Report - en.yts-official.mx/movies/trouble-man-1972/

Report Overview

Submitted URL
en.yts-official.mx/movies/trouble-man-1972/
IP
172.67.202.34
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 13:05:00
Access
public
Website Title
(1) New Message!
Final URL
en.yts-official.mx/movies/trouble-man-1972/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-26	440 B	16 kB	45.133.44.10
vidsrc.to	unknown	unknown	2023-07-30	2024-04-17	1.9 kB	213 kB	104.21.64.103
en.yts-official.mx	unknown	2024-02-16	2024-02-22	2024-04-18	14 kB	707 kB	172.67.202.34
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-25	1.9 kB	220 kB	104.17.25.14
chroniclesugar.com	unknown	2024-04-23	2024-04-23	2024-04-26	487 B	467 B	172.240.108.76
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-04-25	2.3 kB	96 kB	104.21.70.253
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-25	874 B	850 B	35.158.46.84
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-25	413 B	29 kB	172.67.180.87
unseenshingle.com	unknown	unknown	No data	No data	7.5 kB	13 kB	172.240.127.234
growingcastselling.com	unknown	unknown	No data	No data	888 B	47 kB	192.243.61.225
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-04-25	417 B	327 B	192.243.59.12
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	1.4 kB	14 kB	142.250.74.106
cdn.barscreative1.com	25648	2021-09-08	2021-09-16	2024-04-25	496 B	1.7 kB	45.133.44.3
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-26	3.2 kB	107 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	growingcastselling.com	Sinkholed
2024-04-26	medium	growingcastselling.com	Sinkholed
2024-04-26	medium	chroniclesugar.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed
2024-04-26	medium	unseenshingle.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	en.yts-official.mx/static/yts/style/modded1.js?yify=1	163 kB	2023-03-08	2024-05-05
Pretty URL en.yts-official.mx/static/yts/style/modded1.js?yify=1 IP 172.67.202.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:05:18 Last Seen2024-05-05 15:03:13 Times Seen141 Hash 60de675fcd2844a3ffbb68550d303076 8a53cc2f554a8ef1f58f3fd1996a3c3552ea5472 1c821bdab262418e3742bfa3c295c3b668724f7e8898b45638958a898bd93d33 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-06
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-06 22:13:41 Times Seen2325 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	en.yts-official.mx/static/yts/js/jquery.min.js?v=1	84 kB	2023-03-07	2024-05-06
Pretty URL en.yts-official.mx/static/yts/js/jquery.min.js?v=1 IP 172.67.202.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:08 Last Seen2024-05-06 16:01:50 Times Seen1785 Hash b0dc11d0a434aafe88908c7f33d71095 1327f754ff87d26bced46568543207e9df190aaa de4b3c3d1dc2506b6693f0f98884e1dc074cda9d66cab39b7b48a115fdfc4c0f Loading...

	vidsrc.to/assets/embed/min/all.js?v=661252ea	89 kB	2024-04-18	2024-05-04
Pretty URL vidsrc.to/assets/embed/min/all.js?v=661252ea IP 104.21.64.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 13:05:03 Last Seen2024-05-04 20:51:57 Times Seen32 Hash d96b31d56a687b6c3e3f63a3e0e9341e 16dab35a316db81bc8ae3b6e89cfa11bbf4501be 15e283994f683f2aec3d0d55989c76543f25a311f6402ce82e40f63a3042b40c Loading...

	en.yts-official.mx/movies/trouble-man-1972/	428 B	2024-04-18	2024-05-05
Pretty URL en.yts-official.mx/movies/trouble-man-1972/ IP 172.67.202.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 12:10:15 Last Seen2024-05-05 15:03:13 Times Seen63 Hash 6dcff6572b90a25babb8be2e3703eb97 58ca34991d0315b9cef9bb1e9bd8ba547602e5b3 28f374670828d65e52a411c90ba6dd9017599b26eca5ef05eb3278c2f4f81982 Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js	83 kB	2023-03-07	2024-05-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:54 Last Seen2024-05-06 19:05:31 Times Seen1591 Hash a0805bca912ec901f2a7096228b62d46 3233fd01d87fba457eaad8dcbc289f75b170f814 19126b874a32753d42c12dfa6c17892bfd93820a5a5100ba1b34da4d07599b49 Loading...

	unknown	1.3 kB	2024-04-18	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 12:10:15 Last Seen2024-05-05 15:03:13 Times Seen20 Hash c49d905a401c8300d3a430b90f647172 abbb3b563239dfe2eb172377985ef6f5fe9db5a6 55c0ad517dc805ddffa8f13a2614bc0217b201e44cbfb2e9fc900dd42c4120c4 Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js	84 kB	2023-03-07	2024-05-06
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js IP 104.21.70.253 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-06 10:02:15 Times Seen16005 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-05-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-06 20:47:23 Times Seen266618 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	unknown	34 B	2023-04-11	2024-05-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-06 21:47:02 Times Seen76283 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js	82 kB	2024-04-26	2024-04-26
Pretty URL growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 15:05:09 Last Seen2024-04-26 15:05:09 Times Seen2 Hash f6e38c9c4c26c9489b2b44890acea9f8 4430d5fd7686a894ba820015f184c358a44955f8 065b33233c0ed1844f9b180d0972dcd0a63828398fd463734eb5b427cb71f73e Loading...

	growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js	44 kB	2024-04-26	2024-04-27
Pretty URL growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 15:05:09 Last Seen2024-04-27 22:10:10 Times Seen6 Hash d0c5abace79f8e0cefbecbb5bdbc99eb 16efe01c5352196ac8aeafae4164ddc506e95a32 787ae31747d2fa4fee6f660dcb049e46aa163c60e09ecbd6c441d3fea4ad17fb Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-06
Pretty URL capaciousdrewreligion.com/advertisers.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-06 22:15:31 Times Seen37385088 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (67)

URL IP Response Size

en.yts-official.mx/static/yts/image/default_avatar.jpg

172.67.202.34

200 OK

2.4 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/image/default_avatar.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 100", baseline, precision 8, 60x60, components 3
Size
2.4 kB (2449 bytes)
Hash
e55b123ffd0b26cddf175715a76ff22d
0cbeba4643578c972bb79bf8e3b0b83a794df5bc
9412c68d8f2bad5e7abe0ca709a3258cf8c2b7a14bcc1654abf2316debf902cc

HTTP Headers

GET /static/yts/image/default_avatar.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 2449
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-991"
expires: Tue, 14 May 2024 07:11:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 1057985
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vjs3w474Hds7PRe3Wcc6nQMuCoVtqTy78ABGVjZoU2tIdr5Al7Sjege6lXpgC415hZw3XOHqAcOWFW7D64NhWE6iW3AYuZEIHFKiI46%2FWg9UfQ0hOqdu9EQpsH39clIorTx7z8M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bfb4a568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/images/website/icon-search.svg

172.67.202.34

200 OK

21 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/images/website/icon-search.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
21 kB (20578 bytes)
Hash
10c10634d2bb0228cd4d4e884613abb1
bdb85d8d0c1d13f0170cffe097c34c0b2f88ba03
1d3766a87712c953b7768cd1ffe2146e07e9bd555cd894c9eb0bdda6c0e6baf6

HTTP Headers

GET /static/yts/images/website/icon-search.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-37e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wXniEG6cyPmdU%2BHX0DGoXDkEyB4ibcLabJCDjp91%2FZYFkJXPj5XS%2FQ7SLegxRWvXUfYc%2BstJYxJFb55HTEFb9kKqtrN0AOHz8bJHndXOHg%2BcWOnyCUgouYSKQDXqN63UAF4dWok%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdcfe568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/js/jquery.min.js?v=1

172.67.202.34

200 OK

54 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/js/jquery.min.js?v=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JavaScript source, ASCII text, with very long lines (32025), with CRLF line terminators
Size
54 kB (53878 bytes)
Hash
b0dc11d0a434aafe88908c7f33d71095
1327f754ff87d26bced46568543207e9df190aaa
de4b3c3d1dc2506b6693f0f98884e1dc074cda9d66cab39b7b48a115fdfc4c0f

HTTP Headers

GET /static/yts/js/jquery.min.js?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-1497d"
expires: Sat, 27 Apr 2024 00:40:37 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4s2f0lsNVqcb6u4aR7O3RRBFvWW8l7XGvryB0%2B1pu6SbnWObE30SyNoGyOvQV3KlwGksxc%2BI5D%2BLgGvq4DyW71sUXnr5DLFcE0VEGDNF0KYVJsxfv8zryJQntbD8gTXLFI8TAvE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77bfb49568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/poster/trouble-every-day-2001.jpg?v=1

172.67.202.34

200 OK

26 kB

URL GET HTTP/3
en.yts-official.mx/movies/poster/trouble-every-day-2001.jpg?v=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3
Size
26 kB (25744 bytes)
Hash
f483a5e623f3ca839685880a84a123a8
21b6cf2f2e1512913e7c3432ed9186fe6fb0d8de
3dd9784590343d71ae4ddf2d2d93a61d60444775e7bf8eb318279318cc18da14

