Report - youtubevanced.com/

Report Overview

URL

youtubevanced.com/
IP

172.67.185.97

ASN

#13335 CLOUDFLARENET
Submitted

2023-05-26T16:51:27Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

1

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
mordoops.com (2)	unknown	2023-01-04 10:58:26	2023-05-25 18:45:40	846	28225	139.45.197.244
ocsp.pki.goog (6)	175	2018-07-01 08:43:07	2023-05-26 05:09:27	1998	4200	142.250.74.131
my.rtmark.net (1)	9054	2015-02-04 10:54:57	2023-05-26 05:13:54	469	746	139.45.195.8
fleraprt.com (1)	unknown	2022-01-14 23:55:14	2023-05-26 11:17:33	533	485	139.45.195.254
tzegilo.com (1)	unknown	2022-01-14 16:27:15	2023-05-26 10:12:07	400	7660	172.64.132.2
optyruntchan.com (6)	428482	2021-08-10 15:00:48	2023-05-25 18:32:54	5179	88410	139.45.197.237
region1.analytics.google.com (1)	unknown	2022-03-17 12:26:33	2023-05-26 05:09:28	691	448	216.239.34.36
fonts.gstatic.com (2)	unknown	2014-09-09 02:40:21	2023-05-26 08:15:38	1048	33270	216.58.207.227
www.google.no (1)	25607	2016-04-05 21:50:59	2023-05-26 10:05:04	526	578	142.250.74.163
ocsp.sectigo.com (1)	487	2019-11-29 12:50:24	2023-05-26 10:07:58	330	963	104.18.15.101
offerimage.com (4)	304078	2019-06-10 13:11:53	2023-05-26 13:12:02	1837	134681	104.22.33.172
gloaphoo.net (3)	unknown	2022-09-10 14:44:27	2023-05-26 06:13:16	2427	87017	139.45.197.239
youtubevanced.com (31)	521314	2018-06-19 12:42:29	2023-05-25 03:25:21	14286	1054733	172.67.185.97
www.googletagmanager.com (2)	75	2013-05-22 04:07:37	2023-05-26 07:54:02	884	133190	142.250.74.40
fonts.googleapis.com (1)	8877	2013-06-10 22:14:26	2023-05-26 08:47:13	421	11247	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-26	medium	mordoops.com/tag.min.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (63)

URL IP Response Size

youtubevanced.com/assets/img/features_1.webp

172.67.185.97

200 OK

25610

URL GET HTTP/3

youtubevanced.com/assets/img/features_1.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

25610
Hash

07607b17069d726646d8cb0e8a7e820e

166e7637fd61a50f34928cfc1f3898a3d2809f71

acee31bdff43681673d488d322bfdb8c0c6d09084469cd1cac49dfce61d55b1e

HTTP Headers

                                        GET /assets/img/features_1.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: image/webp
content-length: 25610
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "43552-640a-5c9303e2d8cb7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4579
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7xj8%2BE5D1Gyjgv1S%2B6zC8P%2BLmIFgSJS9CJssguQZPsWkxgaMnJTEF9SxyM5Zd43DJgyVytuFI3ISc%2FKy6tgAJfDlG2SMjsd7uim3KaDwcDqzLce%2BRC9mhdM0o2%2Fpwnqs4Ixo7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d2d63b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/features_2.webp

172.67.185.97

200 OK

6000

URL GET HTTP/3

youtubevanced.com/assets/img/features_2.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

6000
Hash

be4be36c124290c8cc026e7c8b30e6cb

2fa71e48ba968e83e976fd95fc8c9966473ef193

728e4412db35ae2fd15caeec38519e40d3718383b095209c0242fb98dedda409

HTTP Headers

                                        GET /assets/img/features_2.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: image/webp
content-length: 6000
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "43553-1770-5c9303e2d909f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4579
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ouXsXEqrJmIxLSQvOAT0WEiyJ8wGWxHZ3cYgxJf2NgUBtF57sDzpJo9eX9wb66uQKXTqOVvuLk6%2FAKRPjwOHu9mXEjXplhuS9MJ3gW0r0VtH7vvHQ3kBs9llN%2Frq5rp4D2JnzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d2d64b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/customization_1.webp

172.67.185.97

200 OK

14836

URL GET HTTP/3

youtubevanced.com/assets/img/customization_1.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

14836
Hash

26caf2e33a72d42f4fb27c08784b1acb

1a89583eb8e0a1c164396893bdb6051f2b0a1254

51a07451839a561e07dd8cfe103bf79bd4cd1d54780fd92ac81c4c4a57848f4d

HTTP Headers

                                        GET /assets/img/customization_1.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: image/webp
content-length: 14836
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4354c-39f4-5c9303e2d8cb7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4579
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tgrPYl75OUzAMPSxS0H2a52Vk9xRY%2FUjUnFeU5ox6uoS31NXyDroSKDvexwoG7vNv22tuqvvo6JGCdwsfkIugA1lzl91RcxMHDHLP4XnGoUHpou0mpZ8y%2FNcdxnCBwFcdwvhbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d2d65b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/customization_2.webp

172.67.185.97

200 OK

10692

URL GET HTTP/3

youtubevanced.com/assets/img/customization_2.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

10692
Hash

79501b4780ed40d0e2ddf269b39071b0

39af051f5c0a3b9a9538bb8946ac406d07f89e0a

7eb7ea9f9fab175b1747988b5c0ab57a613f5b05765a5a8813498dc3e0567d70

HTTP Headers

                                        GET /assets/img/customization_2.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 10692
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4354d-29c4-5c9303e2d8cb7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HzcOEt072%2FXiw6VqVQUoD9uY029S6ekhBjuSUwuqygRImHSJMiByzK114W8BLeKThOUqO%2BoAFtl%2BJM6oleBo8us653h2X80tgPp%2BOZWAe0TCxQ2W%2FxaBy1Yz5tRS07TdpiaTIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d95b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/sponsor_block_1.webp

172.67.185.97

200 OK

25372

URL GET HTTP/3

youtubevanced.com/assets/img/sponsor_block_1.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image, VP8 encoding, 233x512, Scaling: [none]x[none], YUV color, decoders should clamp\012- data

Size

25372
Hash

e070af9bdd4a465b3fe8376db8324f4a

b64f19025985fe36e15a62f9fc8bd01e8df23c26

320dd847969884fe714fdeb688d57c8a4115f920d63be1da60b21b7accef55fd

HTTP Headers

                                        GET /assets/img/sponsor_block_1.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 25372
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4355c-631c-5c9303e2d9487"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xWvoDaOoA1AoB5trFhOKPi0Cpsnryd1zA1dyMRYekNHL37g2DbawAPETfgDBSk1eJHRxNYa6X59v1mG9T74jGFv8HjDZqviZD%2BzXJ1e%2BqIhCNkhiYgVlwVR8UipL1xg4Q4Gsig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d97b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/sponsor_block_2.webp

172.67.185.97

200 OK

13940

URL GET HTTP/3

youtubevanced.com/assets/img/sponsor_block_2.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image, VP8 encoding, 233x512, Scaling: [none]x[none], YUV color, decoders should clamp\012- data

Size

13940
Hash

286c89c28ec1838c8a556c5d1a891254

6dfbca7dd38638c1d2be38bbd7bffabc9a4c6a6d

c63f6ee7f5f62223c6148c3d8d1f53a25c971270aade10d99caef32b660e2c05

HTTP Headers

                                        GET /assets/img/sponsor_block_2.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 13940
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4355d-3674-5c9303e2d9487"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AsNs8s%2FKvzPvlmTDDv3NsgslVVlmTh121eULRwB28oYJPICETINzw98OZHFC0OBlhjOIXWpo9bHkEINbmq5StfLNzLswdwrlUejeH4tYmTWs%2BaLxB6Kmn77W%2BpPuNuf3GdEVLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d93b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/youtube_dislike_1.webp

172.67.185.97

200 OK

91746

URL GET HTTP/3

youtubevanced.com/assets/img/youtube_dislike_1.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

91746
Hash

ffed379d3165b31dd8c77f8c71d9a506

9b84782729899db8ed39e405fba3d7f4e51e3162

0487313972d5ff7ff002248cef8f6fe077414dcdde73a38c6a02cab5af204ee1

HTTP Headers

                                        GET /assets/img/youtube_dislike_1.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 91746
last-modified: Fri, 25 Feb 2022 10:01:48 GMT
etag: "20e7a-16662-5d8d4c97ee424"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UskQ17FpmCRx0ugKQpbGtxjLXTmoE9jPtgwAG6njKgTFvy8F5I56AbBStDbBOvNGQOqB%2Bt0oQGDdldYIz920qsKxE4Amoh9ox%2FvyzhanlF3v1lx098OTue272Dd5tleersFmmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d96b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/youtube_dislike_2.webp

172.67.185.97

200 OK

8046

URL GET HTTP/3

youtubevanced.com/assets/img/youtube_dislike_2.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

8046
Hash

0470d3752c1316a7a826bbcac276db4c

2d5884c7730934b862546c75ac11481beb81a227

fc24c1278d378327f663acbb1b8004921aedf089a07e33c6127a4ee0287c6c78

HTTP Headers

                                        GET /assets/img/youtube_dislike_2.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 8046
last-modified: Fri, 25 Feb 2022 10:01:48 GMT
etag: "20e7c-1f6e-5d8d4c97ee424"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fkn0MF4O42dKi6CNXKfjq13cMFH%2FZICgHkxDWYTBBHyFpRwldtYQBLrKdERUiq12vtMlPAqxOkgC3GV1e1uvjok%2BH4eOlWirzp2j7HiI8P3ujxH8SkWhIU7a6v511nWR12HUXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d91b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/pikashow.svg

172.67.185.97

200 OK

2692

URL GET HTTP/3

youtubevanced.com/assets/img/pikashow.svg
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators

Size

2692
Hash

495a009a6fab4f55240f56511112ff2c

02080ca6d2f804de38ba207e381b1cd5a2cb1c5a

f32ab4d64a38b11ebfcf53e04a18a39965854b2dad0617e0549b3bfa0c976fe0

HTTP Headers

                                        GET /assets/img/pikashow.svg HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: image/svg+xml
last-modified: Wed, 20 Oct 2021 09:38:24 GMT
etag: W/"20e78-16aa-5cec58a222538"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X%2B6Cw7aCQq4tEMQxbvv8PkiVc1iDoaL3FuAgRXH4MkeCnrDmfgVEp%2FBDd0XH7CY%2FuGgLKPfsE2HvQU7BMD1o7sei4kvENUy%2FBHQ4aCi8rwhazj15bYZKdJDsMTPEWiiC8f%2Ff%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d2d5fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/intro-bg.webp

172.67.185.97

200 OK

70580

URL GET HTTP/3

youtubevanced.com/assets/img/intro-bg.webp
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

RIFF (little-endian) data, Web/P image\012- data

Size

70580
Hash

10284f622b14d22b1a8ac6367fea600e

84df52f4476088511a94335a25f0a102aee917a8

0b4abe298632ffc829d7d50d3ad69896b7e7a35e3c9f694df5c14391524fb422

HTTP Headers

                                        GET /assets/img/intro-bg.webp HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/webp
content-length: 70580
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "43560-113b4-5c9303e2db7af"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4580
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Cs9AN4flBaQKB7N%2BalfJU7HqHuYgWZkrvGcxJHJBGJn9d8Nr%2FZ%2FJ3gyOxYI%2BKafnTJfKCNfYWY3g%2BE7ZJr7iwUvEfILVdBJ77gaUV41aWNDLHQ5PPEb0%2Bb%2Fccjk%2FeW2pz2ZFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856dfea2b4ed-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=UA-88247207-2

142.250.74.40

200 OK

47850

URL GET HTTP/2

www.googletagmanager.com/gtag/js?id=UA-88247207-2
IP

142.250.74.40:443
ASN

#15169 GOOGLE

Requested by

https://youtubevanced.com/
Certificate

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51

ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

Magic

ASCII text, with very long lines (2271)

Size

47850
Hash

8bb49a9c677a44b46a7fc7cc76ece42b

d1c0e447abb6c3bfa557638d8143674dffd6e7ce

c2589d5dba34945a63117ee241839802e7984ab3a9a850afd0c7c443d019c468

HTTP Headers

                                        GET /gtag/js?id=UA-88247207-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 16:51:09 GMT
expires: Fri, 26 May 2023 16:51:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47850
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

youtubevanced.com/assets/vendor/bootstrap/js/bootstrap.bundle.min.js

172.67.185.97

200 OK

22986

URL GET HTTP/3

youtubevanced.com/assets/vendor/bootstrap/js/bootstrap.bundle.min.js
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (65299)

Size

22986
Hash

7f389f5d2622ce2090eca7c36bcb90bc

ab27031159724e2421f6ff5c70f48e657abe9d39

8d7089253dca29c9cd8d9deb7ec69b0a3d445f88f6a26478c719be1f90adcb01

HTTP Headers

                                        GET /assets/vendor/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: application/javascript
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: W/"43578-148b8-5c9303e2e4067"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=REIr3d3VreJIEQsypXsKjg3w1jqks1yIUnNY7glZ8xExPjOkvX87haA%2F32C57zfIJ1O5nei%2B%2B87za6oVCWuTi4GmQ7NETNFlHAn%2FbZlFkmMvUbvQK1pATV9glCN5ZNUVoNCUHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d9ab4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/vendor/jquery/jquery.min.js

172.67.185.97

200 OK

220477

URL GET HTTP/3

youtubevanced.com/assets/vendor/jquery/jquery.min.js
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (65451)

Size

220477
Hash

dc5e7f18c8d36ac1d3d4753a87c98d0a

c8e1c8b386dc5b7a9184c763c88d19a346eb3342

f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

                                        GET /assets/vendor/jquery/jquery.min.js HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: application/javascript
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: W/"43597-15d84-5c9303e2f2ac7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8vIQ6CQjlaCN14gyh5BBuojqx9iyXuGA2FPGcCj8u8mCtMZNYLmdiueLUT%2BgIResenysHcm31qpKaocfvW3G2mRZRSDkG7qZj4TF%2BpwIcYZeyjiXyhUrsUu5vFGb9OJVVq4mkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d9eb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

mordoops.com/tag.min.js

139.45.197.244

200 OK

23519

URL GET HTTP/2

mordoops.com/tag.min.js
IP

139.45.197.244:443
ASN

#9002 RETN Limited

Requested by

https://youtubevanced.com/
Certificate

IssuerLet's Encrypt

Subjectmordoops.com

Fingerprint22:90:13:C7:3C:93:9C:1A:F4:67:92:B0:78:3B:B7:A7:F5:23:95:2C

ValiditySat, 25 Mar 2023 05:25:34 GMT - Fri, 23 Jun 2023 05:25:33 GMT

Magic

ASCII text, with very long lines (65536), with no line terminators

Size

23519
Hash

55eb2b95f376a652d73458bd05dcbc47

eb793a2eeb526273561e5de40ccbff250f51fdfe

9ce2c4733b4fe317690836ca1f904d17f33d0ac87e18c59db554586274ed7997

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

                                        GET /tag.min.js HTTP/1.1
Host: mordoops.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 16:51:09 GMT
content-type: text/javascript; charset=utf-8
content-length: 23519
content-encoding: br
x-trace-id: c5732ecb4b992a6473d0b1318c34abd1
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 26 May 2023 13:56:59 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

youtubevanced.com/

172.67.185.97

200 OK

URL HEAD HTTP/3

youtubevanced.com/
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        HEAD / HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: text/html; charset=UTF-8
last-modified: Tue, 16 May 2023 17:52:35 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1HuSYhnB1imsxqpsy%2FDTY%2FSAPQNevdZKEWSG6MCWD39mUFGOi73GXsyvBG4z2cLHgSvc9hzDyWJW8xVJQtJEdZM9IZh4%2BGruUzCsZXhZdFT8DWXxCMsZWtkr4gxVtwg8LkvBiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7856ec851b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

youtubevanced.com/

172.67.185.97

200 OK

URL HEAD HTTP/3

youtubevanced.com/
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        HEAD / HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: text/html; charset=UTF-8
last-modified: Tue, 16 May 2023 17:52:35 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a70beEYkDGopq%2BLWDU%2F4xSxvz%2Br3bdA%2BNMX%2BpH70hdqN6NvvrZGNh4OavvMrXcwAsU5P3aao4LmS2Wk0UZvJAThYOW6rG0QeYCChRvJNXuoCk9gk6RfKmt8XaFpCjyiGrLULgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7856f08e4b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/vendor/jquery.easing/jquery.easing.min.js

172.67.185.97

200 OK

2677

URL GET HTTP/3

youtubevanced.com/assets/vendor/jquery.easing/jquery.easing.min.js
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (2532), with no line terminators

Size

2677
Hash

e2d41e5c8fed838d9014fea53d45ce75

bde98133f735398b27339c423a817e755329f7d1

1f7723b6b9bfced0deba108df48e3287888dd986f1ff2d5133bacc9807ac0349

HTTP Headers

                                        GET /assets/vendor/jquery.easing/jquery.easing.min.js HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: application/javascript
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: W/"4359a-9e4-5c9303e2f3297"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=evRD7SGPiojlq8%2FyecBuTQEmqKKKu5a2Mn%2F5ZfLmFRI5VBW8xgqHYlHWab7GnHz4YFzkfm8RMXt%2FFOv2ffbgzxezLfZWS5SVVF4SwfTrAswhql7JDrBCM2yoq5hEMBYsM6ONIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d4d9cb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-CH1XEWSGBB&l=dataLayer&cx=c

142.250.74.40

200 OK

84158

URL GET HTTP/3

www.googletagmanager.com/gtag/js?id=G-CH1XEWSGBB&l=dataLayer&cx=c
IP

142.250.74.40:443
ASN

#15169 GOOGLE

Requested by

https://youtubevanced.com/
Certificate

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51

ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

Magic

ASCII text, with very long lines (5858)

Size

84158
Hash

e0f92297ee2e14baa2072f04015f92fa

ea40823abeff363496ba545e3fe38cb006481aac

8dff9170aff4581cd72defd583aec076e59ad2e39f122a9a8e958bf0ab08510f

HTTP Headers

                                        GET /gtag/js?id=G-CH1XEWSGBB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 16:51:09 GMT
expires: Fri, 26 May 2023 16:51:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84158
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

youtubevanced.com/assets/img/download.svg

172.67.185.97

200 OK

606

URL GET HTTP/3

youtubevanced.com/assets/img/download.svg
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text

Size

606
Hash

704f1f846ad4eba6525432dca978e4b1

aba0b41bbd0dbce01669e40386e569fd204d1d73

e0c67bd951bd601b81db199cd0ec7bdea16b7885fc76207fe96f8a0c6dc751bf

HTTP Headers

                                        GET /assets/img/download.svg HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: image/svg+xml
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: W/"4354e-524-5c9303e2d8cb7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y5T3BzMpEzzUIyGi%2BpwjaYVtjsyWnauE7IuDsRUetR0i9tMqf2DDyvptFjiYjbOQk9SZvm%2F6Vu3pxiDVBs0yEEmzw1P9MCEO%2FYpb99D5wqjUp%2Ft10Wf1Xx3S%2FTKOJkz0xMsaXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7856d2d61b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/android-chrome-192x192.png?v=3

172.67.185.97

200 OK

8372

URL GET HTTP/3

youtubevanced.com/assets/img/android-chrome-192x192.png?v=3
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data

Size

8372
Hash

21e74b6af49f883500b410b87a006900

85fd43f86ed35e8ce94feff2cedf622c23e849e3

2de161fda1dcf9a7b3014b3e7c8a0ccd7173d5c8fda12ffb7dd51a39b1395faf

HTTP Headers

                                        GET /assets/img/android-chrome-192x192.png?v=3 HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Cookie: _ga_CH1XEWSGBB=GS1.1.1685119869.1.0.1685119869.60.0.0; _ga=GA1.1.1354639792.1685119869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/png
content-length: 8372
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4354a-20b4-5c9303e2d88cf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2761
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eGyY1BhjpI00FafTZK0RWUoyWB2SSnfP5%2B4OqPb%2BV3hwAK3X5luljUb6yFqn8FkMzlxe9gAt7BzTYTQi%2FSqyAVMt2NoNrHsVBeT4oz4PJreS3JOsX2dU0ioAUG9BW1MeDSciFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd785722df6b4ed-OSL
alt-svc: h3=":443"; ma=86400

youtubevanced.com/assets/img/favicon-16x16.png?v=3

172.67.185.97

200 OK

690

URL GET HTTP/3

youtubevanced.com/assets/img/favicon-16x16.png?v=3
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data

Size

690
Hash

9818adf14c0e72b35ddb2055e9439698

c08c5270090f4e6dbbb0d4c14f9e7e31b0b54855

6f31d1401ebb6017415cdada92c2952288459cbaf2f7d9ccb00b042318dc04be

HTTP Headers

                                        GET /assets/img/favicon-16x16.png?v=3 HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Cookie: _ga_CH1XEWSGBB=GS1.1.1685119869.1.0.1685119869.60.0.0; _ga=GA1.1.1354639792.1685119869
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: image/png
content-length: 690
last-modified: Tue, 10 Aug 2021 08:25:22 GMT
etag: "4354f-2b2-5c9303e2d8cb7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1665
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ar7%2BTMIphBaeW%2BRWMkifkXYGzqm7qPlO9Ez0quZohLN8wtS0f%2B5DI3ISu83NwNP5RcKcBtljtCmujLXH8VAcGMcLCfFhh69OWBnMc5W6fabEraHfFptrswn2QF3IgcYGdIt37g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd785722df8b4ed-OSL
alt-svc: h3=":443"; ma=86400

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

c059e25d6dfa9bab8ccf61cf7dd14ccb

d07ffd38d379087edfe273c47f76a7e52b918fa3

2c9921d358e033361095f2b56203490265f81f58574c2d20e64b2732c631201f

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CH1XEWSGBB&cid=1354639792.1685119869&gtm=45je35o0&aip=1&z=394939623

142.250.74.163

200 OK

URL GET HTTP/2

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CH1XEWSGBB&cid=1354639792.1685119869&gtm=45je35o0&aip=1&z=394939623
IP

142.250.74.163:443
ASN

#15169 GOOGLE

Requested by

https://youtubevanced.com/
Certificate

IssuerGoogle Trust Services LLC

Subject*.google.no

FingerprintB6:72:A5:B7:45:AC:AA:AB:11:6F:E9:5D:A6:4D:03:19:3A:00:31:45

ValidityMon, 08 May 2023 08:26:53 GMT - Mon, 31 Jul 2023 08:26:52 GMT

Magic

GIF image data, version 89a, 1 x 1\012- data

Size

42
Hash

d89746888da2d9510b64a9f031eaecd5

d5fceb6532643d0d84ffe09c40c481ecdf59e15a

ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

                                        GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-CH1XEWSGBB&cid=1354639792.1685119869&gtm=45je35o0&aip=1&z=394939623 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 May 2023 16:51:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

e47c077d1d470e8018648eb06ceb3165

d34ff7f96f14178607f3c55ad70d0287956f3bc0

1da3e94a5124456125a21ffeea0e520a1eb44d085c2e6542e9b0c0413d3f778e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:51:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

youtubevanced.com/

172.67.185.97

200 OK

23873

URL HEAD HTTP/3

youtubevanced.com/
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (50689)

Size

23873
Hash

83602ece95442fc91d875b06aa0660c8

768b12f75d4dab51c1b4a5756fc9a5eaade2b9b4

a6dd09ea943bd137e33643043ce2762b4aa3dcfa1420eb32fa553bfde7497ada

HTTP Headers

                                        GET / HTTP/1.1
Host: youtubevanced.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:51:08 GMT
content-type: text/html; charset=UTF-8
last-modified: Tue, 16 May 2023 17:52:35 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vYitz9O4g7tyIHMnlJL8ETDAxad%2F%2FLesyPGI1FKX4RdVzxz4eXIjIBv6sY%2FypJk8JFJuero1ajYEdxNsOB2fUWeb%2FmRiERWFSIReBi7WvFvj41hBYEbP0%2Ff3WPde24FssH1Xyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7856a0ea4b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.15.101

471

URL

ocsp.sectigo.com/
IP

104.18.15.101:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

471
Hash

16a8ec44336ed1798e9008c22ef41724

2b5f27b886e4dd50cdcee8b3dc8bf4af06a21956

f6fe2aac3830d09f429e35da02d39d5200ae0e6af82e075e298146742d069f0a

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Fri, 26 May 2023 16:51:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 15:49:42 GMT
Expires: Wed, 31 May 2023 15:49:41 GMT
Etag: "2b5f27b886e4dd50cdcee8b3dc8bf4af06a21956"
Cache-Control: max-age=428780,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cd78573599bb512-OSL

my.rtmark.net/gid.js?userId=1b2e1b83b86447cab64ac559670315f2

139.45.195.8

200 OK

URL GET HTTP/2

my.rtmark.net/gid.js?userId=1b2e1b83b86447cab64ac559670315f2
IP

139.45.195.8:443
ASN

#9002 RETN Limited

Requested by

https://youtubevanced.com/
Certificate

IssuerLet's Encrypt

Subjectrtmark.net

Fingerprint84:56:36:C3:24:DE:FB:F0:E7:EB:EB:9D:C8:B6:28:31:B5:3C:8B:80

ValiditySat, 06 May 2023 08:48:01 GMT - Fri, 04 Aug 2023 08:48:00 GMT

Magic

JSON data\012- , ASCII text

Size

65
Hash

a11c7ba39784fc85a420be4be0fd3eec

7a9f384f25949bf652dd0a8e49994a00b7c04c0e

0004c1cbcf6e8caf91d6df759a0153657a2b0b1bea68da486cd8b7567712bd84

HTTP Headers

                                        GET /gid.js?userId=1b2e1b83b86447cab64ac559670315f2 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youtubevanced.com
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 16:51:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://youtubevanced.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1b2e1b83b86447cab64ac559670315f2; expires=Sat, 25 May 2024 16:51:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

URL POST HTTP/1.1

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP

139.45.195.254:443
ASN

#9002 RETN Limited

Requested by

https://youtubevanced.com/
Certificate

IssuerSectigo Limited

Subjectfleraprt.com

FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9

ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

adb4650bfc9d2a73d4dd69583b0ceb14

1ce399d6e936232aaf2192cd7903a279c5015f22

21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

HTTP Headers

                                        POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1613
Origin: https://youtubevanced.com
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 26 May 2023 16:51:28 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://youtubevanced.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

tzegilo.com/stattag.js

172.64.132.2

200 OK

6856

URL GET HTTP/2

tzegilo.com/stattag.js
IP

172.64.132.2:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerGoogle Trust Services LLC

Subject*.tzegilo.com

FingerprintDF:12:8C:B5:F2:22:D6:BE:72:F3:C6:9A:FA:DD:9E:1F:4E:58:63:1E

ValidityTue, 11 Apr 2023 10:11:54 GMT - Mon, 10 Jul 2023 10:11:53 GMT

Magic

ASCII text, with very long lines (17479), with no line terminators

Size

6856
Hash

dd2f9f2bb1e1c74b905556d0a7bc5545

0c831c8c56da8167b9e2dfd1d3eb3288348da85d

63f957dde1ae04a83eaff7e442e693725562c4aa1062bc072b7509640ec4f663

HTTP Headers

                                        GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:51:09 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 08:43:59 GMT
etag: W/"646736cf-4447"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6593
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ylwXhVBo1JGtpmi6sYMPxwjnYLdTEqBPFpKSwQp5lGf3nzz%2BTYtbcsVHcK1t3TqxPr66EHMmVriIwZQr4R97HyuJtOGc4tZSn8iZGV24Tn4ewh%2FS3UAdWY%2FMoyQ4aw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd785718de523f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

optyruntchan.com/500/5632932?excludes=&oaid=1b2e1b83b86447cab64ac559670315f2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.237

200 OK

URL GET HTTP/2

optyruntchan.com/500/5632932?excludes=&oaid=1b2e1b83b86447cab64ac559670315f2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP

139.45.197.237:443
ASN

#9002 RETN Limited

Requested by

https://youtubevanced.com/
Certificate

IssuerLet's Encrypt

Subjectoptyruntchan.com

FingerprintF9:7C:18:C1:3D:2E:10:99:CB:06:41:CD:80:6B:3D:0D:CC:C9:3F:C0

ValidityWed, 05 Apr 2023 08:27:01 GMT - Tue, 04 Jul 2023 08:27:00 GMT

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        OPTIONS /500/5632932?excludes=&oaid=1b2e1b83b86447cab64ac559670315f2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: optyruntchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://youtubevanced.com/
Origin: https://youtubevanced.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 16:51:10 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://youtubevanced.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

offerimage.com/www/images/61e3e972c08bdf71568f820339ae5633.jpg

104.22.33.172

200 OK

14137

URL GET HTTP/2

offerimage.com/www/images/61e3e972c08bdf71568f820339ae5633.jpg
IP

104.22.33.172:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0

ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data

Size

14137
Hash

61e3e972c08bdf71568f820339ae5633

62c5aa78c334ea2de454f1062468d390ca910b2e

120363ce44c7034d0080dfe237c7ff77cd6a727d6f2451c54727a73c3425c2c2

HTTP Headers

                                        GET /www/images/61e3e972c08bdf71568f820339ae5633.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:51:10 GMT
content-type: image/jpeg
content-length: 14137
cache-control: max-age=86400
cf-bgj: h2pri
etag: "64663d6c-3739"
expires: Sat, 27 May 2023 16:23:07 GMT
last-modified: Thu, 18 May 2023 14:59:56 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 1683
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd78575aa542d6e-ARN
X-Firefox-Spdy: h2

offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg

104.22.33.172

200 OK

13093

URL GET HTTP/2

offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg
IP

104.22.33.172:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0

ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data

Size

13093
Hash

1355aa125a385056845e0ee1d5384e9a

cfa5fd1b2dd6b299c0aecdf19fec3532ce4392ea

248797fff982ee400ab78ff6831182372f9ef8a6916364192ca0f30556577733

HTTP Headers

                                        GET /www/images/1355aa125a385056845e0ee1d5384e9a.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:51:10 GMT
content-type: image/jpeg
content-length: 13093
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6388849b-3325"
expires: Sat, 27 May 2023 07:20:42 GMT
last-modified: Thu, 01 Dec 2022 10:40:27 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 34228
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd78575aa522d6e-ARN
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-CH1XEWSGBB&gtm=45je35o0&_p=293789063&_gaz=1&cid=1354639792.1685119869&ul=en-us&sr=1280x1024&_s=1&sid=1685119869&sct=1&seg=0&dl=https%3A%2F%2Fyoutubevanced.com%2F&dt=YouTube%20Vanced%20-%20Download%20YouTube%20Vanced%20APK&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.34.36

204 No Content

URL POST HTTP/2

region1.analytics.google.com/g/collect?v=2&tid=G-CH1XEWSGBB&gtm=45je35o0&_p=293789063&_gaz=1&cid=1354639792.1685119869&ul=en-us&sr=1280x1024&_s=1&sid=1685119869&sct=1&seg=0&dl=https%3A%2F%2Fyoutubevanced.com%2F&dt=YouTube%20Vanced%20-%20Download%20YouTube%20Vanced%20APK&en=page_view&_fv=1&_nsi=1&_ss=1
IP

216.239.34.36:443
ASN

#15169 GOOGLE

Requested by

https://youtubevanced.com/
Certificate

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51

ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        POST /g/collect?v=2&tid=G-CH1XEWSGBB&gtm=45je35o0&_p=293789063&_gaz=1&cid=1354639792.1685119869&ul=en-us&sr=1280x1024&_s=1&sid=1685119869&sct=1&seg=0&dl=https%3A%2F%2Fyoutubevanced.com%2F&dt=YouTube%20Vanced%20-%20Download%20YouTube%20Vanced%20APK&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://youtubevanced.com
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                        HTTP/2 204 No Content
access-control-allow-origin: https://youtubevanced.com
date: Fri, 26 May 2023 16:51:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

gloaphoo.net/impression/CdKeYSt3c3eEKvJpc5eYOZOzHxGoVWD0Eb1T4jRqrdn4yh826dpA37zKceRG2AVEBQrC7CUn9ktew-2J4L3q9hc-csGn32IZMSLkUnzN1Y4ejokzboULq9VHdlvKzikSZ7eG2dcX9pJiDMi-BVErnlwyqwFgdE3DwL4gjtbpAOd2mMY3UXVrFkOhSBJXwACPZ7F1fs8MY6kqviS39-BeXHp_afqOjA7nZI5FH9nMWb6W7G8mrnW06Qo-C5y5tsDQVYIDE-pXG79zQyzM6Ljz6xVqVRaEGyknf0gXVXxTA_AlkuwH44zUJXY8fvCPO8D9efv7g-VYkav1tWZjSi-as4m4jTPc1oZwaULFXfH3b4_x8Izz6UcWWyQIqwO7re5Fh89QJaeKbum5TAjOjD49RWrzv4XecxXzymcYt0m19Za21GrqU6-zH0pDVzWIlQZacCIhNSsBnP4eWrTn7v7XqDB2-3V5Et2_1Ti4H9x93AO9rJGjPFsx84CRbcyZctrSnceEXY1tUM6hiKbjpcoFXlL3-yM4QRMmI_zyPIfjC-ysgZplzLgD7-9Yc_j35kT8vHPhEVhwKqRHGkA8aG6zaNM5aAU=?_z=5632930&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false

139.45.197.239

200 OK

URL GET HTTP/2

gloaphoo.net/impression/CdKeYSt3c3eEKvJpc5eYOZOzHxGoVWD0Eb1T4jRqrdn4yh826dpA37zKceRG2AVEBQrC7CUn9ktew-2J4L3q9hc-csGn32IZMSLkUnzN1Y4ejokzboULq9VHdlvKzikSZ7eG2dcX9pJiDMi-BVErnlwyqwFgdE3DwL4gjtbpAOd2mMY3UXVrFkOhSBJXwACPZ7F1fs8MY6kqviS39-BeXHp_afqOjA7nZI5FH9nMWb6W7G8mrnW06Qo-C5y5tsDQVYIDE-pXG79zQyzM6Ljz6xVqVRaEGyknf0gXVXxTA_AlkuwH44zUJXY8fvCPO8D9efv7g-VYkav1tWZjSi-as4m4jTPc1oZwaULFXfH3b4_x8Izz6UcWWyQIqwO7re5Fh89QJaeKbum5TAjOjD49RWrzv4XecxXzymcYt0m19Za21GrqU6-zH0pDVzWIlQZacCIhNSsBnP4eWrTn7v7XqDB2-3V5Et2_1Ti4H9x93AO9rJGjPFsx84CRbcyZctrSnceEXY1tUM6hiKbjpcoFXlL3-yM4QRMmI_zyPIfjC-ysgZplzLgD7-9Yc_j35kT8vHPhEVhwKqRHGkA8aG6zaNM5aAU=?_z=5632930&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP

139.45.197.239:443
ASN

#9002 RETN Limited

Requested by

https://youtubevanced.com/
Certificate

IssuerLet's Encrypt

Subjectgloaphoo.net

Fingerprint99:07:2F:57:D5:B2:7C:C7:EB:BD:DB:FB:8B:EA:AE:66:3F:2E:10:DD

ValiditySun, 07 May 2023 05:09:46 GMT - Sat, 05 Aug 2023 05:09:45 GMT

Magic

GIF image data, version 89a, 1 x 1\012- data

Size

43
Hash

b4491705564909da7f9eaf749dbbfbb1

279315d507855c6a4351e1e2c2f39dd9cd2fccd8

4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

                                        GET /impression/CdKeYSt3c3eEKvJpc5eYOZOzHxGoVWD0Eb1T4jRqrdn4yh826dpA37zKceRG2AVEBQrC7CUn9ktew-2J4L3q9hc-csGn32IZMSLkUnzN1Y4ejokzboULq9VHdlvKzikSZ7eG2dcX9pJiDMi-BVErnlwyqwFgdE3DwL4gjtbpAOd2mMY3UXVrFkOhSBJXwACPZ7F1fs8MY6kqviS39-BeXHp_afqOjA7nZI5FH9nMWb6W7G8mrnW06Qo-C5y5tsDQVYIDE-pXG79zQyzM6Ljz6xVqVRaEGyknf0gXVXxTA_AlkuwH44zUJXY8fvCPO8D9efv7g-VYkav1tWZjSi-as4m4jTPc1oZwaULFXfH3b4_x8Izz6UcWWyQIqwO7re5Fh89QJaeKbum5TAjOjD49RWrzv4XecxXzymcYt0m19Za21GrqU6-zH0pDVzWIlQZacCIhNSsBnP4eWrTn7v7XqDB2-3V5Et2_1Ti4H9x93AO9rJGjPFsx84CRbcyZctrSnceEXY1tUM6hiKbjpcoFXlL3-yM4QRMmI_zyPIfjC-ysgZplzLgD7-9Yc_j35kT8vHPhEVhwKqRHGkA8aG6zaNM5aAU=?_z=5632930&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fyoutubevanced.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: gloaphoo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://youtubevanced.com/
Cookie: OAID=1b2e1b83b86447cab64ac559670315f2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
server: nginx
date: Fri, 26 May 2023 16:51:14 GMT
content-type: image/gif
content-length: 43
x-trace-id: 73b61f898575dca09a62f90b3cca11f9
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg

104.22.33.172

200 OK

13093

URL GET HTTP/2

offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg
IP

104.22.33.172:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0

ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data

Size

13093
Hash

1355aa125a385056845e0ee1d5384e9a

cfa5fd1b2dd6b299c0aecdf19fec3532ce4392ea

248797fff982ee400ab78ff6831182372f9ef8a6916364192ca0f30556577733

HTTP Headers

                                        GET /www/images/1355aa125a385056845e0ee1d5384e9a.jpeg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
date: Fri, 26 May 2023 16:51:15 GMT
content-type: image/jpeg
content-length: 13093
cache-control: max-age=86400
cf-bgj: h2pri
etag: "6388849b-3325"
expires: Sat, 27 May 2023 07:20:42 GMT
last-modified: Thu, 01 Dec 2022 10:40:27 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 34233
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd785939f5f2d6e-ARN
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

13b26f5afbecdd78566b3b54ab77caed

6b16c5910ad9ea57236d6954290be6fce8f62c6b

9fd32213a6b40b68ac06d5d6bf9c6ab0793f7f0464407b348c6e290f91870a90

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 16:51:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

youtubevanced.com/assets/vendor/font-awesome/css/font-awesome.min.css

172.67.185.97

200 OK

7450

URL GET HTTP/3

youtubevanced.com/assets/vendor/font-awesome/css/font-awesome.min.css
IP

172.67.185.97:443
ASN

#13335 CLOUDFLARENET

Requested by

https://youtubevanced.com/
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint47:05:DA:FA:D8:2D:C0:66:57:7D:79:DA:90:AE:46:00:B0:77:AE:4A

ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (30837)

Size

7450
Hash

269550530cc127b6aa5a35925a7de6ce

512c7d79033e3028a9be61b540cf1a6870c896f8

799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

#1 JS:Script (size: 89476)

#2 JS:Script (size: 2532)

#3 JS:Script (size: 9028)

#4 JS:Script (size: 11749)

#5 JS:Script (size: 2567)

#6 JS:Script (size: 155)

#7 JS:Script (size: 77)

#8 JS:Script (size: 147)

#9 JS:Script (size: 244454)

#10 JS:Script (size: 83281)

#11 JS:Script (size: 15013)

#12 JS:Script (size: 58916)

#13 JS:Script (size: 446)

#14 JS:Script (size: 73267)

#15 JS:Script (size: 4691)

#16 JS:Script (size: 58922)

#17 JS:Script (size: 83993)

#18 JS:Script (size: 232)

#19 JS:Script (size: 84152)

#20 JS:Script (size: 2182)

#21 JS:Script (size: 58922)

#22 JS:Script (size: 235)

#23 JS:Script (size: 123636)

#24 JS:Script (size: 17479)

HTTP Transactions (63)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

Magic

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by