Report - emturbovid.com/d/jED1k3h69NPb8nLrzC6d

Report Overview

Visited public
2024-01-07 23:34:31
Tags
URL
emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Finishing URL
emturbovid.com/d/jED1k3h69NPb8nLrzC6d
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Title
Download - TurboVID

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-01-07 11:09:16	574 B	52 kB	142.250.74.106
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2024-01-07 18:12:42	973 B	51 kB	151.101.193.229
ver1.sptvp.com	416908	2021-07-03	2021-10-08 13:00:11	2024-01-07 21:13:16	457 B	325 kB	104.21.48.24
turboviplay.com	unknown	2021-07-03	2021-07-08 18:05:35	2023-10-05 03:13:44	12 kB	2.2 MB	172.67.135.209
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-01-07 09:52:07	535 B	36 kB	216.58.207.227
ophoacit.com	unknown	2022-07-08	2022-07-28 17:22:31	2023-12-25 15:30:24	931 B	184 kB	139.45.197.242
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2024-01-07 13:07:22	450 B	34 kB	151.101.194.137
delivery.taroads.com	unknown	2018-08-15	2021-10-28 09:23:46	2023-11-12 09:12:20	418 B	13 kB	188.114.97.1
emturbovid.com	unknown	2021-08-01	2021-09-29 05:30:05	2023-11-11 07:20:09	505 B	15 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-01-07	medium	ophoacit.com	Sinkholed
2024-01-07	medium	ophoacit.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	code.jquery.com/jquery-1.12.4.min.js	ScriptElement	97 kB	2023-03-07	2025-06-22
Pretty URL code.jquery.com/jquery-1.12.4.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-22 04:20 Times Seen32128 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	emturbovid.com/d/jED1k3h69NPb8nLrzC6d	ScriptElement	562 B	2023-11-23	2024-08-20
Pretty URL emturbovid.com/d/jED1k3h69NPb8nLrzC6d IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-23 07:48 Last Seen2024-08-20 18:12 Times Seen5 Hash 3441c34359093a03ab4879fe7c9c6dbc c4d89dddf1c51d351895b41951b926e7e7bd44e2 52fef7846c71526b305d0b84a83a8bb029b2b2afe0c46fbbbdc8b92a62aa9753 Loading...

	delivery.taroads.com/pub?id=286	ScriptElement	12 kB	2023-11-23	2024-08-20
Pretty URL delivery.taroads.com/pub?id=286 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 07:48 Last Seen2024-08-20 18:12 Times Seen5 Hash 5be1ada2533a0e9988936dee120d5824 1068f9c37114698b43c303a9f852573b8fec8e5c 8b3314f69d0311b9f5ab41d3f2bdf5cbeef43c9ec9e41a1876a07b9f3f4a7ce6 Loading...

	unknown	Function	34 B	2023-04-11	2025-06-22
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16 Last Seen2025-06-22 04:03 Times Seen67301 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	ophoacit.com/1?z=5505405	ScriptElement	43 kB	2024-08-20	2024-08-20
Pretty URL ophoacit.com/1?z=5505405 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 12:55 Last Seen2024-08-20 12:55 Times Seen1 Hash 2e82d7e221aed1ab6c8c1d3cfeb2c590 25c8d5303855bb3c18c6b7119a0cb476fe7d8e2d 3421d464c7638ab81900082c9706f876709d52ff8de9dadb12f62a39b2406db6 Loading...

	emturbovid.com/d/jED1k3h69NPb8nLrzC6d	ScriptElement	1.9 kB	2024-08-20	2024-08-20
Pretty URL emturbovid.com/d/jED1k3h69NPb8nLrzC6d IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 12:55 Last Seen2024-08-20 12:55 Times Seen1 Hash 411bc9053f183432d11ab0627341a03b d0c39d2504f63656a8dde9a6b9586d307c693aae 5f08116926bd55b8477d54a86471952dfcc3d4bc13665b40452049caff1e1349 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js	ScriptElement	79 kB	2023-03-07	2025-06-22
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-22 03:16 Times Seen12317 Hash 0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe Loading...

HTTP Transactions (35)

URL IP Response Size

GET code.jquery.com/jquery-1.12.4.min.js

151.101.194.137

200 OK

34 kB

URL GET HTTP/2
code.jquery.com/jquery-1.12.4.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32077)
Size
34 kB (33738 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://emturbovid.com
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17b8b"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 07 Jan 2024 23:34:10 GMT
age: 9869843
x-served-by: cache-lga21956-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 178, 103559
x-timer: S1704670450.382181,VS0,VE0
vary: Accept-Encoding
content-length: 33738
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css

151.101.193.229

200 OK

25 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
25 kB (25360 bytes)
Hash
abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b

HTTP Headers

GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://emturbovid.com
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Sun, 07 Jan 2024 23:34:10 GMT
age: 18193691
x-served-by: cache-fra-eddf8230097-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2

GET cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js

151.101.193.229

200 OK

24 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (65299)
Size
24 kB (23943 bytes)
Hash
0aa8d64e726c4a57adb5c88f9115996b
901169527507ff9e662cf64d8e361f359308970d
7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe

HTTP Headers

GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://emturbovid.com
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Sun, 07 Jan 2024 23:34:10 GMT
age: 19819645
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410027-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2

GET ver1.sptvp.com/poster/1/D8/jED1k3h69NPb8nLrzC6d.png

104.21.48.24

200 OK

324 kB

URL GET HTTP/2
ver1.sptvp.com/poster/1/D8/jED1k3h69NPb8nLrzC6d.png
IP
104.21.48.24:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGoogle Trust Services LLC
Subjectsptvp.com
Fingerprint80:C7:E6:43:E9:9E:6A:B2:AD:54:1C:F9:8F:ED:E3:2F:2D:A4:E9:F4
ValidityMon, 25 Dec 2023 12:09:59 GMT - Sun, 24 Mar 2024 12:09:58 GMT

File type
PNG image data, 640 x 360, 8-bit/color RGB, non-interlaced
Size
324 kB (323618 bytes)
Hash
372cace96fcc8687103460f3dede3b52
c5e786298183c7ff0ee45f9a003717c6f3aeb7bf
435d7ad84eeaaec11d9016403aa1649034a80fd1cc922a2f2ee64e4f5d0dd81e

HTTP Headers

GET /poster/1/D8/jED1k3h69NPb8nLrzC6d.png HTTP/1.1
Host: ver1.sptvp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: image/png
content-length: 323618
last-modified: Sun, 07 Jan 2024 17:20:09 GMT
etag: "659add49-4f022"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=300
cf-cache-status: HIT
age: 6771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7cdBKtsLSDl52%2FKyfUrmO1dtj3h2Jwk%2BlpSc93UEZw6uceWyK7fzI2xQbQWExC%2B0WsbKOVvea6vy4XE7xIB0ZcExXAP9yj9r9QdC0WtH2F6ZhJj4p5BnOBEYts5wWs07Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028bcc41712b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/assets/icons/icomoon/style.css

172.67.135.209

200 OK

11 kB

URL GET HTTP/3
turboviplay.com/assets/icons/icomoon/style.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11200 bytes)
Hash
c148d2d3559690f7354e7aa8f9c51b3b
b8176adce9eb3543b8e9aef1e3c3453cb6c8af22
893bd7de0251e78be39fa7c09efa6cca10d6baeabc5e2623c23eef15b60d2c47

HTTP Headers

GET /assets/icons/icomoon/style.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:33:26 GMT
etag: W/"60c61736-1a102"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L%2B0BK52UqXPmRusLXesrIHx7fnplHfSZ4oWj2X1y%2FyCYKUWcH4%2BQcnxUqlPYf3G24W%2FtILJ%2BGtzo5SsDgWzBoEiuBBky07Cu5KnuSsuNR6ittr1Dw5pw9Pu%2BtIu5Mdcs4Zs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e1afa0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2

216.58.207.227

200 OK

35 kB

URL GET HTTP/2
fonts.gstatic.com/s/rubik/v28/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1
ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT

File type
Web Open Font Format (Version 2), TrueType, length 35316, version 1.0
Size
35 kB (35316 bytes)
Hash
7076999a2d3b791a2ace98af0bb3f03e
16111e1cc534220ee29983f81b482a7cdcaf76ca
e05637e2b5a177151e860cee7d78b41ff52429d463e55b57a4894435da8ce477

HTTP Headers

GET /s/rubik/v28/iJWKBXyIfDnIV7nBrXyw1W3fxIk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://emturbovid.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 Jan 2024 05:15:42 GMT
expires: Fri, 03 Jan 2025 05:15:42 GMT
cache-control: public, max-age=31536000
age: 325109
last-modified: Thu, 29 Jun 2023 16:30:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ophoacit.com/27/b7af9eee900df9a8aa2af9ad8ee46174

139.45.197.242

200 OK

140 kB

URL GET HTTP/2
ophoacit.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintA3:E8:B3:CC:1F:21:E2:0D:45:2D:EC:97:79:3A:6F:C8:1B:1A:49:AF
ValiditySun, 12 Nov 2023 11:21:31 GMT - Sat, 10 Feb 2024 11:21:30 GMT

File type
gzip compressed data, max speed, from Unix
Size
140 kB (139915 bytes)
Hash
174c9aa2fd2c3c656ba804934aef174a
5f846a54a3e96a003f29a4f9b7bbaa879c7665aa
315a730885da1cdf9640cf08b38b02022091a9fc1d296cca407322a761009707

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Cookie: scm=1; OAID=ed7c58a2f7a9499eb536f81283e86c95; oaidts=1704670450
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 Jan 2024 23:34:11 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 1bb89ea1987e2d66fe9b1d5cf2c0f911
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

GET turboviplay.com/frontend/css/upload.css

172.67.135.209

200 OK

5.7 kB

URL GET HTTP/2
turboviplay.com/frontend/css/upload.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (5925), with no line terminators
Size
5.7 kB (5661 bytes)
Hash
4aaca94a0e3664247d40836e18b1e6af
ee836fee79bf220f1520930bdfc3b1a9e8a7cb35
bad4398bed7a71859991cbff4c659402169673d0deae9206050689b9b5f4bcbb