HTTP Headers

GET /movies/poster/trouble-every-day-2001.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 25744
last-modified: Fri, 29 Oct 2021 19:18:36 GMT
etag: "617c490c-6490"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qXPhTpEWBS4zezoOs%2Fwg3MFIH8yR9EBnhnZNiW4%2FuJkBYbr92MNbGHc3lhsjQedRi1GjxEeFYVjPTZMVlc31v%2BBdYys%2BWwtZjd66YfAuTX1Rvzd3j9qSSOOcoV7LxqcOi4yLlGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bdb1f568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot3.jpg

172.67.202.34

200 OK

23 kB

URL GET HTTP/3
en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot3.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x188, components 3
Size
23 kB (23222 bytes)
Hash
7f27393651cbbe0065cc15c458947ce4
6af01c5f65c39051c778c05301932af792997997
1a2bd522fc47fb9d70668e34066ea2d2c8e36ccc829441eaff78a25bef6d66a4

HTTP Headers

GET /movies/screenshot/trouble-man-1972-medium-screenshot3.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 23222
last-modified: Sat, 30 Oct 2021 23:49:19 GMT
etag: "617dd9ff-5ab6"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IiiByVJy1f4qdUpvvWjjxVOWorBKP1aDBsWmIVDdTSgCN6VKUV01mVQScrY%2BnhKDpIatLoVK4bbiWzu0prpzVGWFF%2BmaU3Lat9BGilyIEQbQ3gn6YuYiT%2FUZxUBV26G%2F0vfyWFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bfb48568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/style/modded1.js?yify=1

172.67.202.34

200 OK

72 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/style/modded1.js?yify=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JavaScript source, ASCII text, with very long lines (65452)
Size
72 kB (71764 bytes)
Hash
60de675fcd2844a3ffbb68550d303076
8a53cc2f554a8ef1f58f3fd1996a3c3552ea5472
1c821bdab262418e3742bfa3c295c3b668724f7e8898b45638958a898bd93d33

HTTP Headers

GET /static/yts/style/modded1.js?yify=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript
last-modified: Mon, 19 Feb 2024 03:18:38 GMT
vary: Accept-Encoding
etag: W/"65d2c88e-27b24"
expires: Sat, 27 Apr 2024 00:40:37 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VSYoju%2FqGCEUHx7H7uV5C7TCj%2FIB%2Fj1GOJS1mLTLHq9tPi0Rios%2BtdjxV3PdgET7KBFfYVnLHBGTqYf1X2yBkVvv9PM6U2iaujzy%2BZtVFVLSzB6xCIbberttRUIU1vicj%2Fs3OHk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77bfb4c568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js

104.17.25.14

200 OK

19 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65299)
Size
19 kB (19448 bytes)
Hash
a0805bca912ec901f2a7096228b62d46
3233fd01d87fba457eaad8dcbc289f75b170f814
19126b874a32753d42c12dfa6c17892bfd93820a5a5100ba1b34da4d07599b49

HTTP Headers

GET /ajax/libs/bootstrap/4.6.2/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 19448
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62d72277-4bf8"
last-modified: Tue, 19 Jul 2022 21:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 36654
expires: Wed, 16 Apr 2025 13:04:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tThI5vAJxVWUbXbdTjdRG%2BOaMqU4LaWEMWfpQYBfv6pxKWSvB0fiN2JjqLVB98Xd7aKtvtZCGyxiYFfjCHIuDZJYyXbNki6KB2AyhBi2Jgbnj9JnLCrkC3xXOb1OA98n3677%2BMA%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a6c77d8c30568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css

104.17.25.14

200 OK

19 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
19 kB (18752 bytes)
Hash
ded1c367363e8b20bdc6a19b8350a737
8c06d82739d14b094ff6d9036021a252bd1d985d
1edb1725a9ea8ca4dcf2f5508cee183218aa1685e47c1b23056717f754f58ebf

HTTP Headers

GET /ajax/libs/font-awesome/6.4.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/css; charset=utf-8
content-length: 18752
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6421d693-4940"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 31865
expires: Wed, 16 Apr 2025 13:04:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FckI5iPHPKo1MbjHv4aOI%2F9P7xoPTZK4%2B%2BHOsz5xuKzXvrej8UWJv21AOraAjLISTidkgJQghtlRyRS0ZIG4MX9ecdQlOTeGGlLyiGcz9gnFB0wmnHGc19L%2F7DlV%2B6oIR2yAVkZc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a6c77d8c2d568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 37055
expires: Wed, 16 Apr 2025 13:04:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MLDX82dH4GioO%2BepYcIRJ7cuxcXH9vsuCIDwMIw45QHkwaPNN5YwOZE1dJ7wRXvyo%2FXt66pTDA8jPyToh3ZwvUKKZ7zZfbst5glAN2d8LYq1WUfX4hPCx0rS5OtJZlatsI9bOuaH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a6c77d8c32568f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

en.yts-official.mx/movies/trouble-man-1972/

172.67.202.34

200 OK

44 kB

URL User Request GET HTTP/2
en.yts-official.mx/movies/trouble-man-1972/
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1063), with CRLF line terminators
Size
44 kB (43668 bytes)
Hash
9ed4f55c158cef7ff5b78711d8c8f869
4d02f3f2c46234ee5677aa6b320f049640759ba1
deed1bd4a257cad461369198067b3bf7f6943e0e2090c198734fb66436c51aea

HTTP Headers

GET /movies/trouble-man-1972/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JrPO3mgO7vXjHBe168fbzUYJ7a3l9eJk6iW72LlPW4%2Ba3sfhFgv4%2F81ugs3pOouiUSv9xq7HKp1drS%2BDsB8ds7H1am2y7LeZWekLG%2BeslciNHVQ2B1x0f5nq94o3suz9l63H%2BZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c7790c3db505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

en.yts-official.mx/movies/poster/trouble-2019.jpg?v=1

172.67.202.34

200 OK

35 kB

URL GET HTTP/3
en.yts-official.mx/movies/poster/trouble-2019.jpg?v=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3
Size
35 kB (35297 bytes)
Hash
138a92bfcbc6e25447b1642169eecaf6
ad4cd3942c57ca6405dd3235a61c837eec303879
f5314e5fa10ebedd66f2d72d27d7297402443e32d4c8c4c682392e7ab7db68cd

HTTP Headers

GET /movies/poster/trouble-2019.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 35297
last-modified: Fri, 29 Oct 2021 12:29:25 GMT
etag: "617be925-89e1"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qvWoWSjJUrJ49PsUcdM74khfAftC4JJsJuB9gkWkRlOTTvWuWrdQWoyyUv6gjGCdXinzD099Cl10NHstlJQvYuRmrqN069HgG%2Fl9ZdLJy27zuHPkqgCrMchn6IpfSTUper8f0Io%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77beb36568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/poster/nothing-but-trouble-1991.jpg?v=1

172.67.202.34

200 OK

39 kB

URL GET HTTP/3
en.yts-official.mx/movies/poster/nothing-but-trouble-1991.jpg?v=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3
Size
39 kB (39155 bytes)
Hash
1fc887f3bc904d6f6bd03809fe9c99b9
9bae7ebb04c5b7c8246ee14d78a019b5e890f21c
c7560453be49bfcb49858374e6af63585f86a52f4ef7435a8d1d04211d711500

HTTP Headers

GET /movies/poster/nothing-but-trouble-1991.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 39155
last-modified: Fri, 29 Oct 2021 07:56:08 GMT
etag: "617ba918-98f3"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gEAdIS%2BNnrERS%2FfPX2XnK76TxBQ5Sx3jcxxJPJoh1DYhR0S0OdwMJIdjHTXi2gA%2B06iXomistycUDY2hzQbQqC0QBvpH2CRRtp%2B%2FhdRS0%2B931GgChust5Ii%2BuJIpU5oPqjlkUvo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77beb37568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot1.jpg

172.67.202.34

200 OK

24 kB

URL GET HTTP/3
en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot1.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x188, components 3
Size
24 kB (23854 bytes)
Hash
18120c6437f74df24f9dec3b338efbf1
9182ff7f05fb92c58f7ccdffb3733bc6b2ea6a97
f1be5c8eed483a610b0e1fc5d67e8dcc8ff7a363012fe1fb241e46aa0bd21f5d

HTTP Headers

GET /movies/screenshot/trouble-man-1972-medium-screenshot1.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 23854
last-modified: Sat, 30 Oct 2021 23:49:17 GMT
etag: "617dd9fd-5d2e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o1%2FZ97zi1Y3zWEFwYgGNYpdgZ7yLanhXEYnLOgeXmZGqwX%2FrAeTWrq3ItbnoDNU9TVI0xiovzqvkfeIpMqWMpIMKYDPwVX%2BgXs7%2BGh%2F0KRPgjibKLYNdg8quk3OGbntr%2BQBLbxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bfb45568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot2.jpg

172.67.202.34

200 OK

22 kB

URL GET HTTP/3
en.yts-official.mx/movies/screenshot/trouble-man-1972-medium-screenshot2.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 350x188, components 3
Size
22 kB (22067 bytes)
Hash
574c4b467aa64da6992fee81ad54cde4
79b21d41d550a1e21d52a185b6f4c9eb6db053ec
031e3dc69cab17168d1a411d39dfdfef038f8419d9dddf8effae9beed2103f28

HTTP Headers

GET /movies/screenshot/trouble-man-1972-medium-screenshot2.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 22067
last-modified: Sat, 30 Oct 2021 23:49:18 GMT
etag: "617dd9fe-5633"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fxE11gG%2B54cfGuslxyLOotC4tFvivuwJ4h7lrvQZHkhMnurUR4hyICM2XWVXqWWBacDemBLhpRI8lcqJOieQhasVgfsVVQHbUtlbrvqrugD4aYLrkNFlsXM701H2reU2IanvXmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bfb46568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2

172.67.202.34

200 OK

3.6 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/fonts/icomoon.woff?fmg7s2
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
Web Open Font Format, CFF, length 3560, version 0.0
Size
3.6 kB (3560 bytes)
Hash
4e54891305c71736de2da03f14b57434
fbf29db32b5514cad7a908167ce63c76a91a2f12
332ec1d337a38ad421deff49f3585da56563253756da3870b26b46bd025f96e4

HTTP Headers

GET /static/yts/fonts/icomoon.woff?fmg7s2 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/fonts/fonts.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: font/woff
content-length: 3560
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-de8"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YnZb2M6M9Y4agy7IhoS%2Fr1ZzHbXMoLFQK0gyTNTd2HoRecQZ1DzZasgs3uN%2FsyS5KfXnl723ZFZsxI7n7QSQqfzZ%2BUVQEsuGKnmRXbY6qsCWiq2xr3%2B8xjmpRHX%2F3GuGmg2vraw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cfd52568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/images/website/1080p-quality.svg

172.67.202.34

200 OK

25 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/images/website/1080p-quality.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
25 kB (24649 bytes)
Hash
634e5a7bc26a159347b0467a54722675
579c580fb208d3b38725dc4a14d1dc52dea203fc
42e51d1c340334256885e2518dddfe787bc86afafa7f91bc9074f5a01ab41ff9

HTTP Headers

GET /static/yts/images/website/1080p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-b77"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ulHnctVZfNTMai5dsYD7n7%2BP1WGokD9J%2FV8n5Zcg3A4BBUFuPHUgiFKVXwX4qGgopN7UPxEDY9o5IjzRO9JER3vW16QIrYU7oPNZBmTgsYftXOTGACGFzgxD3pBZ%2BerbHDDYkzo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdd07568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.163

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:14:40 GMT
expires: Sat, 26 Apr 2025 06:14:40 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 24593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

en.yts-official.mx/movies/cover/trouble-man-1972.jpg

172.67.202.34

200 OK

41 kB

URL GET HTTP/3
en.yts-official.mx/movies/cover/trouble-man-1972.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 896x482, components 3
Size
41 kB (41282 bytes)
Hash
515d72999734bc967c9d37422784cd44
9cd9f55760ae1e0de5d453de02274c76d39bf2c5
8bf59976c010f335708376f565abad5048b1b29b06b570e07be5f01959b2b68e

HTTP Headers

GET /movies/cover/trouble-man-1972.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: image/jpeg
content-length: 41282
last-modified: Sat, 30 Oct 2021 23:49:15 GMT
etag: "617dd9fb-a142"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SqOs5VPdpYMEFRd%2BhZ7koUDqTSarvN2cSmrylSTFwQOw8s3ZJqJWk%2B6l1FWiDKPKyajgwkU0KqRxAaU2NbrEZlEdlGm9UkJEeaTv9th3ITL73lzwR2w467aeZrTKOMVVyVuJIk4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdd03568d-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2

104.17.25.14

200 OK

150 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150124, version 772.256
Size
150 kB (150124 bytes)
Hash
c64278386c2bbb5e293e11b94ca2f6d1
6b99aa650bd12a36caa14e0127435d8f4cd3ba73
7152a6933ee3d690ec2af3d09da9d701723d16aa3410a6d80f28ff8866f3b880

HTTP Headers

GET /ajax/libs/font-awesome/6.4.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidsrc.to
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150124
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "6421d693-24a6c"
last-modified: Mon, 27 Mar 2023 17:46:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 171670
expires: Wed, 16 Apr 2025 13:04:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vPzc9aOvlZtsvl8M8Ze2Jy%2FamWis2a7QiXGKQaaM34LqboQXaK5BJnQYD76ixrBcniZJTg5ZSlA7mCNvS7ELHqmTQuKcSb29%2BhAVtyZw6DFesLQJsVofRRQzKt4le2SYKucWd%2Fi1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87a6c77eef83712e-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/poster/trouble-2017.jpg?v=1

172.67.202.34

200 OK

36 kB

URL GET HTTP/3
en.yts-official.mx/movies/poster/trouble-2017.jpg?v=1
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3
Size
36 kB (35506 bytes)
Hash
23e47a2468a57efbccc15b77d0451552
ec324a445df003fb7772c66b8af8cfe3251359d8
8c48756f55d4ce3187065dd9cacb9c606b4046c2b3548aa07dbf4565e9015c65

HTTP Headers

GET /movies/poster/trouble-2017.jpg?v=1 HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: image/jpeg
content-length: 35506
last-modified: Fri, 29 Oct 2021 01:15:55 GMT
etag: "617b4b4b-8ab2"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NeGk%2BSd3r8zvaQUESjvMjggO65JI%2B1Zz8hMdfC1DEvbLgyJoeZWcUQ2NO7xQ5%2Btk8zCFYJ5UxbjM46rMkKHqa7qArniVovn%2FRRCCoYXz9IAe6tpm08IqpjONOtmOT348GXa7nTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77beb39568d-OSL
alt-svc: h3=":443"; ma=86400

growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js

192.243.61.225

200 OK

16 kB

URL GET HTTP/1.1
growingcastselling.com/0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectgrowingcastselling.com
Fingerprint3E:B6:D3:62:BC:57:AD:19:9E:FA:67:C4:B3:FA:10:7C:98:4A:71:2B
ValidityThu, 18 Apr 2024 13:01:11 GMT - Wed, 17 Jul 2024 13:01:10 GMT

File type
JavaScript source, ASCII text, with very long lines (44024), with no line terminators
Size
16 kB (15787 bytes)
Hash
d0c5abace79f8e0cefbecbb5bdbc99eb
16efe01c5352196ac8aeafae4164ddc506e95a32
787ae31747d2fa4fee6f660dcb049e46aa163c60e09ecbd6c441d3fea4ad17fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /0a/2f/9b/0a2f9bfefa2d59b6782f748beec9f30e.js HTTP/1.1
Host: growingcastselling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5c5555aad794b34dc7237ac8f9b6401d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js

192.243.61.225

200 OK

30 kB

URL GET HTTP/1.1
growingcastselling.com/b1/27/0e/b1270e96b85c3dd200807d09a940c676.js
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectgrowingcastselling.com
Fingerprint3E:B6:D3:62:BC:57:AD:19:9E:FA:67:C4:B3:FA:10:7C:98:4A:71:2B
ValidityThu, 18 Apr 2024 13:01:11 GMT - Wed, 17 Jul 2024 13:01:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29907 bytes)
Hash
f6e38c9c4c26c9489b2b44890acea9f8
4430d5fd7686a894ba820015f184c358a44955f8
065b33233c0ed1844f9b180d0972dcd0a63828398fd463734eb5b427cb71f73e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b1/27/0e/b1270e96b85c3dd200807d09a940c676.js HTTP/1.1
Host: growingcastselling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_layer=1; expires=Sun, 28 Apr 2024 13:04:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1b493e3394cdc953dd5198b2c203c65
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
13de26d0eeafa12f1023bea2afdae8ca
b4e3dc27a072edba3b0499663966d3e9ccfd8074
4692ab0941d993ae6f2ee5f97b5db65858544156d0c95bc80521edb644f52044

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; expires=Mon, 24 Apr 2034 13:04:33 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

35.158.46.84

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
35.158.46.84:443
ASN
#16509 AMAZON-02

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
a5df3cc1903638ba6c14b77fb11ba8c5
8c626c4dd76ba22a23a0a26015b24d7e560a5007
455bb5be37e652ae783e6b396437178a48d9a2aac4325f54e4a6f6b5f8600389

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://en.yts-official.mx
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=38a0aa53-cf53-42d8-b1bf-553eb1867f9f:3:1; expires=Mon, 24 Apr 2034 13:04:33 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

200 OK

28 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27964 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ad73060b2091d1d3ee4dc30b8c850c59
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 26 Apr 2024 13:04:33 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8sn4gZMFINyMKngpHWu7yyieedeuzt9AGzMWEqk4np2QV70R4DkuN2eqi1jcNyDmd3Iq7P9QYjEX0%2BoK3BV36AUsvUFCd8s6%2Bp4R%2B4zLYKorS9hOmOlHDko8TdxEq%2BS8zD4ssg6kqawl5nQDXW52%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c781ca44b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png

172.67.202.34

200 OK

7.0 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/image/apple-touch-icon-180x180.png
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced
Size
7.0 kB (6973 bytes)
Hash
f87afcf11d459620ff02da6112365db2
d09e6d4e7db706569474bfb7ec93f31ccbd6ed69
a70913fad67537f16d871e4c456c8f4484106f6d4ef3e12fa3c3b2eceefee508

HTTP Headers

GET /static/yts/image/apple-touch-icon-180x180.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=38a0aa53-cf53-42d8-b1bf-553eb1867f9f%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: image/png
content-length: 6973
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-1b3d"
expires: Mon, 20 May 2024 16:27:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 506223
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TwWQsm3U5jepp2UzDBjtenHZfo7%2F9qGmm2gnZbuuWbbdKO9%2F6dJj3ZufX6tL1DQsi9JtfSCpKuVv1kah%2FrcHFoUuVr488W58U9smj2UMdaPWruTpAodQDP2BkTWY%2BWliBwpGFGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c7843a5d568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/image/favicon-16x16.png

172.67.202.34

200 OK

619 B

URL GET HTTP/3
en.yts-official.mx/static/yts/image/favicon-16x16.png
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced
Size
619 B (619 bytes)
Hash
ea830fdd4f9a6d19aa7455dabdac987a
b0d567d6b4d40959e1bd44032f6bc2331057b319
71148160c085a70d1af7708c1d52cfcf39f8ef6e4ce13f0f20c080b2e19195db

HTTP Headers

GET /static/yts/image/favicon-16x16.png HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=38a0aa53-cf53-42d8-b1bf-553eb1867f9f%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: image/png
content-length: 619
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: "65d33152-26b"
expires: Mon, 20 May 2024 20:01:08 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 493405
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ukyxm87YVn7DbYDVd0HQ2CYcYCcACdsHVRmD3yjmbc2pHEPBKadU%2BFa%2BeN6wkF9DVnvKz4LFSweyeq5gS4jw2SyJjbrUBztvfEDSGAh%2Bk8U83b6E8IbMHfQerEjsQ86pnjcIX18%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c7843a5f568d-OSL
alt-svc: h3=":443"; ma=86400

chroniclesugar.com/pixel/purst?dl=0&th=0&sc=0&rs=1390&rd=1390&fd=921&bv=24.4.7925&tmpl=70

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
chroniclesugar.com/pixel/purst?dl=0&th=0&sc=0&rs=1390&rd=1390&fd=921&bv=24.4.7925&tmpl=70
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectchroniclesugar.com
Fingerprint10:4E:AB:21:CE:9D:B4:D1:EE:98:F9:04:AD:CE:0E:B1:15:57:C1:E2
ValidityTue, 23 Apr 2024 10:51:42 GMT - Mon, 22 Jul 2024 10:51:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1390&rd=1390&fd=921&bv=24.4.7925&tmpl=70 HTTP/1.1
Host: chroniclesugar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

capaciousdrewreligion.com/advertisers.js

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 13:04:34 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: efebd43f53e75dff4f0cb7301b178696
Strict-Transport-Security: max-age=0; includeSubdomains

unseenshingle.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=8fafa60a-619c-4a22-8985-88c528b90521%3A3%3A1

172.240.127.234

200 OK

8.3 kB

URL GET HTTP/1.1
unseenshingle.com/sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=8fafa60a-619c-4a22-8985-88c528b90521%3A3%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type
JSON text data
Size
8.3 kB (8261 bytes)
Hash
d886245b7d14bd286dd9aa07d59a9822
6e668fc07940a11d94873c66b8a7e1916f57acdf
97a5d5460358d3f48f24164347ec3191218093ce8cb4009990a5e310817616ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=0a2f9bfefa2d59b6782f748beec9f30e&uuid=8fafa60a-619c-4a22-8985-88c528b90521%3A3%3A1 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:34 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://en.yts-official.mx
Access-Control-Allow-Origin: https://en.yts-official.mx
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16587847; expires=Sat, 27 Apr 2024 13:04:34 GMT; secure; SameSite=None
uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; expires=Fri, 03 May 2024 13:04:34 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 27 Apr 2024 13:04:34 GMT; secure; SameSite=None
uncs=1; expires=Sat, 27 Apr 2024 13:04:34 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 27 Apr 2024 13:04:34 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 27 Apr 2024 13:04:34 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e0796f4b4356459784fb4588ddbe1628
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

en.yts-official.mx/movies/trouble-man-1972/

172.67.202.34

200 OK

6.8 kB

URL User Request GET HTTP/2
en.yts-official.mx/movies/trouble-man-1972/
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1063), with CRLF line terminators
Size
6.8 kB (6786 bytes)
Hash
9ed4f55c158cef7ff5b78711d8c8f869
4d02f3f2c46234ee5677aa6b320f049640759ba1
deed1bd4a257cad461369198067b3bf7f6943e0e2090c198734fb66436c51aea

HTTP Headers

GET /movies/trouble-man-1972/ HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qHHokB9BADVcmG0mDbI80a8gNMepDDEigSwCMnD7CTXwQnVZoWkXR5Bok8pUMxwh8nrRKMYwQdKroAuFUwqWCGWPc0X9NDsNdJXqfPJOaHpMzSimWhuFKflGeVA9KXtfucwfAuQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c7819dfa568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unseenshingle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzuY7fSAoe1BWYQ4eVjST7p6Znh73sBhjlmjchN0VvUl1V%2FWkTE1XU9U1PckpuCB7HL147TyTH6iL7F4FF%2BkseAgIGU85mIv%2FgcLeFJlxcPQ91Pu%2B9TxFPfXU%2B9mBvSQ%2BLL1YfV%2FtCSnpcqvu1q5%2F5Hk3ahsitYPaIAw%2BDpo3arr%2FZieou6%2FVbvF4Ry37rue6nuvV1oTmiRosT0CI7GHHq3fcetOve60mBvq%2FvbEODHXA%2BpfkBQg2XnzqXIWIK6S9R6vc7OQqe%2BOdnpU0Vxp9dvJBupOqIkVvXibaQZKezNhQ5nztCVR6NJUL1f%2BHGIkxcX58gig9mYlE1D%2Bc6owkeIqI%2FR9FvwKXFQStEKv7EOycADHD7U2kvePbShd092%2BUTtAxWXz2O0QxJou%2FXEXa%2B3ZFikHtrpI2Fyo1GCQlxKCC6FbI7CnyvQWI4hRx%2FikE%2B4ksP9tA2jvcNFJBsItXw4QmNHDpUuB14qUm9f2lsBO2lsIwbvlh1HFbvjc1SIgKIqkg%2BRDUXIE1DqxwYBMHNnPQYxe12PO8tsti6oadOG6wNo8C5nq0nXjUc4MQNp68YYg8GyKWQ8R6H5nex474%2FLz1LrT9AWa7hGEOTE7QZyUKTlAYgoISFIKgyAmKfnnEpPFNecyksZE3y%2F4sN8qRyrsH9EjlXZ4SUD2EZuVBdkmen3r4x8u3sMMvai71k06U8IT6rNWJgnboJ%2B1mGHEed5KGy2FECWEWQI2DPTEmL62%2FiEyMyf%2B%2B%2FBMRPYWRp4iFA2pfAS1K0O0Se%2BnJbm7qKuVgqkSWLyLfdQ7kJbk2vXx98zF4fHbz18Y0EOsSmS7xiXhK0JUPRndUQQ7vqMKQx5tZLnpij04%2B925Oc37l6%2Ff4bqE0W181w6%2FeiifApHx4j5t8g6ZMpF1DvlkRjHG9pnTMyffr5kMebVmzvWJ1arONrbfX1nuZ5sYIlVagkzn9TSMWY%2FLctXvTub3%2B3RaErqBtiZ49I7OAUBXibB8mm%2Bs3ikDLOSfKHBS2HGk%2Fmm9KQSD5vKdRCfOvPprXI00np6koD8wDdPUCaH4faa9EX5foyxJUDmHslVGe6bObP89kRHJhFEm9cBhJLb%2BY2jxZHsGIi1q70XBp0Gl57Tbl7ajph0ngMUr9ZuAHAW0gN%2BPk9ePoLwAAAP%2F%2FAQAA%2F%2F8YkjhhkQQAAA%3D%3D

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
unseenshingle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzuY7fSAoe1BWYQ4eVjST7p6Znh73sBhjlmjchN0VvUl1V%2FWkTE1XU9U1PckpuCB7HL147TyTH6iL7F4FF%2BkseAgIGU85mIv%2FgcLeFJlxcPQ91Pu%2B9TxFPfXU%2B9mBvSQ%2BLL1YfV%2FtCSnpcqvu1q5%2F5Hk3ahsitYPaIAw%2BDpo3arr%2FZieou6%2FVbvF4Ry37rue6nuvV1oTmiRosT0CI7GHHq3fcetOve60mBvq%2FvbEODHXA%2BpfkBQg2XnzqXIWIK6S9R6vc7OQqe%2BOdnpU0Vxp9dvJBupOqIkVvXibaQZKezNhQ5nztCVR6NJUL1f%2BHGIkxcX58gig9mYlE1D%2Bc6owkeIqI%2FR9FvwKXFQStEKv7EOycADHD7U2kvePbShd092%2BUTtAxWXz2O0QxJou%2FXEXa%2B3ZFikHtrpI2Fyo1GCQlxKCC6FbI7CnyvQWI4hRx%2FikE%2B4ksP9tA2jvcNFJBsItXw4QmNHDpUuB14qUm9f2lsBO2lsIwbvlh1HFbvjc1SIgKIqkg%2BRDUXIE1DqxwYBMHNnPQYxe12PO8tsti6oadOG6wNo8C5nq0nXjUc4MQNp68YYg8GyKWQ8R6H5nex474%2FLz1LrT9AWa7hGEOTE7QZyUKTlAYgoISFIKgyAmKfnnEpPFNecyksZE3y%2F4sN8qRyrsH9EjlXZ4SUD2EZuVBdkmen3r4x8u3sMMvai71k06U8IT6rNWJgnboJ%2B1mGHEed5KGy2FECWEWQI2DPTEmL62%2FiEyMyf%2B%2B%2FBMRPYWRp4iFA2pfAS1K0O0Se%2BnJbm7qKuVgqkSWLyLfdQ7kJbk2vXx98zF4fHbz18Y0EOsSmS7xiXhK0JUPRndUQQ7vqMKQx5tZLnpij04%2B925Oc37l6%2Ff4bqE0W181w6%2FeiifApHx4j5t8g6ZMpF1DvlkRjHG9pnTMyffr5kMebVmzvWJ1arONrbfX1nuZ5sYIlVagkzn9TSMWY%2FLctXvTub3%2B3RaErqBtiZ49I7OAUBXibB8mm%2Bs3ikDLOSfKHBS2HGk%2Fmm9KQSD5vKdRCfOvPprXI00np6koD8wDdPUCaH4faa9EX5foyxJUDmHslVGe6bObP89kRHJhFEm9cBhJLb%2BY2jxZHsGIi1q70XBp0Gl57Tbl7ajph0ngMUr9ZuAHAW0gN%2BPk9ePoLwAAAP%2F%2FAQAA%2F%2F8YkjhhkQQAAA%3D%3D
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzuY7fSAoe1BWYQ4eVjST7p6Znh73sBhjlmjchN0VvUl1V%2FWkTE1XU9U1PckpuCB7HL147TyTH6iL7F4FF%2BkseAgIGU85mIv%2FgcLeFJlxcPQ91Pu%2B9TxFPfXU%2B9mBvSQ%2BLL1YfV%2FtCSnpcqvu1q5%2F5Hk3ahsitYPaIAw%2BDpo3arr%2FZieou6%2FVbvF4Ry37rue6nuvV1oTmiRosT0CI7GHHq3fcetOve60mBvq%2FvbEODHXA%2BpfkBQg2XnzqXIWIK6S9R6vc7OQqe%2BOdnpU0Vxp9dvJBupOqIkVvXibaQZKezNhQ5nztCVR6NJUL1f%2BHGIkxcX58gig9mYlE1D%2Bc6owkeIqI%2FR9FvwKXFQStEKv7EOycADHD7U2kvePbShd092%2BUTtAxWXz2O0QxJou%2FXEXa%2B3ZFikHtrpI2Fyo1GCQlxKCC6FbI7CnyvQWI4hRx%2FikE%2B4ksP9tA2jvcNFJBsItXw4QmNHDpUuB14qUm9f2lsBO2lsIwbvlh1HFbvjc1SIgKIqkg%2BRDUXIE1DqxwYBMHNnPQYxe12PO8tsti6oadOG6wNo8C5nq0nXjUc4MQNp68YYg8GyKWQ8R6H5nex474%2FLz1LrT9AWa7hGEOTE7QZyUKTlAYgoISFIKgyAmKfnnEpPFNecyksZE3y%2F4sN8qRyrsH9EjlXZ4SUD2EZuVBdkmen3r4x8u3sMMvai71k06U8IT6rNWJgnboJ%2B1mGHEed5KGy2FECWEWQI2DPTEmL62%2FiEyMyf%2B%2B%2FBMRPYWRp4iFA2pfAS1K0O0Se%2BnJbm7qKuVgqkSWLyLfdQ7kJbk2vXx98zF4fHbz18Y0EOsSmS7xiXhK0JUPRndUQQ7vqMKQx5tZLnpij04%2B925Oc37l6%2Ff4bqE0W181w6%2FeiifApHx4j5t8g6ZMpF1DvlkRjHG9pnTMyffr5kMebVmzvWJ1arONrbfX1nuZ5sYIlVagkzn9TSMWY%2FLctXvTub3%2B3RaErqBtiZ49I7OAUBXibB8mm%2Bs3ikDLOSfKHBS2HGk%2Fmm9KQSD5vKdRCfOvPprXI00np6koD8wDdPUCaH4faa9EX5foyxJUDmHslVGe6bObP89kRHJhFEm9cBhJLb%2BY2jxZHsGIi1q70XBp0Gl57Tbl7ajph0ngMUr9ZuAHAW0gN%2BPk9ePoLwAAAP%2F%2FAQAA%2F%2F8YkjhhkQQAAA%3D%3D HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3a584c7d873964ab84953f9d1616bec0
Strict-Transport-Security: max-age=0; includeSubdomains

unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=114

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=114
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=114 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png

104.21.70.253

200 OK

591 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6220768
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2j9OWy%2BAvf3dEUUZpRRqx3oiA7Ezfhqfr5PO6dwfsd1SSVlIjTCfiWezEUynUkyklG63r64pyCCyus1hyZQ6iR6COx1%2BbIGz1MXoPZ4qf%2BBNcbm9cU51ILsO8gh5P6kPzGQQIM20%2FTE1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c78d3d4cb51b-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
1.2 kB (1220 bytes)
Hash
94bc3d50538ab0d9b2576d2b849d6121
885456ac4cdcd21c8fac8894fbb782c062cce02f
37f515514c6216e95504e7b8b99604dc5b282fa269b3fef9f7a5ad72814cb3e1

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 13:04:35 GMT
date: Fri, 26 Apr 2024 13:04:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css

104.21.70.253

200 OK

4.9 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
4.9 kB (4869 bytes)
Hash
3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 17229
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pltEj8AZQCcGYKbcycXw9fjirAKVtISuCIYUmxwGFiey4w6eCTUWwMq1Pvrt%2B9wPRP2S3ZDVYkUifSFeD%2BJJhYXPNEodeb%2F3IKeR7yvppjqDaXFYS4v9WdgDfbBs8Fr%2BpHeUR0YDNXz0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c78c9cf856ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png

45.133.44.10

200 OK

16 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
16 kB (16093 bytes)
Hash
14cf262fabfd850855c42847d14fe775
2fafa28f167f018a0fb1f261f47380c8810803c9
972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af

HTTP Headers

GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Sun, 28 Apr 2024 13:04:35 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

en.yts-official.mx/static/yts/image/logo-YTS.svg

172.67.202.34

200 OK

3.4 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/image/logo-YTS.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
3.4 kB (3385 bytes)
Hash
fdd85bfbf80d872ea41b942cf21d1db9
6a2d54565cbffa3af342a63931e412ad8837f92d
2234cb288342eab0edfb65ebda4189cf47b40a4b639a25af62c57c03f7ace459

HTTP Headers

GET /static/yts/image/logo-YTS.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Tue, 20 Feb 2024 02:51:28 GMT
etag: W/"65d413b0-5b34"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ELi3xuBaqxz1I1Ebj%2F8PKDUpBPPO25aSKNgxv9AgjVzHM9eV1656TIKwHwBXUVF3qg9EiVXXr2TXfX%2FA8mgfzYY2jhGmZflNFfgtOtXY510CxWoyuh5uTk51UHtSjKHSPKFXGrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bdb13568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css

104.21.70.253

200 OK

1.3 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
1.3 kB (1302 bytes)
Hash
039a6734d79ed9aa51cf81c52479c5fe
9cf29c4ea1a3880681d50c7228374f8073b7778b
a15bad73fc8907795285b78a4a1a1bf5e7f68b4d39988b9bb165444819cf9eb1

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 724072
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U6VaOnzYqOClgCLgTeyGga00ltSbe1IzlVqJZ5u1wBGzmssWphynHYIOLNbttlj6b1ozhnbpVj0s7BbuepqFD0PLWdrJNuMI5eeQHVwQYwstmpPIWGN7PC0lJ66pjZ%2BDm3cF2MRr0YrN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c78c9cfa56ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 267483
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:54:32 GMT
expires: Sat, 26 Apr 2025 05:54:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 25803
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

unseenshingle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzuZ3%2BoGg7EFZhTl4WNFMunu%2BetzDYoxZonETdlf0JvXVkzI1XU1V9%2FQkp%2BCC7HH04rXzTD5QF9m9Ci4yWfAQEDKecjAX%2FwOFvSky4%2BDoe6j3fet5inrqqfezg%2FyShMjpxer7Zk9pTZcbVb9y%2FaMguFHZUEner%2FSj5sfN%2Bo2K7b3Zblb91yq3JN8xy6Ef%2BH7gB5U1ZWVs%2BssTECp92A6qbb9aD6tBo46%2B%2FW%2Fvcg%2BOehC9S%2FIClBgvPvWuQvERku6jVel2MpO%2B8U431zQzFj1x8kGyk5giQXdextZDnJzM2DDufO0JTHI0lQvT%2B4fI1Jh4Pz4BS05mIsF6h1OdTEMmYOL%2FKHojSD2CoiNwcx9KnBOAC9zeRNI9vm1sQXf%2FRukEHZPFZ79DFWOy%2BMtVJN1vV7TqV%2B4anWfKJA79uITqj6A6I6T5KbK9BajiFDz7FEr8RJafbSDpHm46baDExatRTGPa9OlSM2jzpToNw6WoHTWWoog3woi1%2FUYYTA1SagQVj6DlANRdQe485MpDHnvIUw9dcVHhQRC0fMGpH7U5r4mWZE3hB7QVBzTwmxFyPnnDAFk6ANcDcLuP1O5jR31%2B3ngXNv8BbruEEx5cRtATJQpJUDiCghIUiqDICIpeeSS0C115LLTLWTDL4SzXyqHJOgf0yGQdmRBQO4AV5UF6SZ6fevjHy7ewIy8qPg3jNotlTEPRaLNmKwrjVj1iUvJ2XPMlnCqh3AKo87CnxuSl9ReRqjH535d%2FgtFTOH0KrjzQ%2FBXQogTdLrGXnOxmrmoSCWFKpNkisl3vQF%2BSa9PL1zcfQ%2FKzm7%2FWpgFuS6S2xCfqKUFHPxjeMQU5vGMKRx5vppnqqj06%2Bdy7Gc3kla%2Ffk7uFsWJ91Q2%2BeotPgEn58J502QZNhEo6jnyzooSQds1YLsn36%2B5DybZyt72S2yRPN7beXlvvplY6p0wyAp3M6W8WXI3Jc9fuTef2%2BndbUHYEm5fo5mdkFlBmBJ7uw6Vz%2Fc4QWD3nsNRDkZdDG7L5plYEWs57ykq4f%2FVsXg8tnZymqjxwD9CxC6DZfSTdEj1boqdLUD2Ay68Ms9Se3fx5JoPphSHTduGQaau%2FmNo8WR7BqYtKzRctJmPZYrLeqMeSC9ZoMJ%2FHnNVEFHFkbhy%2Ffsz%2BAgAA%2F%2F8BAAD%2F%2F5hG7YmRBAAA

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
unseenshingle.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzuZ3%2BoGg7EFZhTl4WNFMunu%2BetzDYoxZonETdlf0JvXVkzI1XU1V9%2FQkp%2BCC7HH04rXzTD5QF9m9Ci4yWfAQEDKecjAX%2FwOFvSky4%2BDoe6j3fet5inrqqfezg%2FyShMjpxer7Zk9pTZcbVb9y%2FaMguFHZUEner%2FSj5sfN%2Bo2K7b3Zblb91yq3JN8xy6Ef%2BH7gB5U1ZWVs%2BssTECp92A6qbb9aD6tBo46%2B%2FW%2Fvcg%2BOehC9S%2FIClBgvPvWuQvERku6jVel2MpO%2B8U431zQzFj1x8kGyk5giQXdextZDnJzM2DDufO0JTHI0lQvT%2B4fI1Jh4Pz4BS05mIsF6h1OdTEMmYOL%2FKHojSD2CoiNwcx9KnBOAC9zeRNI9vm1sQXf%2FRukEHZPFZ79DFWOy%2BMtVJN1vV7TqV%2B4anWfKJA79uITqj6A6I6T5KbK9BajiFDz7FEr8RJafbSDpHm46baDExatRTGPa9OlSM2jzpToNw6WoHTWWoog3woi1%2FUYYTA1SagQVj6DlANRdQe485MpDHnvIUw9dcVHhQRC0fMGpH7U5r4mWZE3hB7QVBzTwmxFyPnnDAFk6ANcDcLuP1O5jR31%2B3ngXNv8BbruEEx5cRtATJQpJUDiCghIUiqDICIpeeSS0C115LLTLWTDL4SzXyqHJOgf0yGQdmRBQO4AV5UF6SZ6fevjHy7ewIy8qPg3jNotlTEPRaLNmKwrjVj1iUvJ2XPMlnCqh3AKo87CnxuSl9ReRqjH535d%2FgtFTOH0KrjzQ%2FBXQogTdLrGXnOxmrmoSCWFKpNkisl3vQF%2BSa9PL1zcfQ%2FKzm7%2FWpgFuS6S2xCfqKUFHPxjeMQU5vGMKRx5vppnqqj06%2Bdy7Gc3kla%2Ffk7uFsWJ91Q2%2BeotPgEn58J502QZNhEo6jnyzooSQds1YLsn36%2B5DybZyt72S2yRPN7beXlvvplY6p0wyAp3M6W8WXI3Jc9fuTef2%2BndbUHYEm5fo5mdkFlBmBJ7uw6Vz%2Fc4QWD3nsNRDkZdDG7L5plYEWs57ykq4f%2FVsXg8tnZymqjxwD9CxC6DZfSTdEj1boqdLUD2Ay68Ms9Se3fx5JoPphSHTduGQaau%2FmNo8WR7BqYtKzRctJmPZYrLeqMeSC9ZoMJ%2FHnNVEFHFkbhy%2Ffsz%2BAgAA%2F%2F8BAAD%2F%2F5hG7YmRBAAA
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuuzuZ3%2BoGg7EFZhTl4WNFMunu%2BetzDYoxZonETdlf0JvXVkzI1XU1V9%2FQkp%2BCC7HH04rXzTD5QF9m9Ci4yWfAQEDKecjAX%2FwOFvSky4%2BDoe6j3fet5inrqqfezg%2FyShMjpxer7Zk9pTZcbVb9y%2FaMguFHZUEner%2FSj5sfN%2Bo2K7b3Zblb91yq3JN8xy6Ef%2BH7gB5U1ZWVs%2BssTECp92A6qbb9aD6tBo46%2B%2FW%2Fvcg%2BOehC9S%2FIClBgvPvWuQvERku6jVel2MpO%2B8U431zQzFj1x8kGyk5giQXdextZDnJzM2DDufO0JTHI0lQvT%2B4fI1Jh4Pz4BS05mIsF6h1OdTEMmYOL%2FKHojSD2CoiNwcx9KnBOAC9zeRNI9vm1sQXf%2FRukEHZPFZ79DFWOy%2BMtVJN1vV7TqV%2B4anWfKJA79uITqj6A6I6T5KbK9BajiFDz7FEr8RJafbSDpHm46baDExatRTGPa9OlSM2jzpToNw6WoHTWWoog3woi1%2FUYYTA1SagQVj6DlANRdQe485MpDHnvIUw9dcVHhQRC0fMGpH7U5r4mWZE3hB7QVBzTwmxFyPnnDAFk6ANcDcLuP1O5jR31%2B3ngXNv8BbruEEx5cRtATJQpJUDiCghIUiqDICIpeeSS0C115LLTLWTDL4SzXyqHJOgf0yGQdmRBQO4AV5UF6SZ6fevjHy7ewIy8qPg3jNotlTEPRaLNmKwrjVj1iUvJ2XPMlnCqh3AKo87CnxuSl9ReRqjH535d%2FgtFTOH0KrjzQ%2FBXQogTdLrGXnOxmrmoSCWFKpNkisl3vQF%2BSa9PL1zcfQ%2FKzm7%2FWpgFuS6S2xCfqKUFHPxjeMQU5vGMKRx5vppnqqj06%2Bdy7Gc3kla%2Ffk7uFsWJ91Q2%2BeotPgEn58J502QZNhEo6jnyzooSQds1YLsn36%2B5DybZyt72S2yRPN7beXlvvplY6p0wyAp3M6W8WXI3Jc9fuTef2%2BndbUHYEm5fo5mdkFlBmBJ7uw6Vz%2Fc4QWD3nsNRDkZdDG7L5plYEWs57ykq4f%2FVsXg8tnZymqjxwD9CxC6DZfSTdEj1boqdLUD2Ay68Ms9Se3fx5JoPphSHTduGQaau%2FmNo8WR7BqYtKzRctJmPZYrLeqMeSC9ZoMJ%2FHnNVEFHFkbhy%2Ffsz%2BAgAA%2F%2F8BAAD%2F%2F5hG7YmRBAAA HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c8f9ccb10206568499356cd2b559d4eb
Strict-Transport-Security: max-age=0; includeSubdomains

unseenshingle.com/pixel/sbs?c=1

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
unseenshingle.com/pixel/sbs?c=1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

vidsrc.to/lm/com/annulmentequitycereals/88/1d/c4/881dc4c310ba96ddca859431babfc89b.js

104.21.64.103

200 OK

36 kB

URL GET HTTP/3
vidsrc.to/lm/com/annulmentequitycereals/88/1d/c4/881dc4c310ba96ddca859431babfc89b.js
IP
104.21.64.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerGoogle Trust Services LLC
Subjectvidsrc.to
Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC
ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
36 kB (36372 bytes)
Hash
dfd4f2ca08065e25c1167236ab38dfd3
f9eb8e42871559803d4e092033775549833e6188
9c691f29f4a50452d431f7b877a8ddacd0b01ff519f0c57ad2689d7f2071b435

HTTP Headers

GET /lm/com/annulmentequitycereals/88/1d/c4/881dc4c310ba96ddca859431babfc89b.js HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt0069414/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-request-id: 1f9f3d565f1bc6185e9b3ec2ecdb049c
strict-transport-security: max-age=0; includeSubdomains
x-cache: HIT
cache-control: max-age=14400
cf-cache-status: HIT
age: 393
last-modified: Fri, 26 Apr 2024 12:57:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q2zHGi72vsPgOV%2FWD85qRMvFI4s2bAR%2BLO%2FX54qk01Il7XIEz0f5MbGT67KgYYCkueCA0nGlo4D%2BP%2F9tcS9qmHlXxVplxgDLQDcmTzjin9TcUUBkzDre7eGc0Cs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77d4c8456ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/images/website/magnet.svg

172.67.202.34

200 OK

9.7 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/images/website/magnet.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
9.7 kB (9669 bytes)
Hash
552614a7d6c75ee483127af16c07ebc0
58148fe9d06f27fbc82e6675f05ebe2b85d73ea3
af6135bd77515be4540390717935575c9afba38868a1d13d88f5474ff00f6ea9

HTTP Headers

GET /static/yts/images/website/magnet.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-3d6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CoMgEcnz3Nk7bO81PN8ZKXlIqkMRNSFnVWjs1MhI%2Fhf1MuMF8%2B5elTgOAg1wPIMH8lj5El4rXigowazsWQZNVejhip6sR9weq2i4Y1t6Q4NJSifqUptA08E%2FIMUpZ3HbH0Rr9zE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdd16568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

vidsrc.to/assets/embed/min/all.js?v=661252ea

104.21.64.103

200 OK

89 kB

URL GET HTTP/3
vidsrc.to/assets/embed/min/all.js?v=661252ea
IP
104.21.64.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerGoogle Trust Services LLC
Subjectvidsrc.to
Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC
ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT

File type

Size
89 kB (88606 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/embed/min/all.js?v=661252ea HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt0069414/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: application/javascript
last-modified: Sun, 07 Apr 2024 08:02:12 GMT
etag: W/"66125304-15a1e"
e-cache: HIT
access-control-allow-origin: *, *
expires: Tue, 07 May 2024 08:02:31 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1659721
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FgQJb60NhcazKw7RfxC3lqhc9ENI0C%2BiFroumF6pQx3Li%2BX7pfEUGzpTNmtBja9GulLn%2FMgUAwgRapWoI7b2nuCgDF35CHynAsZgSTVBwl0pQUd3K2hFtqTJqAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77d4c8256ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js

104.21.70.253

200 OK

84 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JavaScript source, ASCII text, with very long lines (32025)
Size
84 kB (84380 bytes)
Hash
4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6220769
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qppgDTF3L%2FbF862QmOptOTon%2FyLN%2FivMWSOus2BS0ynSfy7SCRODz75jS1PNvLkvNQhviO2694ddIMs7Atltq9H1Blg39uJJuJ9CwlD7BG8qfsKUQIDQCUHbzlAHb%2BsANYTofL7Lm5lX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c78d4d59b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=37

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=37
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=37 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

vidsrc.to/assets/embed/min/all.css?v=661252ea

104.21.64.103

200 OK

80 kB

URL GET HTTP/3
vidsrc.to/assets/embed/min/all.css?v=661252ea
IP
104.21.64.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerGoogle Trust Services LLC
Subjectvidsrc.to
Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC
ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
80 kB (80314 bytes)
Hash
f1324118f0fb608e711acd4ad716b776
f47b8e053b4eb43556a1645eee13eee24e185a5f
9bba11d379f87fd61d8fbe66ee318f39a86f0dc796c67e1418043f63732c4487

HTTP Headers

GET /assets/embed/min/all.css?v=661252ea HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/embed/movie/tt0069414/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/css
last-modified: Mon, 31 Jul 2023 07:18:46 GMT
etag: W/"64c76056-139ba"
e-cache: HIT
access-control-allow-origin: *, *
expires: Tue, 07 May 2024 08:02:31 GMT
cache-control: max-age=2678400
cf-cache-status: HIT
age: 1659721
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TEsHAlefqT27bcx7QJB6%2F0%2F4NLgMUU4kRZwOTrh7aFSV8qqcaO6MVZp2s63JJ%2FmKndEcxV05XzFg%2FFftbk8wRFGUH6TB%2F8QcgwoTkriDnMsoAKgEg056aCv6c3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77d4c7756ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2

142.250.74.163

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20040, version 1.0
Size
20 kB (20040 bytes)
Hash
a61c670a24d6794a95a9712f0d12b656
c9b3114b27790109ec51508f51f1a033ccfe0812
a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6

HTTP Headers

GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:57:06 GMT
expires: Sat, 26 Apr 2025 05:57:06 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
age: 25646
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2

142.250.74.163

200 OK

20 kB

URL GET HTTP/2
fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20040, version 1.0
Size
20 kB (20040 bytes)
Hash
a61c670a24d6794a95a9712f0d12b656
c9b3114b27790109ec51508f51f1a033ccfe0812
a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6

HTTP Headers

GET /s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:57:06 GMT
expires: Sat, 26 Apr 2025 05:57:06 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:51:46 GMT
content-type: font/woff2
age: 25646
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=37

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=37
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=37 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext

142.250.74.106

200 OK

9.6 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (9902), with no line terminators
Size
9.6 kB (9646 bytes)
Hash
da660c7ad34dd81e9f9a9032cc68718a
6bc87a2b72cc76f4253e09a1b7d095f29dc12e13
67d1981c897a8c33dd993afbcd2384fbb40a755ae34e3f43e7bbfbd94c0555f6

HTTP Headers

GET /css?family=Arimo:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 13:04:32 GMT
date: Fri, 26 Apr 2024 13:04:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

en.yts-official.mx/static/yts/images/website/720p-quality.svg

172.67.202.34

200 OK

2.3 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/images/website/720p-quality.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
2.3 kB (2273 bytes)
Hash
0243315d20763efcf6b17f0d6b2ffb67
ab981c0c8a34d72f8f714be0eae96f404e434dd4
d7cccf166cfb73bded63e922e00ff99805a3ddbf0024a00904e39bdb3994f33c

HTTP Headers

GET /static/yts/images/website/720p-quality.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-8e1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1433
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2F%2FsB45FfUih7sPZYeCPP1uuqVb7vBc6Zw1C0ORQrw1QsKyKHzwZY9joT3pW9Ic%2Flmqj8RmqHd551eGHE%2FzUn8Ph7DKUseLojshvxn3QaEy5e54S4aH5wpZyPPhh68ajeLSRdWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdd1e568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap

142.250.74.106

200 OK

1.6 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Poppins:wght@400;500&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://vidsrc.to/embed/movie/tt0069414/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (1606), with no line terminators
Size
1.6 kB (1570 bytes)
Hash
af52a7e30ecc42e4484ea19a9adf765d
c4db1da944d399dbab91e367ac2a8724c31cd57f
f795d20ee3721e15c2fa2568b74a6d39cd16329e91d7026cd7b4aa79f45fea44

HTTP Headers

GET /css2?family=Poppins:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vidsrc.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 13:04:32 GMT
date: Fri, 26 Apr 2024 13:04:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2

142.250.74.163

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22052, version 1.0
Size
22 kB (22052 bytes)
Hash
f0e48ce2beda9e8cbd7d915bf1b1ae71
3dc1cfff1759b0959cc7fb17517651ec850d584d
b2504b3c20c2feb37e78773b788dd09a9cc43c9f36086bc1e2f83a6366ebaa34

HTTP Headers

GET /s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:23:09 GMT
expires: Fri, 25 Apr 2025 17:23:09 GMT
cache-control: public, max-age=31536000
age: 70883
last-modified: Thu, 14 Sep 2023 00:00:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=27

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
unseenshingle.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=27
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectunseenshingle.com
Fingerprint5C:8E:56:BD:15:63:AB:8F:CA:19:1C:DF:75:E6:D1:69:F8:D4:16:37
ValidityWed, 24 Apr 2024 15:14:20 GMT - Tue, 23 Jul 2024 15:14:19 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=27 HTTP/1.1
Host: unseenshingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Cookie: u_pl=16587847; uid_id2=8fafa60a-619c-4a22-8985-88c528b90521:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 13:04:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

en.yts-official.mx/static/yts/images/website/play-trailer.svg

172.67.202.34

200 OK

4.7 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/images/website/play-trailer.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
4.7 kB (4650 bytes)
Hash
0242c3a16be471023ee4e484a76cb850
811c46ab5800fc814b427e9469b5b55e7f41a35c
6f014889db48c67c7e651a9377b0415007ef9766fbf2ba90a1180b9e539c176a

HTTP Headers

GET /static/yts/images/website/play-trailer.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: W/"65d2c88f-122a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1434
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BZ4pRd8JuGbneUo6syLQdvrDyHA%2FiqwruD1PZuulFQXzhFZjiETFDycM8LxjnijoTZOx%2F9GSRHz4JQiJVTOZ7cKpulUenN0qPbI8XJZBlwGZ%2FGY3aCItT8tA1Ty2L0AX5t9zqp8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77cdd23568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/css/loading.css

172.67.202.34

200 OK

2.8 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/css/loading.css
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
ASCII text, with very long lines (3095), with no line terminators
Size
2.8 kB (2835 bytes)
Hash
a4e08ea672b525407c93c52dcedabbad
2d01194a908b02dff41147969f92027d83b082d2
ebde13ee7b0fe214ec069389b397750aaa5e58688b527e24ac69506cfdbb7704

HTTP Headers

GET /static/yts/css/loading.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-b13"
expires: Sat, 27 Apr 2024 00:40:37 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oCbJH%2B9mg5O2LkZtn8AkKIitKfz4Fj0nsxE13clGBj2AMFdl0siQKFgMyWUdUYDT40O%2BeRMcKlifJPv7XbvnZwClCcLBngvbNH3L1A00%2FjMOI9yLlUVD3bPxey11Kew%2Bb4ZT3Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77bdb11568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/movies/poster/trouble-man-1972.jpg

172.67.202.34

200 OK

37 kB

URL GET HTTP/3
en.yts-official.mx/movies/poster/trouble-man-1972.jpg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 230x345, components 3
Size
37 kB (37385 bytes)
Hash
38f35903e28e619d271f7a3d0209fd88
377c091e5867a7b2fe9e9b7d495089b9c5f048d1
9481534c3a0315ce66d72bff16525eb5b875cadef282fcdbaf6cea9a72596b1f

HTTP Headers

GET /movies/poster/trouble-man-1972.jpg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/jpeg
content-length: 37385
last-modified: Sat, 30 Oct 2021 23:49:15 GMT
etag: "617dd9fb-9209"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FdPx7zAoWXkRm2PZh7dd06FVi9RJpOjgYlgkJVUJO31ZBWiE1jeVQxZG%2BD2obRBjWdjtg%2B0bGekXK5Iwb4fZbAaHGMfnB4Bqt88NhNpbZohIE%2FrhW7HzbPeyqzygT5a4L%2BsyWK4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bdb1b568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/image/logo-imdb.svg

172.67.202.34

200 OK

1.8 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/image/logo-imdb.svg
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1808 bytes)
Hash
5cd012116b0d0e653f8e53e813f57ce1
ce512c7a43e9361790d42723f6742856ea546225
48cd81eac0d91d7302265418beeba17e24df75334487e7fa83111ec861b9398a

HTTP Headers

GET /static/yts/image/logo-imdb.svg HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Feb 2024 10:45:38 GMT
etag: W/"65d33152-710"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4X%2FO0%2BiEIle73cB4eNk0ieozWmiHNsQqmEFekKCaqDCtwzXTdomr7dJk6sIdJKANP914UmGzORR7tTyTjNYD7H3xKcbwFhQAw5C2jyxc1ViacnS2ZSmFGVLJEeK3qyd90kGwCM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77bdb1c568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js

104.21.70.253

200 OK

962 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (1015), with no line terminators
Size
962 B (962 bytes)
Hash
88523e22d10f0cbad31aa1d8276764fa
9238cd9499e01abdbeb33e68c550d26cfb6eaba5
d553390acb639c765cb6aaa4fbb72529e4005227d190f53108aec87ccec411c2

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 724070
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wJTPoeHFSo9sQbGpnQkkbgSzd73uu95TUnIZ7MwzwMjM%2FZkCrZ7nfAsZwGOiogafs3XPIZYvaX%2FSBNQV3kwWmUZ5tqTp1JNEb35EK8XQgM7dbIm%2FybT8GFKRAqY1Lhv1w9kzB8HrAAtl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c78dae1ab51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/fonts/fonts.css

172.67.202.34

200 OK

1.3 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/fonts/fonts.css
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
ASCII text, with very long lines (1384), with no line terminators
Size
1.3 kB (1316 bytes)
Hash
0ea9baa4ec422b74a6cf6ef7cd998e7b
28edd12415ade93ae8ce77cc26054ec487d73508
a284eec07f7cc18bb397bffc2b34b52f8bacde6198dc1eaeef2924ac61190bb4

HTTP Headers

GET /static/yts/fonts/fonts.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
vary: Accept-Encoding
etag: W/"65d2c88f-524"
expires: Sat, 27 Apr 2024 00:40:37 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PrJuykBPzQoprly4%2FSHE%2FUyI%2FVIViZ5Et3%2FeL8MOxDEy16t5YC0qVeBL%2BDgLcsxLU4BprwjS0y%2B0VutP3W5sLJK%2FLZW71qpkqsTZQqc0gibdhIKbd%2BhbGa%2FugSO9MaySgqaRaMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77bcaf2568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

vidsrc.to/embed/movie/tt0069414/

104.21.64.103

200 OK

4.5 kB

URL GET HTTP/2
vidsrc.to/embed/movie/tt0069414/
IP
104.21.64.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectvidsrc.to
Fingerprint1D:91:BF:0E:81:D2:1C:22:D3:9C:9C:8D:88:3E:B4:E5:E2:68:DE:FC
ValidityFri, 22 Mar 2024 12:30:27 GMT - Thu, 20 Jun 2024 12:30:26 GMT

File type
HTML document, ASCII text, with very long lines (4609), with no line terminators
Size
4.5 kB (4467 bytes)
Hash
81b723fe078c6700b0e275da6c3c1c75
f819d0ff7189d2ed5beb7d9cfab7d625e1348363
71e63be36010a158c14d64ecb0926cd758c992b62c4f63f35254d7edb180c940

HTTP Headers

GET /embed/movie/tt0069414/ HTTP/1.1
Host: vidsrc.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/html; charset=UTF-8
e-cache: HIT
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j9Y7Yo3QGWvdt8uIdqYKhfMD%2BbVvLn%2FkXcVnye9%2BN004TlBvGukb2KjYJ%2FXGLKM0AuPCvozSD%2Fx%2B%2BuLnREWtUKlb9xOvKqwFLJdzPvd8ggHOOcuvM4WPg03Ql6Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77c0c1eb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html

45.133.44.3

200 OK

1.3 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP
45.133.44.3:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (1405), with no line terminators
Size
1.3 kB (1325 bytes)
Hash
5373f3c4843345dde67db670323b2d54
666b2db9872196e52a2bc902111de5e37aa1ae28
e398fbdac28494dec6505fb0143d4cd41cee83989517e12c13ea113fef006fda

HTTP Headers

GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://en.yts-official.mx
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 13:04:35 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 26 Apr 2024 14:04:35 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff

172.67.202.34

200 OK

23 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/fonts/glyphicons-halflings-regular.woff
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
Web Open Font Format, TrueType, length 23320, version 1.0
Size
23 kB (23320 bytes)
Hash
68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e

HTTP Headers

GET /static/yts/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/static/yts/style/minified.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:33 GMT
content-type: font/woff
content-length: 23320
last-modified: Mon, 19 Feb 2024 03:18:39 GMT
etag: "65d2c88f-5b18"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=37VmPWSyL9%2Br7GhiWh5O8VaBOZV9mJjP5D05fBDV%2F1YbEJ%2BxLK%2FQ3dYkBufDHOMwqqfRDrEkHSmC78OcP1JG%2FDPCEh0vQInYsnll34Wq3%2B3fYKZH%2F3HzzNpikaIrpecfTihxo7Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a6c77d1d76568d-OSL
alt-svc: h3=":443"; ma=86400

en.yts-official.mx/static/yts/style/minified.css

172.67.202.34

200 OK

120 kB

URL GET HTTP/3
en.yts-official.mx/static/yts/style/minified.css
IP
172.67.202.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://en.yts-official.mx/movies/trouble-man-1972/
Certificate
IssuerGoogle Trust Services LLC
Subjectyts-official.mx
FingerprintFB:57:3A:12:D9:30:69:4A:59:BD:83:1C:79:E4:4E:DD:52:0F:73:62
ValidityThu, 18 Apr 2024 00:32:31 GMT - Wed, 17 Jul 2024 00:32:30 GMT

File type
ASCII text, with very long lines (57475)
Size
120 kB (119843 bytes)
Hash
a314b10e99529c56373ebff456f96618
89369052969ff4793a3c290593b5ded5d2d3e6d7
e043e009630de7fdb24141cd7e788e91a7978880af7730e0f8f97bf41c2cd549

HTTP Headers

GET /static/yts/style/minified.css HTTP/1.1
Host: en.yts-official.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://en.yts-official.mx/movies/trouble-man-1972/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 13:04:32 GMT
content-type: text/css
last-modified: Mon, 19 Feb 2024 08:38:28 GMT
vary: Accept-Encoding
etag: W/"65d31384-1d423"
expires: Sat, 27 Apr 2024 00:40:37 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 1435
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E4PvQzRO%2BTi7fKFMlGlaa2PIqBL8NUT3PGAZyGChMZbIhBPT12YJq21h45xhB9WeD8biHFjeTdRaSK8DnYwiEHExT5XBPjqEqKqosl6KJIwHnjKnOLqfvAC53Kky1iP%2FgDZAljg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a6c77bcaf9568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL