Report - ve142.aadika.xyz/download/GtZp80V7gA8/mp3/320/1708905947/09bc3775e7fcce4a1da026d63d86e1a55b700dcf7b7560e985abcc87d1457f56/1?f=x2mate.com/

Report Overview

Visited public
2024-02-26 03:22:00
Tags
URL
ve142.aadika.xyz/download/GtZp80V7gA8/mp3/320/1708905947/09bc3775e7fcce4a1da026d63d86e1a55b700dcf7b7560e985abcc87d1457f56/1?f=x2mate.com/
Finishing URL
www.y2meta.com/en/youtube/GtZp80V7gA8
IP / ASN
172.67.193.149
#13335 CLOUDFLARENET
Title
Y2meta Downloader - Download youtube video, convert youtube to mp3

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ve142.aadika.xyz	unknown	2022-01-13	2022-12-24 22:46:12	2023-07-08 06:34:27	593 B	20 kB	172.67.193.149
www.y2meta.com	205491	2019-03-23	2019-05-27 16:11:53	2024-01-26 18:38:01	8.3 kB	392 kB	104.21.234.80
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2024-02-25 18:34:17	877 B	280 kB	142.250.74.168
www.youtubezz.com	unknown	2019-04-06	2019-06-10 12:58:36	2023-12-23 21:57:56	491 B	6.8 kB	104.21.13.99
i.ytimg.com	109	2007-12-11	2012-10-03 19:11:04	2024-02-25 23:44:17	434 B	18 kB	142.250.74.86
kv.tibertannoy.com	unknown	2023-03-25	2023-03-25 11:30:57	2024-01-23 11:35:24	413 B	1.5 kB	23.109.170.198

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-02-26	medium	tibertannoy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	182 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 08:54 Last Seen2024-08-20 08:54 Times Seen1 Hash 5f16f08a559fb694668e551fb5f4be87 b3b54a44ebff03590827b5b628f13cc007e2a75f ef0d434b20bc4df9b97524539cba96b7a88e42dead0f97ae05740c2eef03c21b Loading...

	unknown	ScriptElement	136 B	2023-03-07	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18 Last Seen2024-08-20 11:26 Times Seen11 Hash f5959f5235d7b28140b41682b3b80799 c7b2b2d3ee22329cd78ad0a39b32e04db8461737 e533df36b7578bcee9f3bc86fda337781c466f29716eff97db5b24c075e636f3 Loading...

	www.y2meta.com/youtube/GtZp80V7gA8/sandbox%20eval%20code		147 B	2023-04-11	2025-06-25
Pretty URL www.y2meta.com/youtube/GtZp80V7gA8/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-25 05:08 Times Seen366685 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-06-25
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-06-25 05:09 Times Seen366022 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	kv.tibertannoy.com/t4bOVchBvD1Kx0K/40657	ScriptElement	5 B	2023-03-07	2025-06-25
Pretty URL kv.tibertannoy.com/t4bOVchBvD1Kx0K/40657 IP 23.109.170.198 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-06-25 03:50 Times Seen6435 Hash f7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a Loading...

	unknown	ScriptElement	89 B	2024-01-23	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-23 11:35 Last Seen2024-08-20 11:26 Times Seen11 Hash 57789985be1f6ad7622a714213a7f345 be9478056b9ddc102d40f5dc86b3c683bcc33234 2e3e9a2a09437f48bb06545d7b518d66bf872b327581d593b9ecc63eeeeb3bce Loading...

	unknown	ScriptElement	416 B	2023-03-08	2025-06-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:42 Last Seen2025-06-23 22:31 Times Seen28 Hash 713f0fcd7e2cd2192ff32e889063f712 f202be7f902a7f9686e723c618f36ab71be1cba4 4cc98a982f8d2736e78de4a103db74df390d6101bd65e21146996ad96e6b0873 Loading...