HTTP Headers

GET /frontend/css/upload.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Thu, 25 Nov 2021 16:10:24 GMT
etag: W/"619fb570-161d"
cf-cache-status: HIT
age: 2470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VT2Dv8GRQKtmLiG2JozuoO4bt42gmRlYZK%2BHY2wcRGND0OvYqCpLb%2FjPaoTrKq9hwm2bg76geLjxHEL1c80rMGioVI%2Bx6QDKtri7cN0PMipW3NYb7VOnqnj6wA6%2BOhsiPH0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028b0b4a568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/assets/icons/linea-icons/linea.css

172.67.135.209

200 OK

50 kB

URL GET HTTP/3
turboviplay.com/assets/icons/linea-icons/linea.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
50 kB (49518 bytes)
Hash
ca72c190cda54fc132b85158c024d146
d600f87374328f102042516bc01dcc82f66e9cc9
93282f38776755cf75a044902922ca9824185892c68d49ee0cd1f424b8011b7a

HTTP Headers

GET /assets/icons/linea-icons/linea.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:34:28 GMT
etag: W/"60c61774-c16e"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qLrjtLAE58N%2B6nuBO60aVTurg%2Bm%2BNlJQPqXGv%2B%2FGI5H1KSRTvhDg8T9QLbcft3wuyV6xtowHvkOSpUc8TEY2UqTw46WQEbGTQTfVj5690ZmmmLrBVzti7J8StrmJNXPW%2By4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0aee0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/vendor_components/datatable/datatables.min.css

172.67.135.209

200 OK

23 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/datatable/datatables.min.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (5041)
Size
23 kB (22868 bytes)
Hash
3641504a5b03e48269ff589bbed5c455
efcee345f54ebb6bd3b558d256ce2f1ca42e9b34
77256d68d53993a77729038fede56e6737fd5256d4d65db9aaa3fa77c98a1ec1

HTTP Headers

GET /assets/vendor_components/datatable/datatables.min.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/vendors_css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Fri, 25 Jun 2021 10:52:06 GMT
etag: W/"60d5b556-5954"
cf-cache-status: HIT
age: 4656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3m8gaLRLSirltppxR%2FWDRzwPczxZLyNQhC7ljg3l08XkhLt3Ey94TcDwmkl66wN2o8fXZYD8KFwQN7yJgDPbQ8VKN23rUeMU97ReaCmEB3b%2FVFM2CaNCYnhaafeh5psnVNs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfae00b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/frontend/css/style_rtl.css

172.67.135.209

200 OK

83 kB

URL GET HTTP/3
turboviplay.com/frontend/css/style_rtl.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
83 kB (83339 bytes)
Hash
901e025d8510e8316d0243a2d294b992
7c905232f23cbcb6514013a58d41974bc891befb
48674365887e9c421879af0e143975f4647cf27af1ce318d63c1f2c3c4f21121

HTTP Headers

GET /frontend/css/style_rtl.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 30 May 2021 16:05:13 GMT
etag: W/"60b3b7b9-1458b"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vaqD0nBKQ8cUAd8XGgLfUWN9dG6jEBE3qRrmlP0ANZ%2Fa0kjMXYtVnOIdSZ%2B%2FZG%2FUC10DNzHvr04OvQ7%2BtRm6gxhKhu5BQjWw9ONb1%2Fcbp6vnnovJeAO0Kmjeqfxv4F86dxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfae50b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET delivery.taroads.com/pub?id=286

188.114.97.1

200 OK

12 kB

URL GET HTTP/2
delivery.taroads.com/pub?id=286
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGoogle Trust Services LLC
Subjecttaroads.com
Fingerprint56:C4:A0:03:27:58:52:35:60:17:7F:DE:AD:63:F8:C5:8B:31:D4:E9
ValidityMon, 27 Nov 2023 18:37:11 GMT - Sun, 25 Feb 2024 18:37:10 GMT

File type
ASCII text, with very long lines (12473)
Size
12 kB (12474 bytes)
Hash
5be1ada2533a0e9988936dee120d5824
1068f9c37114698b43c303a9f852573b8fec8e5c
8b3314f69d0311b9f5ab41d3f2bdf5cbeef43c9ec9e41a1876a07b9f3f4a7ce6

HTTP Headers

GET /pub?id=286 HTTP/1.1
Host: delivery.taroads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BaF9OqMfFtrN%2FzPAIVV%2B7wTSmNiWSp%2Bbu8fNhPdLBeQEcq1vXnxfqPucRl3%2BNXCqZV1q7iJQMh4vrSkXZiRWXF7kayAcDTAUOzPgl2Bhy%2F6FtP7OK%2BSp8Dn84BAtHrgA9xwuYUIfXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8420028b28e9b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/assets/vendor_components/bootstrap/dist/css/bootstrap.css

172.67.135.209

200 OK

206 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/bootstrap/dist/css/bootstrap.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (560)
Size
206 kB (206326 bytes)
Hash
532d8fae5bb671715b0bce9b397adb32
4cfc0eeebb414b1abeca9be32324c3db76ad9a96
a437a2ac9c843fc3dda334d35e03734bb8c7eece473ff0f5038d0ef105448ebd

HTTP Headers

GET /assets/vendor_components/bootstrap/dist/css/bootstrap.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/vendors_css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Mon, 19 Jul 2021 11:41:00 GMT
etag: W/"60f564cc-325f6"
cf-cache-status: HIT
age: 4656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OmbfQPKaO4bDC4T9Wm5bc50rpA7O5xNU0Xqr%2F%2BOZJc7jlEgRKIWPtrUrCTgwf47E7F1BoYLehrKs%2F6xSxlX1cz42OWmvSbC7ADJ%2B2xtT6AK1dzAYjg%2BBul8jjDMUaVqUZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfade0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/frontend/css/vendors_css.css

172.67.135.209

200 OK

541 B

URL GET HTTP/2
turboviplay.com/frontend/css/vendors_css.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (553), with no line terminators
Size
541 B (541 bytes)
Hash
4412a6cc6bca19ae3769c6cd7f24531a
11fd36361330ab0921e14322cbc7814a2b599ed8
71bf8528d23b9b6d9eaf898c53ba82c1b863cf655164cd9bdf749896a6bedb18

HTTP Headers

GET /frontend/css/vendors_css.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Tue, 29 Jun 2021 16:29:25 GMT
etag: W/"60db4a65-21d"
cf-cache-status: HIT
age: 4657
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FFnAd3f57y5Py0UBPlC57bfjouwwp58Bq1rJPWb0pxUDGmJa%2FlUeFqLrmOGlZrv1mLCpSq1e4gZyYrcDnQCy3769Mp5eFVgfsrEnxwVLAnmbC6PVgCM6ieGEb8Czw2uF9Zc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028b1b5d568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/frontend/css/style.css

172.67.135.209

200 OK

702 kB

URL GET HTTP/2
turboviplay.com/frontend/css/style.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
702 kB (702196 bytes)
Hash
f17508b30b42ee4a348b1a7b13089a55
1f3aef7e3f0a3e7c36638b8d793dd8674c58f9b6
3c11b7945486bcaffe7c2a2884d72ec8e3bc4c3628f874728f2d46feb1ee8273

HTTP Headers

GET /frontend/css/style.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Tue, 28 Nov 2023 19:16:31 GMT
etag: W/"65663c8f-ab6f4"
cf-cache-status: HIT
age: 2470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wH%2Fp1z7f8JcAbICWSmhb64rzdb2feAlezv%2Be8o779RKsWXVcrZ6xtTjA%2BDCHvctbWlX64kw8Kn6IZ2hD%2FnLh0rPdbLecUorYbus%2BB7udjLFRvG2IjPwvxmhPSb6Xqo%2B67OA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028b1b52568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET ophoacit.com/1?z=5505405

139.45.197.242

200 OK

43 kB

URL GET HTTP/2
ophoacit.com/1?z=5505405
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectophoacit.com
FingerprintA3:E8:B3:CC:1F:21:E2:0D:45:2D:EC:97:79:3A:6F:C8:1B:1A:49:AF
ValiditySun, 12 Nov 2023 11:21:31 GMT - Sat, 10 Feb 2024 11:21:30 GMT

File type
ASCII text, with very long lines (41880)
Size
43 kB (42869 bytes)
Hash
2e82d7e221aed1ab6c8c1d3cfeb2c590
25c8d5303855bb3c18c6b7119a0cb476fe7d8e2d
3421d464c7638ab81900082c9706f876709d52ff8de9dadb12f62a39b2406db6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=5505405 HTTP/1.1
Host: ophoacit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: c3b6dc56bed52fd26fd4989ace99b1eb
access-control-expose-headers: X-Sc
x-sc: rwc74C3_Ga-GAfKdZ-RDsq0fNYJL_8TbpTobjgSJQuO_Z8sA1LrE7WqoAfyNL6edkbE_sDLor56XNyl9uieihe9W48c=
set-cookie: scm=1; expires=Mon, 06 Jan 2025 23:34:10 GMT; secure; SameSite=None
OAID=ed7c58a2f7a9499eb536f81283e86c95; expires=Mon, 06 Jan 2025 23:34:10 GMT; secure; SameSite=None
oaidts=1704670450; expires=Mon, 06 Jan 2025 23:34:10 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET turboviplay.com/assets/icons/glyphicons/glyphicon.css

172.67.135.209

200 OK

15 kB

URL GET HTTP/3
turboviplay.com/assets/icons/glyphicons/glyphicon.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (341), with CRLF line terminators
Size
15 kB (15028 bytes)
Hash
85cd38be622bf1ea8867d67f701806e8
1a8ded01c6dc082db125f84d56856094e24dc7f6
9ddc864e2fd0d24948acd9ed091941dd0644b77482888615e5abb1f7875cfe8a

HTTP Headers

GET /assets/icons/glyphicons/glyphicon.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:32:57 GMT
etag: W/"60c61719-3ab4"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ArHI8wNYEYJoWwlmmGtOKu2ljEqwNJ4Fvlj%2FawkqgqWGBdHfWaClgyRxFeCZk3nErAEuxyutrJRXCYegwnyoOGIt0ieHDL0yELL8yhA35PJfF91IADk8tpPNYbVn%2FFeScY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0aef0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/weather-icons/css/weather-icons.min.css

172.67.135.209

200 OK

23 kB

URL GET HTTP/3
turboviplay.com/assets/icons/weather-icons/css/weather-icons.min.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (22267), with CRLF line terminators
Size
23 kB (23146 bytes)
Hash
c14a151cfd46eaa6ade56f048b1dd085
8350d5520d34151c2662aca0e870e0f09551d64c
9d9963ba0c97ea82e30cca16602d58656501e06a6ec45ed6244f16e5911712cb

HTTP Headers

GET /assets/icons/weather-icons/css/weather-icons.min.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:35:21 GMT
etag: W/"60c617a9-5a6a"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1J%2BkDj%2BJPKvDlL%2B%2BpUh9DbDH%2FnsdfiUDv%2BALffQ42V%2FoX6w6U6G6q22Sm9iZq2fctcgUshbsDlvglM2q2NtMY5FW%2BI1FO1lWf3ZKCvaZMB96JNXpY758%2BkQkZpFoHLcBuhU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af60b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/vendor_components/animate/animate.css

172.67.135.209

200 OK

75 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/animate/animate.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
75 kB (75051 bytes)
Hash
ebe2c5ebc2fac0dc0a24e41fdda6d5b8
7da16d98354375d82adc7a7bff424346faf662f3
95da3176e728e04616d92fe5f50f7ace2a0e52e4f012dba748a32f7745bcbc54

HTTP Headers

GET /assets/vendor_components/animate/animate.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 30 May 2021 17:37:34 GMT
etag: W/"60b3cd5e-1252b"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2B2rbBv4yz2WzSELNnudHeXUpfxa%2FjbUw0MXh%2FflT5tClJUGLun5QzglxPQelz0g%2BY7fNADNoaJsh2rea4MipyEMSvlaEuAs6bnHlFJ2oKYsAXmRbKlt1Qd%2BzXu30TRKT1c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e1afb0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/frontend/css/skin_color.css

172.67.135.209

200 OK

44 kB

URL GET HTTP/2
turboviplay.com/frontend/css/skin_color.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (928), with CRLF line terminators
Size
44 kB (43577 bytes)
Hash
f43ee057dd2f163e494bb03b244a1897
064c0e66b2e0e37ab79e12b3517633ac06386ff3
f4826336b2c5d4c98d2ccab81e3a22742b95fcf435cc300b3a7380709445dd21

HTTP Headers

GET /frontend/css/skin_color.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 11:12:05 GMT
etag: W/"60c5e805-aa39"
cf-cache-status: HIT
age: 4657
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o3Vnk5cQ7%2BGhIZqCYcYS0LLO4IghQrEVEqeR0KnSlG3qz0O3A5FmfEBKWzE%2Bl7QoVnY5lYLQyVQ1Jwh9LXacVDGwA0p48MuzY6%2F2UKm3zsy4Cyu1S5%2B1ef5Sp0ZM9GEDjKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028b0b49568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/assets/icons/font-awesome/css/font-awesome.css

172.67.135.209

200 OK

37 kB

URL GET HTTP/3
turboviplay.com/assets/icons/font-awesome/css/font-awesome.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (372)
Size
37 kB (37414 bytes)
Hash
c495654869785bc3df60216616814ad1
0140952c64e3f2b74ef64e050f2fe86eab6624c8
36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c

HTTP Headers

GET /assets/icons/font-awesome/css/font-awesome.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:32:29 GMT
etag: W/"60c616fd-9226"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=65dHA85R70JerCQjN0rh9kSPJZzycYmJFhEN8EaDw615JE3ON4wNu8b0Umifq6Ol7Ca1hteCPs4EAy%2BXHA2Ihbo74suuZrtE2no003i5jwxdF9orI5QNkUfZ1%2F3ye69eG84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0ae90b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/flag-icon-css/css/flag-icon.css

172.67.135.209

200 OK

38 kB

URL GET HTTP/3
turboviplay.com/assets/icons/flag-icon-css/css/flag-icon.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
38 kB (37848 bytes)
Hash
216e807dd0b784846799cb18051f250d
e01ef3dfa09c24f2692e0b8b9d57b2e25eeb4f48
f4c6d858f9444d1603c69ae3416514024894e89b50698d44bacb71416750c219

HTTP Headers

GET /assets/icons/flag-icon-css/css/flag-icon.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:26:20 GMT
etag: W/"60c6158c-93d8"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bbuq30SS42R%2FqjbyiO2RZ5CU%2FiaO%2B8hAVHSDgPF9Ficnn4fCk3%2FU0S%2BDh5CgSvyr177e8rhBAF6oDNrkxdJ90mq0pzsncfbyc7rhiiUsBQJ%2FCID%2BQ5EfA6lIQ7k7Zj6Y8ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af20b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/iconsmind/style.css

172.67.135.209

200 OK

107 kB

URL GET HTTP/3
turboviplay.com/assets/icons/iconsmind/style.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
107 kB (106949 bytes)
Hash
b656f3ec87f955b3f0198ecf20fd27a2
61e7fff5b3de46f01065dd1f4161dc76e43da074
7afbb05c630a192c7eea0138853a65e574ad895bbebcd41173d9a963da07399a

HTTP Headers

GET /assets/icons/iconsmind/style.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:33:48 GMT
etag: W/"60c6174c-1a1c5"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jOb0XTY%2FP%2B3pUvqDI%2FBRT2YSiOIXOS4874dUETLzM1JK%2BMhCL9RkUyr3khvKsGGU3SyhsZaYeVGUcx2%2FQIYOmm6gTvR2xg1LABuGAs8ZKrpmqsvMkJS9Jgg%2BQAeCsncBqoE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af70b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET emturbovid.com/d/jED1k3h69NPb8nLrzC6d

188.114.96.1

200 OK

13 kB

URL User Request GET HTTP/2
emturbovid.com/d/jED1k3h69NPb8nLrzC6d
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectemturbovid.com
FingerprintBC:CD:F6:5B:79:C4:C3:23:D6:DC:55:15:00:36:DB:2D:46:41:1F:17
ValidityFri, 17 Nov 2023 12:37:19 GMT - Thu, 15 Feb 2024 12:37:18 GMT

File type
HTML document, ASCII text
Size
13 kB (13103 bytes)
Hash
c2c0a0571c1ecd34213713624f5c0686
0cd1fd228c296fb97ba65df14574d1fe9a1fb6bf
67fd48f6c88ad8cd4df613d25dd862b3234ef65bccd3a38ed681fda1d1e2294a

HTTP Headers

GET /d/jED1k3h69NPb8nLrzC6d HTTP/1.1
Host: emturbovid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 07 Jan 2024 23:34:09 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
set-cookie: PHPSESSID=icq0joheusgs3a5mdp02n9icqm; path=/
XSRF-TOKEN=eyJpdiI6InV2NmNDQnlCVmIxemdFbkJBaG1FQVE9PSIsInZhbHVlIjoiT3luSmltTGFBSW51eGpKWmUrWGRadGdEb2xoYmExRFNURHBKdFg5ZzBEQmFUam10RjBXdFNnRFNaSEJWVWlNZERIQnl2VVlJTnNKb3ZyR1VVQnFVaE1DbDBEU3lLSXR3U051RnRCWFNxamkvd2pRWGRvK2YxREJrK2dRY2p2cEYiLCJtYWMiOiIzNGZjM2JmYjZjZjAxOTE2ZWJhNDRmZmVlODNjOTcyZTlmMTg2M2QyMjk1ZDkyNjk3ZDc4MTk4MTg3MjAzOTk0In0%3D; expires=Mon, 08-Jan-2024 03:34:09 GMT; Max-Age=14400; path=/; samesite=lax
laravel_session=eyJpdiI6IkdTNTV2UmZQb3MwbHBvTmlHRU00eFE9PSIsInZhbHVlIjoialRlekY0SUJWd2ZEeExXYkxLNDhvTk1XbjlIYi82aUJmRFNTM2xBNmhaSGVHWDBScmVOMGJXL090aVFxZ29Nd052eUFmMzdYZ1M3ekl2dXR1MXdMQnZjR0tCWm55SGpQSWlCdjZRbDlHUjF0THR3aVZDUlZHSTFHb0hWQ2Z0aW8iLCJtYWMiOiI5NzA0YWZmN2VkZmQ2N2IxOTlkNmFmNDNhMjIyNTg2Y2Y4MmY5ZDY4ZDBmNzIwMGJiN2JkNjRkYmY3YWExMzNiIn0%3D; expires=Mon, 08-Jan-2024 03:34:09 GMT; Max-Age=14400; path=/; httponly; samesite=lax
expires: Thu, 19 Nov 1981 08:52:00 GMT, -1
cache-control: no-store, no-cache, must-revalidate, private, must-revalidate
pragma: no-cache, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BKv%2FFX9czKvu7kZJnJKRxouurO8RY9KHOQNYNQTQML5FfXkdRePtL0835nJFq1J4z%2B77Vbie0YBFd1aBNPkr5%2Fnaw5M6fLKcsA0970PPx8YstiwCe8nRNIk%2FDZA%2FdzMllA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8420028568e3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET turboviplay.com/assets/icons/Ionicons/css/ionicons.css

172.67.135.209

200 OK

57 kB

URL GET HTTP/3
turboviplay.com/assets/icons/Ionicons/css/ionicons.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type

Size
57 kB (57193 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/icons/Ionicons/css/ionicons.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:33:49 GMT
etag: W/"60c6174d-df69"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jduj5jnc1t8u4eSsrXyo0tqtt%2FX%2FfBYHbTq7OzlMfNGMY1MLqdeQ6gkSOJMAs8mympMj%2BzU33uimT%2F%2BDVT18pLYpFG4P5FimvXr6XW%2F83uRzN5YO63JFeES1A3BUTnDNjO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0aec0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/cryptocoins-master/cryptocoins.css

172.67.135.209

200 OK

18 kB

URL GET HTTP/3
turboviplay.com/assets/icons/cryptocoins-master/cryptocoins.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with CRLF line terminators
Size
18 kB (17969 bytes)
Hash
b3efb1c35655f7fd6a536c18076548d4
fc1b0de699163e72c2e421df1d41631794f6c038
8d2cfd45c19286f8ace86edf35a3fb9a327d824ad263844e107b030eebf19c54

HTTP Headers

GET /assets/icons/cryptocoins-master/cryptocoins.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:23:53 GMT
etag: W/"60c614f9-4631"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3gqFZ0s%2Fr%2FMpX8k1g3F8WSXmBh5EONwU7OFP%2FwxxUMKz6wdZSGrFVLj5U%2BqPhEiHsmY%2B%2B7lfXGxigTi4TRYjYAmelYmqQ4erTbyfdSOi5JigIpeKzQB9c%2FiEBuTXtZhii8w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af50b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/vendor_components/perfect-scrollbar/css/perfect-scrollbar.css

172.67.135.209

200 OK

2.6 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/perfect-scrollbar/css/perfect-scrollbar.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (2714), with no line terminators
Size
2.6 kB (2598 bytes)
Hash
6730944b817c98efbe6d5d964bdd4db8
714dbecac57360608fd4e307f4b2ae9cdecac4f6
755fa937d1ca95dc5b5d85e4808c46e102baef316876a0adb4df663321335e87

HTTP Headers

GET /assets/vendor_components/perfect-scrollbar/css/perfect-scrollbar.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/vendors_css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 30 May 2021 17:32:02 GMT
etag: W/"60b3cc12-a26"
cf-cache-status: HIT
age: 4656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuijL8JDt3vNurBJdccvnmfNmK%2F8dD8OMYmww6%2BwRVhgbNXHo%2FGoWNNajqY1ybF7Y5nDzA7aCcIhGCrVhY1H8MNn4%2F9hPEJ50JxrCOUhXG%2Fbukim95enkC85t1jUQwMgqu4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfadf0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/vendor_components/jquery-toast-plugin-master/src/jquery.toast.css

172.67.135.209

200 OK

4.9 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/jquery-toast-plugin-master/src/jquery.toast.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (4968), with no line terminators
Size
4.9 kB (4914 bytes)
Hash
39d9c4c540cffbe41b6cc4dc740b2a9c
b1b9e13c11ad7215567959c50cf733e89d41afe7
05d536b2f9a4af7750a2da379d0f3c4ef3023bdf0b242e7f32b26e7ad296fbea

HTTP Headers

GET /assets/vendor_components/jquery-toast-plugin-master/src/jquery.toast.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/vendors_css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 17:28:10 GMT
etag: W/"6266da2a-1332"
cf-cache-status: HIT
age: 4656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gAtP1RUMG9rWBjg0Xoni%2Bn8iZ8vZcVfnU8nqjLGhVwvN7W4f6GFh5E%2B8PG8s65sIlyVJvMDoX7AdRzeyjdvglm7sWgPrC5r67n%2BkGLTWeLPFa7b6Q%2BoAOKqeICha%2FF%2FWBMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfae20b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/simple-line-icons/css/simple-line-icons.css

172.67.135.209

200 OK

11 kB

URL GET HTTP/3
turboviplay.com/assets/icons/simple-line-icons/css/simple-line-icons.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (360), with CRLF line terminators
Size
11 kB (10561 bytes)
Hash
79c809c318e8b3ca05307cd9cf8f5a06
dee6f07d4ded34ee654d6302826e7bf71e997bba
8ebde145c69f4b886d6d6e63bf5960031e7239d1b280b10e795ee5f8326d7818

HTTP Headers

GET /assets/icons/simple-line-icons/css/simple-line-icons.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:35:05 GMT
etag: W/"60c61799-2941"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IaAE52Ff1C9EZPIE2T4gS90rDYitFRTgDmsDmneOnuUlY3N9ZEyS3VpTQu2jsu%2FeGARaCAd1NXceU2fz76V6%2FyjJW3ahD2IqNtp8%2BOYVtJkGETaK2lqfPFEQjuLvn9%2BEmVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af40b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET fonts.googleapis.com/css?family=IBM+Plex+Sans:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&display=swap

142.250.74.106

200 OK

51 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=IBM+Plex+Sans:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC
ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT

File type
ASCII text
Size
51 kB (51169 bytes)
Hash
cb9f887d16a551e0979cf8909f549a8b
131a841f8e26e75af43ba8d78620da0a1f11094f
e3ae33c9d9d83284ef07a192f80eea49c8d434cfd582d60949a96639224aef72

HTTP Headers

GET /css?family=IBM+Plex+Sans:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i|Rubik:300,300i,400,400i,500,500i,700,700i,900,900i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 07 Jan 2024 23:34:11 GMT
date: Sun, 07 Jan 2024 23:34:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET turboviplay.com/assets/vendor_components/sweetalert/sweetalert.css

172.67.135.209

200 OK

23 kB

URL GET HTTP/3
turboviplay.com/assets/vendor_components/sweetalert/sweetalert.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text
Size
23 kB (22795 bytes)
Hash
1af806ffc778c85b8c8c6f771ecd64e8
9f8dd650cc18ce5a1c9365ddd80112f4d4140c77
96cb65f1f227f20731302b1b930a66e0e15f4dcf80410a0642b47608eaea27f4

HTTP Headers

GET /assets/vendor_components/sweetalert/sweetalert.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/vendors_css.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sat, 11 Sep 2021 15:59:46 GMT
etag: W/"613cd272-590b"
cf-cache-status: HIT
age: 4656
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KxPbZpa2%2F5IyXVmHrVlCAkozT64CUZCjPHXfktIaGNAPNzsTgs5zK4DzwfzlVk06FkHyqUez0m8HYHp8c%2Boe4mZ2S3ycfhITxVXHhuWwSNU6zVna3%2BVO%2BAol%2BG3Xp8Wk%2BlM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfae10b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/frontend/css/color_theme.css

172.67.135.209

200 OK

494 kB

URL GET HTTP/3
turboviplay.com/frontend/css/color_theme.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (9951), with CRLF line terminators
Size
494 kB (494549 bytes)
Hash
832a86b6ca48bd31d2ec10a337082d51
82acb9686ab51f18e2fddbdc419adf015d84d5aa
6944ced92dacd37e70fe90c62d6b663ab7168c284b90e7475d0375dc3a33c0b9

HTTP Headers

GET /frontend/css/color_theme.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 11:16:14 GMT
etag: W/"60c5e8fe-78bd5"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3uTuYA3iYaru7bP5MRKIKUtK8E2mlKA0Rsz4SSOQAfZWfIBEr5%2BrBHRLAy3KJHqQh%2Fzd7Fdjpe4qH5se9WVLJ3Sk%2FSlKPzf7hGCwsMrgAnbclYplVfJtybaRRNrklhxc5oA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028dfae30b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/themify-icons/themify-icons.css

172.67.135.209

200 OK

18 kB

URL GET HTTP/3
turboviplay.com/assets/icons/themify-icons/themify-icons.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with CRLF line terminators
Size
18 kB (17504 bytes)
Hash
e3640169d055602014664885649f9bff
06b553b5843d26af0d02dd8ea86ba829f26398ec
31f79b00718944ec9b7c7893844e636433bf36a69a50aa13327634660768ffab

HTTP Headers

GET /assets/icons/themify-icons/themify-icons.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:35:17 GMT
etag: W/"60c617a5-4460"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XkGloZZDKovuE%2B3hpKkdyuB4t64VJAhS7EIzLWHp5qNTP18qFbvAwC7epbm8hRL2dSVP05KPrZ4gn9S%2FPF5hGsQ5AzhVU07ky93mbbC5UsJP4OSLoNvOvXBbuQBOXOYw1Ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0aed0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/assets/icons/material-design-iconic-font/css/materialdesignicons.css

172.67.135.209

200 OK

109 kB

URL GET HTTP/3
turboviplay.com/assets/icons/material-design-iconic-font/css/materialdesignicons.css
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
ASCII text, with very long lines (425)
Size
109 kB (108810 bytes)
Hash
2daf61c070cae75d07aa1b6a8afee289
958b837fc217ea62f4472f7eb5edb86281a7244c
b2767404584e08d07b330d7927ae6e5b79e838c8549ae670ccb0c917c9761223

HTTP Headers

GET /assets/icons/material-design-iconic-font/css/materialdesignicons.css HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://turboviplay.com/frontend/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:10 GMT
content-type: text/css
last-modified: Sun, 13 Jun 2021 14:34:47 GMT
etag: W/"60c61787-1a90a"
cf-cache-status: HIT
age: 2469
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tw9iz6NmWZeqpd4dBcUG%2BZPNb%2BIV90acOIUSApbwiwwU5P6EMiLCbfdxjDL72p3yvP7r6oekQzwb7v3gVHg0%2BAfdO02%2FSCRSxz9Y2AP%2B7HF2DGvlWEgQ8%2BZ5qVB4n9Wo%2BrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8420028e0af30b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET turboviplay.com/frontend/images/logo1.png

172.67.135.209

200 OK

9.5 kB

URL GET HTTP/3
turboviplay.com/frontend/images/logo1.png
IP
172.67.135.209:443
ASN
#13335 CLOUDFLARENET

Requested by
https://emturbovid.com/d/jED1k3h69NPb8nLrzC6d
Certificate
IssuerLet's Encrypt
Subjectturboviplay.com
Fingerprint9A:C4:22:6C:E4:51:89:77:8C:A4:15:4D:50:18:97:32:E7:B4:DD:AE
ValidityMon, 25 Dec 2023 11:09:40 GMT - Sun, 24 Mar 2024 11:09:39 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
9.5 kB (9470 bytes)
Hash
47e19ab8bb27409ed849a17ca38387c7
27f146b9329154135d923bc35bcc2e3ddba59cf5
dd7a4d4326c8cdc492110436e2f9bb81487599bc2b81d0eb6dbf50dc8d140999

HTTP Headers

GET /frontend/images/logo1.png HTTP/1.1
Host: turboviplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://emturbovid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 07 Jan 2024 23:34:11 GMT
content-type: image/png
content-length: 9470
last-modified: Fri, 25 Jun 2021 11:14:18 GMT
etag: "60d5ba8a-24fe"
cf-cache-status: HIT
age: 215
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Id2huQqJHREpEIpSrBp8W2iez5nyut1kkb89lmJkF2jYdKAfjHoqw4FARs32a4G9b4f0aGKyGt5xstG4uRtCgZnNz7Q7lwMGfUuPx1L2EGqY6p50eyPEiZwE9a1uK1Yluo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 842002922c920b02-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (35)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP