0-98e0-ae355ae0bce4%3A1%3A1 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:03 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://en.yts-official.mx
Access-Control-Allow-Origin: https://en.yts-official.mx
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16587847; expires=Sun, 12 May 2024 00:00:03 GMT; secure; SameSite=None
uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; expires=Sat, 18 May 2024 00:00:03 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 12 May 2024 00:00:03 GMT; secure; SameSite=None
uncs=1; expires=Sun, 12 May 2024 00:00:03 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 12 May 2024 00:00:03 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 12 May 2024 00:00:03 GMT; secure; SameSite=None
slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]; expires=Sat, 11 May 2024 00:00:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b7065924db47f9eacf82fce637b79397
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| criticizewiggle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzsaTB1H2oKgwBw8Km0l3T0%2FPjAv%2BWNcs0bhZNoriRaqrqidlqruaqu7pSU7BRdnj6MWDl843yQZ1ET14012ZBPYQEDOecjAX%2FwFhYdGDIjMbHHxQ9X58r6jvfVWf7BSnxEdBTy6%2FpbekUnSxWXdrz7%2FneRdrKzIt%2BrV%2BO%2FwgDC7WTO%2FFTlh3X6hdEWxDL%2Fqu57qe69WWpBGx7i9OQMjsdserd9x64Ne9ZoC%2B%2BX9uCweWOuC9U%2FIEJB%2FPHzrnIdkIafLtZWE3cp1deD0pFM21QY%2Fvv5NupLpMkczC2DiI0%2F2zbmh7vHQHOt2b0oXu%2FdcYyTFx7t1BlO6fkUTU253yjBREiog%2FirI3glAjSDoC0zcg%2BTEBGMfVVaTJravalHTzIUon6JjMP7gPWY7J%2FG%2FnkSbfXFKyX1vTqsilTi36cQXZH0F2R8iKA%2BRbc5DlAVj%2BEST%2FmSw%2BWEGa7K5apSH5yXM0bjdZHLgLgcv8hSBg7kKnLdwFKhrNJhVuxEQwFUjKEWQ8ghIDUOugmCzpoIgdFJmDhJ%2FUmOd5LZcz6rY7jDV4S0Qhdz3aij3quWEbBZvMMECeDcDUAMxsIzPb2JCfHjffgCl%2Bgl2vYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1xZX1b3eLKFpF35v0z36iGOu%2Fu0D2dd0VKQM0Ahlc72Sl5fKrh389cwYY4qbnUjztRLGLq82YnClttP24F7UgI1okbroCVFaSdm068JcfkqeUnkckxeeTzfxDRA1h1ACYd0OJZ0LICXa%2Bwle5v5rauUwGuK2T5PPJNZ0edkqenl6%2FeuwvBjsiZgZkKmanwoTwk6Kqbw%2Bu6JLvXdWnJd6tZLhO5RSePu5bTXDhfvSk2S2348mU7%2BPJVNgEm4e23hc1XaMpl2rXk60uSc2GWtGGC%2FLhs3xXRtcKuXypMWmQr115bWk4yI6yVOh2ByjEhw%2Ftgckwe%2B%2BWv6b%2B98PH7kGYEU1RIihlXqQ%2FAsm3YbFazmsCoWR5lDsqiGho%2FmhWVJFBiltOoghVHrziHX%2Bz9vvYnInF094%2BH2NDQyWkqqx17E10zB5rfQJpU6JkKPVWBqgFscW6YZ%2Bbo5V8bU0Ok5oaRMnO7kTLqs6nMk%2B0HWHlSazUaLg07Ta%2FVoqIVBX47Dj1OqR%2BEfhjSBnI7jl%2F6%2Fty%2FAAAA%2F%2F8BAAD%2F%2F4d0YAWRBAAA | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1criticizewiggle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzsaTB1H2oKgwBw8Km0l3T0%2FPjAv%2BWNcs0bhZNoriRaqrqidlqruaqu7pSU7BRdnj6MWDl843yQZ1ET14012ZBPYQEDOecjAX%2FwFhYdGDIjMbHHxQ9X58r6jvfVWf7BSnxEdBTy6%2FpbekUnSxWXdrz7%2FneRdrKzIt%2BrV%2BO%2FwgDC7WTO%2FFTlh3X6hdEWxDL%2Fqu57qe69WWpBGx7i9OQMjsdserd9x64Ne9ZoC%2B%2BX9uCweWOuC9U%2FIEJB%2FPHzrnIdkIafLtZWE3cp1deD0pFM21QY%2Fvv5NupLpMkczC2DiI0%2F2zbmh7vHQHOt2b0oXu%2FdcYyTFx7t1BlO6fkUTU253yjBREiog%2FirI3glAjSDoC0zcg%2BTEBGMfVVaTJravalHTzIUon6JjMP7gPWY7J%2FG%2FnkSbfXFKyX1vTqsilTi36cQXZH0F2R8iKA%2BRbc5DlAVj%2BEST%2FmSw%2BWEGa7K5apSH5yXM0bjdZHLgLgcv8hSBg7kKnLdwFKhrNJhVuxEQwFUjKEWQ8ghIDUOugmCzpoIgdFJmDhJ%2FUmOd5LZcz6rY7jDV4S0Qhdz3aij3quWEbBZvMMECeDcDUAMxsIzPb2JCfHjffgCl%2Bgl2vYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1xZX1b3eLKFpF35v0z36iGOu%2Fu0D2dd0VKQM0Ahlc72Sl5fKrh389cwYY4qbnUjztRLGLq82YnClttP24F7UgI1okbroCVFaSdm068JcfkqeUnkckxeeTzfxDRA1h1ACYd0OJZ0LICXa%2Bwle5v5rauUwGuK2T5PPJNZ0edkqenl6%2FeuwvBjsiZgZkKmanwoTwk6Kqbw%2Bu6JLvXdWnJd6tZLhO5RSePu5bTXDhfvSk2S2348mU7%2BPJVNgEm4e23hc1XaMpl2rXk60uSc2GWtGGC%2FLhs3xXRtcKuXypMWmQr115bWk4yI6yVOh2ByjEhw%2Ftgckwe%2B%2BWv6b%2B98PH7kGYEU1RIihlXqQ%2FAsm3YbFazmsCoWR5lDsqiGho%2FmhWVJFBiltOoghVHrziHX%2Bz9vvYnInF094%2BH2NDQyWkqqx17E10zB5rfQJpU6JkKPVWBqgFscW6YZ%2Bbo5V8bU0Ok5oaRMnO7kTLqs6nMk%2B0HWHlSazUaLg07Ta%2FVoqIVBX47Dj1OqR%2BEfhjSBnI7jl%2F6%2Fty%2FAAAA%2F%2F8BAAD%2F%2F4d0YAWRBAAA IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzsaTB1H2oKgwBw8Km0l3T0%2FPjAv%2BWNcs0bhZNoriRaqrqidlqruaqu7pSU7BRdnj6MWDl843yQZ1ET14012ZBPYQEDOecjAX%2FwFhYdGDIjMbHHxQ9X58r6jvfVWf7BSnxEdBTy6%2FpbekUnSxWXdrz7%2FneRdrKzIt%2BrV%2BO%2FwgDC7WTO%2FFTlh3X6hdEWxDL%2Fqu57qe69WWpBGx7i9OQMjsdserd9x64Ne9ZoC%2B%2BX9uCweWOuC9U%2FIEJB%2FPHzrnIdkIafLtZWE3cp1deD0pFM21QY%2Fvv5NupLpMkczC2DiI0%2F2zbmh7vHQHOt2b0oXu%2FdcYyTFx7t1BlO6fkUTU253yjBREiog%2FirI3glAjSDoC0zcg%2BTEBGMfVVaTJravalHTzIUon6JjMP7gPWY7J%2FG%2FnkSbfXFKyX1vTqsilTi36cQXZH0F2R8iKA%2BRbc5DlAVj%2BEST%2FmSw%2BWEGa7K5apSH5yXM0bjdZHLgLgcv8hSBg7kKnLdwFKhrNJhVuxEQwFUjKEWQ8ghIDUOugmCzpoIgdFJmDhJ%2FUmOd5LZcz6rY7jDV4S0Qhdz3aij3quWEbBZvMMECeDcDUAMxsIzPb2JCfHjffgCl%2Bgl2vYLkDmxP0eIVSEJSWoKQEpSQoc4KyV%2B1xZX1b3eLKFpF35v0z36iGOu%2Fu0D2dd0VKQM0Ahlc72Sl5fKrh389cwYY4qbnUjztRLGLq82YnClttP24F7UgI1okbroCVFaSdm068JcfkqeUnkckxeeTzfxDRA1h1ACYd0OJZ0LICXa%2Bwle5v5rauUwGuK2T5PPJNZ0edkqenl6%2FeuwvBjsiZgZkKmanwoTwk6Kqbw%2Bu6JLvXdWnJd6tZLhO5RSePu5bTXDhfvSk2S2348mU7%2BPJVNgEm4e23hc1XaMpl2rXk60uSc2GWtGGC%2FLhs3xXRtcKuXypMWmQr115bWk4yI6yVOh2ByjEhw%2Ftgckwe%2B%2BWv6b%2B98PH7kGYEU1RIihlXqQ%2FAsm3YbFazmsCoWR5lDsqiGho%2FmhWVJFBiltOoghVHrziHX%2Bz9vvYnInF094%2BH2NDQyWkqqx17E10zB5rfQJpU6JkKPVWBqgFscW6YZ%2Bbo5V8bU0Ok5oaRMnO7kTLqs6nMk%2B0HWHlSazUaLg07Ta%2FVoqIVBX47Dj1OqR%2BEfhjSBnI7jl%2F6%2Fty%2FAAAA%2F%2F8BAAD%2F%2F4d0YAWRBAAA HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:03 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 56110f1c723c86d494c07e2708a24152
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F48%2F48%2Feb%2F4848ebd6f7295875a5d388ec2488aba3%2F1648542421.html&l=1538&fd=152 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F48%2F48%2Feb%2F4848ebd6f7295875a5d388ec2488aba3%2F1648542421.html&l=1538&fd=152 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F48%2F48%2Feb%2F4848ebd6f7295875a5d388ec2488aba3%2F1648542421.html&l=1538&fd=152 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:03 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png |  188.114.97.1 | 200 OK | 591 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced Hash9fd5bcb6103d86e317bd1eb019bcbe71 6b5a52ea669dcb74946f2bed4bdd7ec985026113 0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 887605
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jCco1Wxst%2FojZHkzP3HvTLnJ37MZmQjffhSRd0zX%2FgQ%2BL8hAFIz9qBMMpCEvNDi53HOnsRipX4C71DY3H1pBbUsw3dO8I6Fbt1FeaL3TsQkAJXymwWIb3GGGRK2hB7%2BJwl3j1Le218Bq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f98e1eb517-OSL
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 172.67.180.87 | 200 OK | 28 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP172.67.180.87:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:03 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4bfaeb9f4ecc9c32529d657ccdafe66b
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 11 May 2024 00:00:02 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hKACGWCY%2FdsuhcvlQqDxI34y%2Bd%2FiEKnLNg7tmTKGDR1DGSW%2BxTnvvLcr1KWYuDWtcgCaobRT%2FdSOyWcy81TV%2FHIFo3gRDGfA2%2FzNLQaTLYZb1tvOoCWRAzLF0qJLhJqtqbqXuOZQ3Svd2nFRDB7gbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2ef3bd2b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/movies/appropriate-behavior-2014/ | 104.21.69.3 | 200 OK | 6.6 kB |
URL GET HTTP/3en.yts-official.mx/movies/appropriate-behavior-2014/ IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeHTML document, ASCII text, with very long lines (1161), with CRLF line terminators Hashd915598034511f554676900ed30f7620 11b64fabbd1df2b6ba4d2a41496d8c2e03e5c1fe 55bd7624f8758f958fe90a93d12a19741a830ef74303c64d95345edf8d8f719f
GET /movies/appropriate-behavior-2014/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=97MqrVFIbFftTEQn%2FShrMtIZwewz%2BQElhaEGPbLN0Bmnop1HMcnCb%2BND8HVvUV%2FwOkn9z5ownTzsujdKY98coMrcbirqVgLh6lnibF8echg2e6TGlhlrXWTyAgcBs1NMPq3K7uA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2eee9900b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js | 188.114.97.1 | 200 OK | 31 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (32025) Hash4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /sb/ssp/vpn/classic-push/big1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 877685
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Jd%2BKhS1nB4g6Bkri1gZX8iC0PGaX1TkY4o%2FTXyQ38ZGLRE6slW3oxkRdIZDaRh1b%2BNJLsn%2FcgZ%2FFOBNVyJ3TG2%2FCbyK0%2BsccL8%2B8kpLdO6uykA6iAiMl5kQkkgqt%2BMQsuyvFKks7qnZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f9ae37b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/si/b2058622f9e1e701b762fd3f226165a9c3c61cda592f64b28178cbe9bbe6a052.png | 45.133.44.10 | 200 OK | 44 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/b2058622f9e1e701b762fd3f226165a9c3c61cda592f64b28178cbe9bbe6a052.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hashda25868e119ed5aaf739edf69c31b490 bab9ed1525079734d5f823045f7e380e1f659df4 b138f749c1ba1aa4f48c9f1b55d01a657bc5dbdf957a4c1185f2d4bb89229822
GET /si/b2058622f9e1e701b762fd3f226165a9c3c61cda592f64b28178cbe9bbe6a052.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: image/png
content-length: 43754
server: nginx/1.21.6
last-modified: Thu, 09 May 2024 12:38:27 GMT
etag: "663cc3c3-aaea"
expires: Mon, 13 May 2024 00:00:04 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css | 188.114.97.1 | 200 OK | 25 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typegzip compressed data, from Unix Hash5f424be18a5bfe411dd5350e891918a9 6d036ea5b6570ff403407b329ba79729604e7ce8 7f6765cae9cec3c78a0db1d6c8a7d44eba1ad94e7d0529d2a1b4ab146e29dded
GET /sb/ssp/vpn/classic-push/big1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 121946
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=df0Ve5zOH2PVxYJaawCgn8KE5s6DuYL1TzRPwnD09dQy%2FUgSmH5rwNiwEEzofdiVuwTQmA%2FWzmDqNJyMCuMfMKfl%2FoRU44V1BtcOkO9A8IjZ3Ovhy4PHXbk%2BkS8GVkykTuD9qqiNDmht"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f8f96556bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fjs%2Fscript.js&l=958&fd=14 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fjs%2Fscript.js&l=958&fd=14 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fjs%2Fscript.js&l=958&fd=14 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:46:32 GMT
expires: Wed, 07 May 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 306812
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 10 May 2024 06:08:19 GMT
expires: Sat, 10 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
age: 64305
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 717 B |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash5e48f11f5e65274412215f94f73f8c49 4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7 40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 May 2024 00:00:04 GMT
date: Sat, 11 May 2024 00:00:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| criticizewiggle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWskRRiuzsaTB1H2oKgwBw8Km0n3TM%2BXC36sa5Zo3CwbRfEi9dWTMtVdTVX39CSn4KLscfTiwUvnmWSDuogevOmuTAJ7CIgZTzmYi39AWFj0oMjMBgdfqHo%2Fnreo532qPtnJT0kNOT25%2FJbZUlrTxUbVrzz%2FXhBcrKyoJO9X%2Bu3mB83wYsX2Xuw0q%2F4LlSuSb5jFmh%2F4fuAHlSVlZWT6ixMQKr3dCaodvxrWqkEjRN%2F%2BP3e5B0c9iN4peQJKjOcPvfNQfIQk%2FvaydBuZSS%2B8HueaZsaiJ%2FbfSTYSUySIZ2FkPUTJ%2Flk3jDteugOT7E3pwvT%2Ba2RqTLx7d8CS%2FTOSYL3dKU%2BmIRMw8SiK3ghSj6DoCNzcgBLHBOACV1eRxLeuGlvQzYconaBjMv%2FgPlQxJvO%2FnUcSf3NJq35lzeg8UyZx6EclVH8E1R0hzQ%2BQbc1BFQfg2UdQ4mey%2BGAFSby76rSBEifP0ajd4FHoL4Q%2Bry2EIfcXOm3pL1BZbzSo9BmX4VQgpUZQ0QhaDkCdh3yylIc88pCnHmJxUuFBELR8wanf7nBeFy3JmsIPaCsKaOA328j5ZIYBsnQArgfgdhup3caG%2BvS48QZs%2FhPcegknPLiMoCdKFJKgcAQFJSgUQZERFL1yT2hXc%2BUtoV3OgjNfO%2FP1cmiy7g7dM1lXJgTUDmBFuZOeksenGv79zBVsyJOKT2tRh0UyojXR6LBmq12LWmGbSck7Ud2XcKqEcnPTibfUmDy1%2FCRSNSaPfP4PGD2A0wfgygPNnwUtStD1ElvJ%2FmbmqiaREKZEms0j2%2FR29Cl5enr56r27kPyInBm4LZHaEh%2BqQ4Kuvjm8bgqye90Ujny3mmYqVlt08rhrGc2k99WbcrMwVixfdoMvX%2BUTYBLeflu6bIUmQiVdR76%2BpISQdslYLsmPy%2B5dya7lbv1SbpM8Xbn22tJynFrpnDLJCFSNCRneB1dj8tgvf03%2F7YWP34eyI9i8RJzPuCpzAJ5uw6WzmjMEVs9ylnoo8nJoa2xW1IpAy1lOWQknj17xDr%2FY%2B33tTzB5dPePh9jQ0slpqsoddxNdOwea3UASl%2BjZEj1dguoBXH5umKX26OVf61MD03NDpu3cLtNWfzaVebL9AKdOKnVftJiMZIvJsBFGkgvWaDCfR5zVRbvNkblx9NL35%2F4FAAD%2F%2FwEAAP%2F%2FB6C17ZEEAAA%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1criticizewiggle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWskRRiuzsaTB1H2oKgwBw8Km0n3TM%2BXC36sa5Zo3CwbRfEi9dWTMtVdTVX39CSn4KLscfTiwUvnmWSDuogevOmuTAJ7CIgZTzmYi39AWFj0oMjMBgdfqHo%2Fnreo532qPtnJT0kNOT25%2FJbZUlrTxUbVrzz%2FXhBcrKyoJO9X%2Bu3mB83wYsX2Xuw0q%2F4LlSuSb5jFmh%2F4fuAHlSVlZWT6ixMQKr3dCaodvxrWqkEjRN%2F%2BP3e5B0c9iN4peQJKjOcPvfNQfIQk%2FvaydBuZSS%2B8HueaZsaiJ%2FbfSTYSUySIZ2FkPUTJ%2Flk3jDteugOT7E3pwvT%2Ba2RqTLx7d8CS%2FTOSYL3dKU%2BmIRMw8SiK3ghSj6DoCNzcgBLHBOACV1eRxLeuGlvQzYconaBjMv%2FgPlQxJvO%2FnUcSf3NJq35lzeg8UyZx6EclVH8E1R0hzQ%2BQbc1BFQfg2UdQ4mey%2BGAFSby76rSBEifP0ajd4FHoL4Q%2Bry2EIfcXOm3pL1BZbzSo9BmX4VQgpUZQ0QhaDkCdh3yylIc88pCnHmJxUuFBELR8wanf7nBeFy3JmsIPaCsKaOA328j5ZIYBsnQArgfgdhup3caG%2BvS48QZs%2FhPcegknPLiMoCdKFJKgcAQFJSgUQZERFL1yT2hXc%2BUtoV3OgjNfO%2FP1cmiy7g7dM1lXJgTUDmBFuZOeksenGv79zBVsyJOKT2tRh0UyojXR6LBmq12LWmGbSck7Ud2XcKqEcnPTibfUmDy1%2FCRSNSaPfP4PGD2A0wfgygPNnwUtStD1ElvJ%2FmbmqiaREKZEms0j2%2FR29Cl5enr56r27kPyInBm4LZHaEh%2BqQ4Kuvjm8bgqye90Ujny3mmYqVlt08rhrGc2k99WbcrMwVixfdoMvX%2BUTYBLeflu6bIUmQiVdR76%2BpISQdslYLsmPy%2B5dya7lbv1SbpM8Xbn22tJynFrpnDLJCFSNCRneB1dj8tgvf03%2F7YWP34eyI9i8RJzPuCpzAJ5uw6WzmjMEVs9ylnoo8nJoa2xW1IpAy1lOWQknj17xDr%2FY%2B33tTzB5dPePh9jQ0slpqsoddxNdOwea3UASl%2BjZEj1dguoBXH5umKX26OVf61MD03NDpu3cLtNWfzaVebL9AKdOKnVftJiMZIvJsBFGkgvWaDCfR5zVRbvNkblx9NL35%2F4FAAD%2F%2FwEAAP%2F%2FB6C17ZEEAAA%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWskRRiuzsaTB1H2oKgwBw8Km0n3TM%2BXC36sa5Zo3CwbRfEi9dWTMtVdTVX39CSn4KLscfTiwUvnmWSDuogevOmuTAJ7CIgZTzmYi39AWFj0oMjMBgdfqHo%2Fnreo532qPtnJT0kNOT25%2FJbZUlrTxUbVrzz%2FXhBcrKyoJO9X%2Bu3mB83wYsX2Xuw0q%2F4LlSuSb5jFmh%2F4fuAHlSVlZWT6ixMQKr3dCaodvxrWqkEjRN%2F%2BP3e5B0c9iN4peQJKjOcPvfNQfIQk%2FvaydBuZSS%2B8HueaZsaiJ%2FbfSTYSUySIZ2FkPUTJ%2Flk3jDteugOT7E3pwvT%2Ba2RqTLx7d8CS%2FTOSYL3dKU%2BmIRMw8SiK3ghSj6DoCNzcgBLHBOACV1eRxLeuGlvQzYconaBjMv%2FgPlQxJvO%2FnUcSf3NJq35lzeg8UyZx6EclVH8E1R0hzQ%2BQbc1BFQfg2UdQ4mey%2BGAFSby76rSBEifP0ajd4FHoL4Q%2Bry2EIfcXOm3pL1BZbzSo9BmX4VQgpUZQ0QhaDkCdh3yylIc88pCnHmJxUuFBELR8wanf7nBeFy3JmsIPaCsKaOA328j5ZIYBsnQArgfgdhup3caG%2BvS48QZs%2FhPcegknPLiMoCdKFJKgcAQFJSgUQZERFL1yT2hXc%2BUtoV3OgjNfO%2FP1cmiy7g7dM1lXJgTUDmBFuZOeksenGv79zBVsyJOKT2tRh0UyojXR6LBmq12LWmGbSck7Ud2XcKqEcnPTibfUmDy1%2FCRSNSaPfP4PGD2A0wfgygPNnwUtStD1ElvJ%2FmbmqiaREKZEms0j2%2FR29Cl5enr56r27kPyInBm4LZHaEh%2BqQ4Kuvjm8bgqye90Ujny3mmYqVlt08rhrGc2k99WbcrMwVixfdoMvX%2BUTYBLeflu6bIUmQiVdR76%2BpISQdslYLsmPy%2B5dya7lbv1SbpM8Xbn22tJynFrpnDLJCFSNCRneB1dj8tgvf03%2F7YWP34eyI9i8RJzPuCpzAJ5uw6WzmjMEVs9ylnoo8nJoa2xW1IpAy1lOWQknj17xDr%2FY%2B33tTzB5dPePh9jQ0slpqsoddxNdOwea3UASl%2BjZEj1dguoBXH5umKX26OVf61MD03NDpu3cLtNWfzaVebL9AKdOKnVftJiMZIvJsBFGkgvWaDCfR5zVRbvNkblx9NL35%2F4FAAD%2F%2FwEAAP%2F%2FB6C17ZEEAAA%3D HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0ef4af6af22cfae207ecc05db21e9ead
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| criticizewiggle.com/pixel/sbs?c=1 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1criticizewiggle.com/pixel/sbs?c=1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css | 188.114.97.1 | 200 OK | 3.6 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typegzip compressed data, from Unix Hashe961bf3cdca18aea07007cf116e1440e 5392338d0e47df96f7201603e1d2ec54ef7c42d6 eca6a2e556e38009c0be49ab64cca3f61ad3be39efa903a200b6486cb9072f1f
GET /sb/ssp/vpn/classic-push/big1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-102f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: HIT
age: 121946
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tkYUWzOTuOwf6KXc0Do2Zz3yB8WyXtmtI3OM7UiVH6%2Bl4AePgf3qa0pFSkeSHSSvKBZ3YDfEQQAUXxnpI8GHtsD7sjRCRVuVBjvyHRKwJGLo7iWRiUtttGxj%2Ff7Dvgd4MPFRFvprItwM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2f9096c56bf-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html | 45.133.44.3 | 200 OK | 7.5 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html IP45.133.44.3:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com Fingerprint08:55:F0:C8:EA:24:54:0D:3C:B9:2C:95:3E:DC:BF:FB:A8:76:BA:BC ValidityThu, 09 May 2024 03:01:15 GMT - Wed, 07 Aug 2024 03:01:14 GMT
File typegzip compressed data, from Unix Hash80b63e0bca1cedc41e668093cde5a495 14a9cf16b20c2b1b5dd95262389446582a2713c2 aaa9d424e4981e19200d3c7e1236fd928ebad2a3a6a8133fcd7af4747b5102f6
GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:03 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 11 May 2024 01:00:03 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/fonts/fonts.css | 104.21.69.3 | 200 OK | 1.3 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/fonts/fonts.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (1384), with no line terminators Hash0ea9baa4ec422b74a6cf6ef7cd998e7b 28edd12415ade93ae8ce77cc26054ec487d73508 a284eec07f7cc18bb397bffc2b34b52f8bacde6198dc1eaeef2924ac61190bb4
GET /static/yts/fonts/fonts.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-524"
expires: Sat, 11 May 2024 05:49:04 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 22257
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wwf5YvZmQRMGRbnJcttGpQTnzaCwVLQ7YpV8s9kVOGRE47NcdiNVVEYDk4B%2BC1si6Wf6rC%2FsE2eVPeY1H%2FJXreZxKCvEzeh9i1JPlkC62QeYxjY6%2F4wcG5s2EjVgq2b6J5BzoT8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e80d8d0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js | 188.114.97.1 | 200 OK | 958 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js IP188.114.97.1:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (1009), with no line terminators Hash04835fd7dd7f8cfbad901bee8cff2170 38e9ed1e93f8f0beba9447a99afe3995e63b6f3e be63bbd38c66ca9a9ee1c8abfed042fd5fc090c40b91ad561e922744ece47c41
GET /sb/ssp/vpn/classic-push/big1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 121946
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p6untjqrAY3%2FGiYT%2Flkp0DUBRSICisENFlIBK33TDcMk6V18rL%2B73zej8U5RhqHZT5O46WoooZ7SBPEHW%2FtcvqGb095y5NBrdLA%2Bi2h76UEwAsu%2Bx1QadHCeNXyJF0vzv6K9vVS50yKb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2fa0e81b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext | 142.250.74.106 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext IP142.250.74.106:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (9902), with no line terminators Hashda660c7ad34dd81e9f9a9032cc68718a 6bc87a2b72cc76f4253e09a1b7d095f29dc12e13 67d1981c897a8c33dd993afbcd2384fbb40a755ae34e3f43e7bbfbd94c0555f6
GET /css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 11 May 2024 00:00:01 GMT
date: Sat, 11 May 2024 00:00:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/images/website/magnet.svg | 104.21.69.3 | 200 OK | 982 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/magnet.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hashb1f2c0a1384b292d61d6ccdb9b4de056 24cb951e1e6da31c99ba0c45638e9d210de60a62 a1339a5f93ce740459f0ef5967f57827ecf0a708e3504146a401d4968650c854
GET /static/yts/images/website/magnet.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-3d6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mhx460x9qIy5MCcHKGNybYRzY00j9mvGI4xpFT9ZXMINNC8v%2FqPuTkGgTBBuLlX4cUM9Gj7DpttIzanudBTM19HkdzIA54RTdn2%2Fz13Vu9fqPp6FgVaBcOy%2Fiiomx2bGvI%2F%2F%2BCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9ce920b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fstyle.css&l=4143&fd=68 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fstyle.css&l=4143&fd=68 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fstyle.css&l=4143&fd=68 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/js/jquery.min.js?v=1 | 104.21.69.3 | 200 OK | 84 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/js/jquery.min.js?v=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators Hashb0dc11d0a434aafe88908c7f33d71095 1327f754ff87d26bced46568543207e9df190aaa de4b3c3d1dc2506b6693f0f98884e1dc074cda9d66cab39b7b48a115fdfc4c0f
GET /static/yts/js/jquery.min.js?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-1497d"
expires: Sat, 11 May 2024 08:16:55 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 13386
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p5tFlQzu2ZYMd6H8BY9p6FjAhOURCKQN28pi802WAkrNuB3K16AKr5S3yJ%2FcWT1kF3CvuS6a%2BRWFxVtz6Z3%2BlgpDmAgZUSlDySObjHRid1wGpSu54l6v6xWHZyrkGyrK90cVnHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e83da20b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/style/minified.css | 104.21.69.3 | 200 OK | 120 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/minified.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (57475) Size120 kB (119843 bytes) Hasha314b10e99529c56373ebff456f96618 89369052969ff4793a3c290593b5ded5d2d3e6d7 e043e009630de7fdb24141cd7e788e91a7978880af7730e0f8f97bf41c2cd549
GET /static/yts/style/minified.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 08:38:28 GMT
vary: Accept-Encoding
etag: W/"65d31384-1d423"
expires: Sat, 11 May 2024 10:24:08 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 5753
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IMrAIKayKtd9sy0pP8Yid3hQ9s7Dhv78jOUHJSx%2FBl6ABEUEd%2BzENjOCFEg%2FRm3awbpCXj3Ya%2BfyTkbOsW%2BlzoCZ9QCfGsl4TZoasI6uaYjGQsGBZCeDLgD5%2BH%2FqNsMxeIDEE1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e80d8f0b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/play-trailer.svg | 104.21.69.3 | 200 OK | 4.7 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/play-trailer.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash0242c3a16be471023ee4e484a76cb850 811c46ab5800fc814b427e9469b5b55e7f41a35c 6f014889db48c67c7e651a9377b0415007ef9766fbf2ba90a1180b9e539c176a
GET /static/yts/images/website/play-trailer.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-122a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Di5canQBLh0nLsOKqz3apeZTXwkAUJBtBc6pJrUthLF9cLUulFxfmgDUBBvkk5j%2FXhuPQtJg0vQOnrkR4F8nm7erEjqZfM2E8AFDPUxVbKoiLcq%2B4AE9nnZLBeSCOGefL%2FdpTGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9dec50b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/style/modded1.js?yify=1 | 104.21.69.3 | 200 OK | 163 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/style/modded1.js?yify=1 IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeJavaScript source, ASCII text, with very long lines (65452) Size163 kB (162596 bytes) Hash60de675fcd2844a3ffbb68550d303076 8a53cc2f554a8ef1f58f3fd1996a3c3552ea5472 1c821bdab262418e3742bfa3c295c3b668724f7e8898b45638958a898bd93d33
GET /static/yts/style/modded1.js?yify=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:38 GMT
vary: Accept-Encoding
etag: W/"65d2c88e-27b24"
expires: Sat, 11 May 2024 10:24:08 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 5753
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MsYgYF6E5SI5Ju8UVQ%2F3%2Bja3WNVuGyiyZo4C2vNsoS%2BkiP76W1sFxObQB5tpCUo%2Ba%2FYcTCdSnAUnVb1jzim9XbdRXrgZWr7bcEIHraKkjMJOkoeer3Xq6EU464HRWJbyac5xAYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e83da40b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js | 104.17.25.14 | 200 OK | 83 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js IP104.17.25.14:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hasha0805bca912ec901f2a7096228b62d46 3233fd01d87fba457eaad8dcbc289f75b170f814 19126b874a32753d42c12dfa6c17892bfd93820a5a5100ba1b34da4d07599b49
GET /ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 19448
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62d72277-4bf8"
last-modified: Tue, 19 Jul 2022 21:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 245683
expires: Thu, 01 May 2025 00:00:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L6IZULCarVOb4lswnLhr4437S1fVZ3xwgXYIwEAS54AfFFjR9W3z%2F01960%2FDoB5XZFlAxPQYRVpIkBDrCl4ic%2Fz94Gj0pUuy1LBVc8lPFqWg6KFG1ObIzSTN%2FhL0KayrJxNoJ401"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881de2eb283f56af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| en.yts-official.mx/static/yts/images/website/icon-search.svg | 104.21.69.3 | 200 OK | 894 B |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/icon-search.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash9caad64a555d10c835c1e121b53743b0 5db8cc1d36d939a65725c4869ebec8cc0b5ce9e3 fa70e1614aed8ae3b0463b4d9884de60fd528951a068e6a13a60a329ef93face
GET /static/yts/images/website/icon-search.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-37e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hcE3pMsYOJTdFLCHGfXzA0R7MuoMz8k3mHLk3U1y57%2FywihabaADWIdL%2FpaChtOgr6v%2BgcdptwudRphATnwYN%2B0eBI9BqXV8QQeEgx%2Fan8225n%2FFw2xLfGhBqKh1oRtkrtBJKYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9ce890b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| vidsrc.to/assets/embed/min/all.js?v=663d8cfa | 172.67.181.24 | 200 OK | 88 kB |
URL GET HTTP/3vidsrc.to/assets/embed/min/all.js?v=663d8cfa IP172.67.181.24:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/embed/min/all.js?v=663d8cfa HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt3077108/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 02:57:19 GMT
etag: W/"663d8d0f-15634"
content-encoding: gzip
e-cache: HIT
access-control-allow-origin: *, *
expires: Sun, 09 Jun 2024 02:57:24 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 75757
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SrsMkf2ahVn0yMptH0UM20Dr3q0spIxwFjtJGVjdPHUYp5Iuoo8I43D10QsX8IwENL%2FqYc2TCzWx9eymbpt8kb2UnnasArqA4PhDeOAa7iLvJQyuWNjyxdVxBK8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2ea4da4b503-OSL
alt-svc: h3=":443"; ma=86400
|
|
| criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fanimate.css&l=78693&fd=61 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1criticizewiggle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fanimate.css&l=78693&fd=61 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcriticizewiggle.com FingerprintC8:8E:FD:EE:69:F8:E7:66:FB:24:08:6A:D6:14:8D:CE:FD:6C:A0:A1 ValidityMon, 29 Apr 2024 13:11:26 GMT - Sun, 28 Jul 2024 13:11:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fbig1%2Fcss%2Fanimate.css&l=78693&fd=61 HTTP/1.1
Host: criticizewiggle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=af85cf40-40c2-44c0-98e0-ae355ae0bce4:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec0a2f9bfefa2d59b6782f748beec9f30e=[5228479,5228476]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 11 May 2024 00:00:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| en.yts-official.mx/static/yts/css/loading.css | 104.21.69.3 | 200 OK | 2.8 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/css/loading.css IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeASCII text, with very long lines (3095), with no line terminators Hasha4e08ea672b525407c93c52dcedabbad 2d01194a908b02dff41147969f92027d83b082d2 ebde13ee7b0fe214ec069389b397750aaa5e58688b527e24ac69506cfdbb7704
GET /static/yts/css/loading.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/appropriate-behavior-2014/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-b13"
expires: Sat, 11 May 2024 08:16:55 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: HIT
age: 13386
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lzstbnwWKjIe2siv9NDaZ%2Fjg8Q4zxgeDltaTImt%2F%2BSNouGWtdGiNjPZAokkAm976PPl8brJ9qyVz1rvxVsthKeG6StxOSyzH11R5myp4BwtMPECJ6l4jytRzsGKXJmDIFO3P21o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881de2e81d910b06-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/1080p-quality.svg | 104.21.69.3 | 200 OK | 2.9 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/1080p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash3bcafca097344993580b747f088e7715 c2d58a3d4ae585c470489fd1f41d20f29ff266ca 59119beab43729f25cd7387785275dee4b80fffb59d1cdfa9bf778066b1ab3b6
GET /static/yts/images/website/1080p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-b77"
cache-control: max-age=14400
cf-cache-status: HIT
age: 225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aOFptv3qR33rPhHiDHp2M3ulxAfDj2u1NMiE3v1hoiP0KhMP81C495m8i8YnpStDFCQ3ZEiUoaboyEkkm1ETrlQXmrTYvB4d6i3WzHp1iBtIho5AW%2BGWw5RDSrNHrqK61C49YHY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9ce900b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css | 104.17.25.14 | 200 OK | 102 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css IP104.17.25.14:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Size102 kB (102025 bytes) Hashded1c367363e8b20bdc6a19b8350a737 8c06d82739d14b094ff6d9036021a252bd1d985d 1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf
GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/css; charset=utf-8
content-length: 18752
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6421d693-4940"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 257564
expires: Thu, 01 May 2025 00:00:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oeMdXSGWU4QkLEDFlXOTEPPQo0fyCGhDPKRX2s2FGmNSWtVvBnxBTEO5e%2FAfs2FZvZakGhgzimF6a%2FOHQSpo1iP9JYIiLOMrWFx4SQexybBIA0LaA2NJ61OBN1Yx8%2Bs7i6wQ9ah4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881de2eb183356af-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vidsrc.to/assets/embed/min/all.css?v=663d8cfa | 172.67.181.24 | 200 OK | 80 kB |
URL GET HTTP/3vidsrc.to/assets/embed/min/all.css?v=663d8cfa IP172.67.181.24:443
Requested byhttps://vidsrc.to/embed/movie/tt3077108/ CertificateIssuerGoogle Trust Services LLC Subjectvidsrc.to Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashf1324118f0fb608e711acd4ad716b776 f47b8e053b4eb43556a1645eee13eee24e185a5f 9bba11d379f87fd61d8fbe66ee318f39a86f0dc796c67e1418043f63732c4487
GET /assets/embed/min/all.css?v=663d8cfa HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt3077108/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: text/css
last-modified: Mon, 31 Jul 2023 07:18:46 GMT
etag: W/"64c76056-139ba"
content-encoding: gzip
e-cache: HIT
access-control-allow-origin: *, *
expires: Sun, 09 Jun 2024 02:57:24 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 75757
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vBh38N294cwPb5L9JSU5SaCl1guKvj0yNtz4iWiPxx5KbmiLzJ33ndeZmBdvHjTaLkZdy26fKy0g%2BfzoBuIuC5M7SXSAGLRdKv1A4cHZ4YZd8n6HDcn98PDvI3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2ea3d9bb503-OSL
alt-svc: h3=":443"; ma=86400
|
|
| en.yts-official.mx/static/yts/images/website/720p-quality.svg | 104.21.69.3 | 200 OK | 2.3 kB |
URL GET HTTP/3en.yts-official.mx/static/yts/images/website/720p-quality.svg IP104.21.69.3:443
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerGoogle Trust Services LLC Subjectyts-official.mx FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62 ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT
File typeSVG Scalable Vector Graphics image Hash0243315d20763efcf6b17f0d6b2ffb67 ab981c0c8a34d72f8f714be0eae96f404e434dd4 d7cccf166cfb73bded63e922e00ff99805a3ddbf0024a00904e39bdb3994f33c
GET /static/yts/images/website/720p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 11 May 2024 00:00:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-8e1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 225
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0DbXoUKGsLbM28B%2FbMeVyzFIMiQyziuclYrfjR2lPhxyDF02UqMDZJRnRTzORRKH%2FW2lq5YHxshiZ7fp4seR00NpnmiChr7i1BhJSo8lfODEEIBtcpCgEYscg63xQmqJmjc0gOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881de2e9ce970b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/si/a5f7da8098c31678f1e82c23dbf39aeedade906ff1ae8ccc4395ca7a048b3849.png | 45.133.44.10 | 200 OK | 20 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/a5f7da8098c31678f1e82c23dbf39aeedade906ff1ae8ccc4395ca7a048b3849.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://en.yts-official.mx/movies/appropriate-behavior-2014/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 340 x 180, 8-bit/color RGBA, non-interlaced Hashffd1172aeb074aa709c5e02fc5bc567c 284186f7978b958657c523d26c0779b230116d0e 377ca7d07cedba2448f26e03f9bb836fe3d3db319a37aaa5dd84a482719438b8
GET /si/a5f7da8098c31678f1e82c23dbf39aeedade906ff1ae8ccc4395ca7a048b3849.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 11 May 2024 00:00:04 GMT
content-type: image/png
content-length: 19936
server: nginx/1.21.6
last-modified: Thu, 09 May 2024 12:36:28 GMT
etag: "663cc34c-4de0"
expires: Mon, 13 May 2024 00:00:04 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|