	www.y2meta.com/js/app.min.js?v=49	ScriptElement	129 kB	2023-03-07	2024-08-20
Pretty URL www.y2meta.com/js/app.min.js?v=49 IP 104.21.234.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18 Last Seen2024-08-20 11:26 Times Seen11 Hash c10e55a841d3c2695d8ed55edbad6493 75877610aa8b128779b2150130431e0d3ec99ea3 6a98f55cbe7f064ceddf0d8f0dfd0a4879e5570ae7314da5ba8b75503d1a27db Loading...

	unknown	ScriptElement	1.9 kB	2024-01-23	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-23 11:35 Last Seen2024-08-20 11:26 Times Seen11 Hash febb54c4c75607b71c1bf9c69f0bf264 e050d5e4e22ef06f4b21465e658893022e467713 92181ab1a66f1b5dde61b19d5d8ebea315e70bb66e2b661ac2bfa72f8e934153 Loading...

	unknown	ScriptElement	17 kB	2023-03-07	2025-06-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18 Last Seen2025-06-23 15:21 Times Seen121 Hash ccbda31515e1c9642d87ca4a166dcbf3 94f0f77b129f5784136c22a409fa797310849803 e33806d103384621c4f7d70e83fc4a17062862c6f589eeb2d5ba3ffa478f8617 Loading...

	unknown	ScriptElement	862 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 08:54 Last Seen2024-08-20 08:54 Times Seen1 Hash 3d55fd0825196109c6e6ef4a6c523aff 07d17162f0ec663e4c09fcbf5d61ca25939037b0 fe6c6b1ea85b9d2abafa9633f44e826df8882e16f527f658d330d5a7f9d53145 Loading...

	www.y2meta.com/pwa/pwa-app.js	ScriptElement	193 B	2023-03-08	2025-06-23
Pretty URL www.y2meta.com/pwa/pwa-app.js IP 104.21.234.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:42 Last Seen2025-06-23 22:31 Times Seen85 Hash 433b01626694f6f172c7846bc1b85002 09964488680297693c0993a02766793274507d44 4187c19775ace18ab0752577094af6c60693b16136de2cb56f86d9fe2cea75b7 Loading...

	unknown	ScriptElement	183 B	2024-01-23	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-23 11:35 Last Seen2024-08-20 11:26 Times Seen10 Hash 402ccaf209b3f5877d5fb8a35b6dee9e 09a73dccee490ee49affc2d5bb36cf621d2ebe47 3d08a9a4d726deb0667407b8b017a88f556a08b2b88c9273c06acab7f3ca6e79 Loading...

	unknown	ScriptElement	833 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 08:54 Last Seen2024-08-20 08:54 Times Seen1 Hash faccf480aa7e670dfd2d101d6bbb434e 546b3b7d62b4f879956d49fa9065bf4cc340d194 486e3ece71cace373b29313ef76f4275e5469c62d7dfa47fcfad6843164b1f6d Loading...

	www.y2meta.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-06-25
Pretty URL www.y2meta.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.21.234.80 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-25 05:08 Times Seen35470 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	www.googletagmanager.com/gtag/js?id=UA-122831834-3	ScriptElement	196 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=UA-122831834-3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 08:54 Last Seen2024-08-20 08:54 Times Seen1 Hash 8beec3c77e686625cbd3b15553e8108b 93ec6bee85ac35372ed2840be29236d9a473dd46 aeb316f4870e38a539addfad3d740c5cd6ed0a3ad1d1e1adc1a0a812f831a113 Loading...

	www.googletagmanager.com/gtag/js?id=G-HP1NN6D2L1&l=dataLayer&cx=c	ScriptElement	235 kB	2024-08-20	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-HP1NN6D2L1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 08:54 Last Seen2024-08-20 08:54 Times Seen1 Hash 69c3e2356cf047ff3669e81781d4bfeb 23c611f417dec10138e2432efd33640c5e1c08fd bac7e0f2a3a76bbc7804c48bc708560433301bf58286529d305ca7a50a7f36ae Loading...

HTTP Transactions (23)

URL IP Response Size

GET www.y2meta.com/data/admin/2019/3/logo.png

104.21.234.80

200 OK

7.2 kB

URL GET HTTP/2
www.y2meta.com/data/admin/2019/3/logo.png
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
Size
7.2 kB (7190 bytes)
Hash
0cddab075c6ff3429a9dd3509fc226cd
0912c21e0c28453e179189c8eb98b3f10693bf8c
b50babe7ac78cd1372303c0746b209bbaef8aa2dad09441976b7b94b4f1e733f

HTTP Headers

GET /data/admin/2019/3/logo.png HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/png
content-length: 7190
last-modified: Thu, 28 Mar 2019 20:07:54 GMT
etag: "1d4e5a1eda39516"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 2844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VDEaMVW65CyPGLR94LT%2Fke0XTTExGTHJD9S9h8%2FugfFSC2HKzs2rL%2FXpDyWpxGz8sv%2FjK%2FudaqM304jjFogbObZ080h3wj%2BDgdc5u1kkmzeC7830x9vtbIhevQvC%2BA50wQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d2e6c63f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/images/loading.gif

104.21.234.80

200 OK

12 kB

URL GET HTTP/2
www.y2meta.com/Content/default/images/loading.gif
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
GIF image data, version 89a, 160 x 24
Size
12 kB (11689 bytes)
Hash
046677ff48107680705f654c9250c567
c0cbc0b2c8b84014dcfea943e4582c7bd9e79710
4bf7f8d97e7584aeb2932c7313bb7e6266651a22cad37fe16f4239ed7ea1784c

HTTP Headers

GET /Content/default/images/loading.gif HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/gif
content-length: 11689
last-modified: Tue, 26 Mar 2019 13:59:44 GMT
etag: "1d4e3dc2a25a5a9"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 2844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UigYjUckNVfywezNd0xM%2FkYryc3d55R3utTO%2F9I7CBFg7FT5Js0xdCWETPmo%2BtFpYyu%2FhWHWrboqT%2FRYS4JbjcJdBM%2B7tZTzFNFbgRZ6E9BRxRKqZHs2XvpJICS7yGzndw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d2e6d63f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/images/tip-download-youtube.jpg

104.21.234.80

200 OK

18 kB

URL GET HTTP/2
www.y2meta.com/Content/default/images/tip-download-youtube.jpg
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=60, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=605], progressive, precision 8, 605x60, components 3
Size
18 kB (17570 bytes)
Hash
d34700edfc2f2e6efea559f09b5722dc
00cc83fe735230cd52cc7247055a0eaab1db5e6a
fe0d84bcb1ec8e0baf494792982e72eb4615d37b59634c88941b19a505f68441

HTTP Headers

GET /Content/default/images/tip-download-youtube.jpg HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/jpeg
content-length: 17570
last-modified: Sat, 06 Apr 2019 18:04:26 GMT
etag: "1d4eca32bd875a2"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 4575
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kf9Xc2U%2FWIY6q7yFJbK0CHxJQBEMdocW2niX5uDwQAUctMsxUftcRuHPqqtLzqVPJEUekPng%2F03KyDIvD%2FBUNlYPfh5gS%2B95JaQHMbZwVHId%2FomjoqHBZG5uZ%2FloSwtqsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d2e6f63f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/css/style.min.css?v=20

104.21.234.80

200 OK

24 kB

URL GET HTTP/2
www.y2meta.com/Content/default/css/style.min.css?v=20
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
Unicode text, UTF-8 text, with very long lines (24596), with no line terminators
Size
24 kB (24071 bytes)
Hash
aa6c0effff09a2d0ce3612879ed7429e
c78c867ff8059e0be181ee3eab125d96cc27545f
f2ecb6883112816943835bfd46bf7361a5f2eed8a4ca2ea2f585e52ea95c1728

HTTP Headers

GET /Content/default/css/style.min.css?v=20 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 07:36:39 GMT
etag: W/"1d8aee76c97bd95"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6262
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ksZCkpYOGutTY3d5BqV%2FPGbZloWnTGl2XsU%2BlrSo1It%2BYHlwIjTYhiDFtg9u5xOeIjWd%2BUhQwlVHy5sNAxV2rtdwAwk7mS3k8AVrKyq0MfReDcb5HGq1k0oo3YPceQ3IEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d2e6b63f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/pwa/pwa-app.js

104.21.234.80

200 OK

581 B

URL GET HTTP/2
www.y2meta.com/pwa/pwa-app.js
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
ASCII text, with no line terminators
Size
581 B (581 bytes)
Hash
433b01626694f6f172c7846bc1b85002
09964488680297693c0993a02766793274507d44
4187c19775ace18ab0752577094af6c60693b16136de2cb56f86d9fe2cea75b7

HTTP Headers

GET /pwa/pwa-app.js HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"1d8cbd2a9d049c1"
last-modified: Mon, 19 Sep 2022 02:51:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1402
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kdn0MwcvnEP30Vx9pm8OjJB%2FLBOtgFoCq7jYDTYc%2BK95J2lVHGRM%2FMW%2F5lrXrudqKfuVJBpaQvA8wS06E1NzY2s5qdo%2F8ydjjxILz0iQs6lR64i3mjLPRhO%2FSdIRVSLwyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0dced263f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/css/bootstrap.min.css

104.21.234.80

200 OK

92 kB

URL GET HTTP/2
www.y2meta.com/Content/default/css/bootstrap.min.css
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
ASCII text, with very long lines (64985)
Size
92 kB (91694 bytes)
Hash
7a2e03df404c212ec5c96806d9469a4b
4234532b2555095901936872e601284b22eead6d
7e7da99cf4a346c13d1227ecada72a3d8ff48ba5253be06acc2f4780c2733a6d

HTTP Headers

GET /Content/default/css/bootstrap.min.css HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: text/css
last-modified: Tue, 26 Mar 2019 13:58:54 GMT
etag: W/"1d4e3dc0c59fe82"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6262
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ila48oQz00RpW9a1%2B49qCEM27LE53SM%2Bl238owdiBnQ55ZiY%2Bblr6LDrkyHoNhDHD3Z6KasamE3ugXk1DzKfy5nu4eHiL1tPiaPXYYlUNhenkFCH4opMNSgSvIKCaFsSUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d2e6963f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/apple-touch-icon.png

104.21.234.80

200 OK

10 kB

URL GET HTTP/2
www.y2meta.com/apple-touch-icon.png
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced
Size
10 kB (9958 bytes)
Hash
34fbedf76ef8ff8c0da9df3a1452ad7a
6fc410b177317924609ef049072e05fed3696ae7
9eaa3ad172f8b1df289ad35827f4cf337840a410d1cb4cb7e61d062e7e885ade

HTTP Headers

GET /apple-touch-icon.png HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/png
content-length: 9958
last-modified: Tue, 23 Mar 2021 07:23:40 GMT
etag: "1d71fb5726cc0e6"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1933
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2FIFvkn5j%2B4IgOAkE075NAeZndR3Q6k84Q6wO6dL42qTpF4PQNpvz%2F%2Fi11mnyjf%2F6eQSzJBl%2B9vlaN5Gn5DveFnwafPsfM%2B55%2Fuqu4bvc7CteTEyqNszFzuv3oD4pV0C8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0f1ffd63f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/favicon-16x16.png

104.21.234.80

200 OK

1.3 kB

URL GET HTTP/2
www.y2meta.com/favicon-16x16.png
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
1.3 kB (1261 bytes)
Hash
25e0e1f1c17b2985d455fd4c8fa2c36a
a159ebb6a7c0c1ccb28793b48220b2bc5be5ab0e
74921b10837e85f8738cde3240a9b77b53d9f6547cba2fee36ad4dab09a6e34c

HTTP Headers

GET /favicon-16x16.png HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/png
content-length: 1261
last-modified: Tue, 23 Mar 2021 07:23:40 GMT
etag: "1d71fb5726ce2ed"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xpak9nNhQ12VSFlTIf5GpxN8KGzUmHdf%2BB4ExwckMpOi0up%2FbltXyhBBuKfMM%2FU2pZ%2BOUnLTDksQ%2F%2Bg6WAJryzveLoHzmC0idWjrmLBhOpFlRwu6b9QfUDC8xdbVfDFlBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0f1fff63f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-HP1NN6D2L1&l=dataLayer&cx=c

142.250.74.168

200 OK

83 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-HP1NN6D2L1&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFE:B5:CA:52:98:40:B5:91:CE:64:41:05:2F:EE:E4:7C:8D:52:16:80
ValidityMon, 05 Feb 2024 08:03:51 GMT - Mon, 29 Apr 2024 08:03:50 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
83 kB (83102 bytes)
Hash
69c3e2356cf047ff3669e81781d4bfeb
23c611f417dec10138e2432efd33640c5e1c08fd
bac7e0f2a3a76bbc7804c48bc708560433301bf58286529d305ca7a50a7f36ae

HTTP Headers

GET /gtag/js?id=G-HP1NN6D2L1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Feb 2024 03:21:35 GMT
expires: Mon, 26 Feb 2024 03:21:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83102
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.y2meta.com/js/app.min.js?v=49

104.21.234.80

200 OK

44 kB

URL GET HTTP/2
www.y2meta.com/js/app.min.js?v=49
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
44 kB (43792 bytes)
Hash
c10e55a841d3c2695d8ed55edbad6493
75877610aa8b128779b2150130431e0d3ec99ea3
6a98f55cbe7f064ceddf0d8f0dfd0a4879e5570ae7314da5ba8b75503d1a27db

HTTP Headers

GET /js/app.min.js?v=49 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
last-modified: Sun, 31 Jul 2022 02:05:27 GMT
etag: W/"1d8a48200977b6e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6261
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OH6KIlStVOCGRbv4SDI1CnceubF6k4l6b0vCIXV1P2DsKVNuYSPv0vG5YctmdEdFuc4vvBNhdV4uxF4ttguMX8Hpzro1teIRW19yoZ360fOGm4%2FqYe3It1Fw4q81XTr0BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0ecf8363f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.youtubezz.com/watch?v=GtZp80V7gA8

104.21.13.99

302 Found

6.1 kB

URL User Request GET HTTP/2
www.youtubezz.com/watch?v=GtZp80V7gA8
IP
104.21.13.99:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectyoutubezz.com
Fingerprint01:74:FE:76:9F:F9:69:2A:D6:09:84:24:44:62:89:17:C6:08:92:3B
ValiditySat, 03 Feb 2024 11:11:45 GMT - Fri, 03 May 2024 11:11:44 GMT

File type
data
Size
6.1 kB (6125 bytes)
Hash
8b1ac628c0baf1c8b7514b44357f48d9
00489ba5f0c95789d85be71211cbcf7a9a917fdf
cdeef09059535987c7dabf0342ad5a947bc1f4ab0b41729091b7bc0282a24167

HTTP Headers

GET /watch?v=GtZp80V7gA8 HTTP/1.1
Host: www.youtubezz.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: text/html; charset=utf-8
location: https://www.y2meta.com/youtube/GtZp80V7gA8/
cache-control: private
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OtQZFnDKT5UEC%2F3VIrhc8WYLqKgfxy9H0e7iXIXWni%2FyJnAJ8IoyvGKZXCz%2BzFAJpMTY6J4DcGr2%2BZOl1NmF%2B0DBCAhuIxoGv9Mzu6Bt0RYAP5Yc9OybBVSf8V9rBzmCXoIq4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85b50f06bb77b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/js/app.min.js?v=49

104.21.234.80

200 OK

48 kB

URL GET HTTP/2
www.y2meta.com/js/app.min.js?v=49
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
48 kB (48012 bytes)
Hash
c10e55a841d3c2695d8ed55edbad6493
75877610aa8b128779b2150130431e0d3ec99ea3
6a98f55cbe7f064ceddf0d8f0dfd0a4879e5570ae7314da5ba8b75503d1a27db

HTTP Headers

GET /js/app.min.js?v=49 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
last-modified: Sun, 31 Jul 2022 02:05:27 GMT
etag: W/"1d8a48200977b6e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6261
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tl8r5YATEJrpo4xSWVmqJMoBRzb5US%2BewRRvSzxHkcODs3XUaHQTAQnyMrKQRgG09a1hAjyUMjTvt%2FZ72pO9SmMJKk0atgjosWgI%2BHkMMk4lEM8P38X9NcS7Xu1glXCkmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0dced563f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET i.ytimg.com/vi/GtZp80V7gA8/mqdefault.jpg

142.250.74.86

200 OK

17 kB

URL GET HTTP/2
i.ytimg.com/vi/GtZp80V7gA8/mqdefault.jpg
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint35:40:29:41:54:B8:79:DE:AE:F0:E1:13:14:59:45:F3:23:0D:07:7E
ValidityMon, 05 Feb 2024 08:03:39 GMT - Mon, 29 Apr 2024 08:03:38 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3
Size
17 kB (16850 bytes)
Hash
e781d563a5974aeaa9e5c3957035b208
41be080a88e9df2d39005150a024ab3566848918
526332f49f716dbb7a5d3aba342488b980e5b207360c12ad18b94f72a3f14af1

HTTP Headers

GET /vi/GtZp80V7gA8/mqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 16850
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Feb 2024 03:21:37 GMT
expires: Mon, 26 Feb 2024 05:21:37 GMT
cache-control: public, max-age=7200
etag: "1554850174"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET kv.tibertannoy.com/t4bOVchBvD1Kx0K/40657

23.109.170.198

200 OK

25 B

URL GET HTTP/1.1
kv.tibertannoy.com/t4bOVchBvD1Kx0K/40657
IP
23.109.170.198:443
ASN
#7979 SERVERS-COM

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerLet's Encrypt
Subjectkv.tibertannoy.com
FingerprintF0:B2:87:86:89:FB:A5:E5:DA:2B:42:CB:18:85:00:60:11:7A:3E:61
ValidityTue, 26 Dec 2023 23:02:56 GMT - Mon, 25 Mar 2024 23:02:55 GMT

File type
ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
f7a2939527fd9e68723da600e96d76bd
a9e717b6364d2895ee0a716050db32ca0ef1bb42
d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /t4bOVchBvD1Kx0K/40657 HTTP/1.1
Host: kv.tibertannoy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Feb 2024 03:21:37 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.y2meta.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Tue, 27-Feb-2024 03:21:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Tue, 27-Feb-2024 03:21:37 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

GET ve142.aadika.xyz/download/GtZp80V7gA8/mp3/320/1708905947/09bc3775e7fcce4a1da026d63d86e1a55b700dcf7b7560e985abcc87d1457f56/1?f=x2mate.com/

172.67.193.149

301 Moved Permanently

19 kB

URL User Request GET HTTP/2
ve142.aadika.xyz/download/GtZp80V7gA8/mp3/320/1708905947/09bc3775e7fcce4a1da026d63d86e1a55b700dcf7b7560e985abcc87d1457f56/1?f=x2mate.com/
IP
172.67.193.149:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectaadika.xyz
Fingerprint91:53:11:AF:DD:44:CB:C2:B8:9D:AB:29:EB:06:40:2A:49:65:8F:7A
ValidityTue, 30 Jan 2024 11:00:54 GMT - Mon, 29 Apr 2024 11:00:53 GMT

File type

Size
19 kB (19398 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /download/GtZp80V7gA8/mp3/320/1708905947/09bc3775e7fcce4a1da026d63d86e1a55b700dcf7b7560e985abcc87d1457f56/1?f=x2mate.com/ HTTP/1.1
Host: ve142.aadika.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Mon, 26 Feb 2024 03:21:34 GMT
content-type: text/html; charset=UTF-8
location: https://www.youtubezz.com/watch?v=GtZp80V7gA8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=go5V6cqPPtb9SgmtG1%2F1zi2d2MfnnQyhs6jnuBP9hv50xDT9R9yG8TYELi6L%2FLlQzY38wXJ3uttG2DTdo9axrkXkmMVTnQPSNQviQLNS%2FtkK7wC6E8hI5c0ZkZVYNsWvc5PI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85b50f055896b500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.21.234.80

200 OK

12 kB

URL GET HTTP/2
www.y2meta.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 14:40:03 GMT
etag: W/"65cf73c3-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0L%2BLKuF8qmbklXlVFesXHM8Ocin8dhIyf1dqbHRaLaZv0zoPwnyLRRc9Hu2ddT3zAqscgbWPCj%2F0AUkvixnfwMD0W9RFAW8E8aRaPO5ggX7QlAmAigGWl2uvDRecIyCbcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d3e7563f9-LHR
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 28 Feb 2024 03:21:35 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-122831834-3

142.250.74.168

200 OK

196 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-122831834-3
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintFE:B5:CA:52:98:40:B5:91:CE:64:41:05:2F:EE:E4:7C:8D:52:16:80
ValidityMon, 05 Feb 2024 08:03:51 GMT - Mon, 29 Apr 2024 08:03:50 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
196 kB (196119 bytes)
Hash
8beec3c77e686625cbd3b15553e8108b
93ec6bee85ac35372ed2840be29236d9a473dd46
aeb316f4870e38a539addfad3d740c5cd6ed0a3ad1d1e1adc1a0a812f831a113

HTTP Headers

GET /gtag/js?id=UA-122831834-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Feb 2024 03:21:35 GMT
expires: Mon, 26 Feb 2024 03:21:35 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Feb 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70953
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.y2meta.com/youtube/GtZp80V7gA8/

104.21.234.80

200 OK

19 kB

URL User Request GET HTTP/2
www.y2meta.com/youtube/GtZp80V7gA8/
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type

Size
19 kB (19398 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /youtube/GtZp80V7gA8/ HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XTku3dxTIezwMn6MnmUsBCePSkirzGAeHj%2BbuNnl8Gu8MDiZyZOYYoNsWZvDSGHP5QlE6OCxO8BkfibrD%2BtQE3CYIcQfYkti5xQhivipEgCO%2Btd1BKb9RUJv%2BC1a7nXocw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85b50f0a5c4063f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/fonts/glyphicons-halflings-regular.woff2

104.21.234.80

200 OK

18 kB

URL GET HTTP/2
www.y2meta.com/Content/default/fonts/glyphicons-halflings-regular.woff2
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /Content/default/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/Content/default/css/bootstrap.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: font/woff2
content-length: 18028
last-modified: Sun, 11 Feb 2018 17:49:12 GMT
etag: "1d3a3609ff9da6c"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ze4MCpv20jm0F74%2F%2BgxczdhsJFC4bjHj9jFmr11LfrLh%2BQ%2B%2B23Feq3EtkmwfcNaojJoZja%2FUhFJry%2BqWrLNU9BpxAtbHmNqyqNTatMq8ZwPwKOHVjF9GUcF5bFGGHYDPnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0ddee163f9-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/Content/default/images/firefox.svg

104.21.234.80

200 OK

34 kB

URL GET HTTP/2
www.y2meta.com/Content/default/images/firefox.svg
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
SVG Scalable Vector Graphics image
Size
34 kB (33785 bytes)
Hash
c214d7548e9dfe83e9093eb04407262e
7078117a4bf243ba663ae44e576032cc79826b4e
10d54aa020a7363073ef8c137808861137dc6e6fffd3d0f8c95f0a6d15e716e2

HTTP Headers

GET /Content/default/images/firefox.svg HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: image/svg+xml
last-modified: Thu, 21 Nov 2019 15:43:34 GMT
etag: W/"1d5a0826ea894f9"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R5NxBBEhIEpMVHeqdsEenYEWli9tESVwYw0SAZgWtyRADNPlrBYvA8E6JtxO64fX1dNAmjYwZjpv4NsJ9T2TnwSbcvCkU%2FBjMdQsNDE4jDr%2FXYos5CjWCwPowp9JnKkraA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0d3e7363f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/js/suggeser.js?v=3

104.21.234.80

200 OK

17 kB

URL GET HTTP/2
www.y2meta.com/js/suggeser.js?v=3
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JavaScript source, ASCII text, with very long lines (17089), with no line terminators
Size
17 kB (17089 bytes)
Hash
ccbda31515e1c9642d87ca4a166dcbf3
94f0f77b129f5784136c22a409fa797310849803
e33806d103384621c4f7d70e83fc4a17062862c6f589eeb2d5ba3ffa478f8617

HTTP Headers

GET /js/suggeser.js?v=3 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"1d6fd1ea30740c1"
last-modified: Sun, 07 Feb 2021 06:58:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3530
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oHZ986yczW3QVixvoK2ROBkZ6aaVPubdX4UKVYxdyq0oNKBwucWdhfKkq4wmJTtVlXUAScRvhXEn1OnEPESweARZGBlsW81cTAAW4qhNxsZhXVvBI8wv%2FKrJGsBbbPzn3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0fc88363f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST www.y2meta.com/analyze/ajax

104.21.234.80

200 OK

21 kB

URL POST HTTP/2
www.y2meta.com/analyze/ajax
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JSON text data
Size
21 kB (21274 bytes)
Hash
b44051add019ace9be5c56ab3821a909
619c1146d9abae0f6481b32fb3f187e08d8584cc
6007979bd79f6048c3e7023fc19f0533fc2adf338b5fea91628e0ae67c927a32

HTTP Headers

POST /analyze/ajax HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 146
Origin: https://www.y2meta.com
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:37 GMT
content-type: application/json; charset=utf-8
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BkY6JlAhsKeyte1muQ3v36V%2F9RlyUWl%2Fu8jCrT7YNCgmEqRcYfxAnqjba9zyLFTVJbmCQzde%2FRAM09Kw8AP9IFtOShsaaWxiKvzFoKG5Y11QV7L7Nm2qPVoR%2FQNFemhulA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85b50f0fb87d63f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.y2meta.com/js/common.min.js?v=25

104.21.234.80

200 OK

1.9 kB

URL GET HTTP/2
www.y2meta.com/js/common.min.js?v=25
IP
104.21.234.80:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.y2meta.com/youtube/GtZp80V7gA8/
Certificate
IssuerGoogle Trust Services LLC
Subjecty2meta.com
FingerprintED:32:F0:51:94:E2:07:0B:8C:CE:71:56:95:80:5B:90:75:4D:FF:09
ValidityTue, 30 Jan 2024 21:34:35 GMT - Mon, 29 Apr 2024 21:34:34 GMT

File type
JavaScript source, ASCII text, with very long lines (2012), with no line terminators
Size
1.9 kB (1935 bytes)
Hash
3f6f4fdb4d333b20f5ca2dac9de3eeb4
085767e2cfedeaaba81ffedae8b39198ae31eb54
fb749987296e35816c09857e1f415df3a6759025967391117383a203ecb666dc

HTTP Headers

GET /js/common.min.js?v=25 HTTP/1.1
Host: www.y2meta.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.y2meta.com/youtube/GtZp80V7gA8/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 26 Feb 2024 03:21:35 GMT
content-type: application/javascript
last-modified: Thu, 21 Sep 2023 07:00:35 GMT
etag: W/"1d9ec5951a2ac0f"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 3530
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rtGOWWrF1aoy15O%2FZS5I6tMq5TkBQpcKGDqpWu2jtsnHjbPbIjOskyBBDsiOmIPFCxL8hCKHpRyIuFRXhCdLamTS72tpfKoq%2BUA46a9YLFZLpgHlphH8wO%2BIY%2BUwGqBq7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85b50f0fb87f63f9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash