Report - pumpum.top/back.html?traceID=88617634&tbReason=1

Report Overview

Visitedpublic

2025-08-02 21:02:46

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
consent.yahoo.com	31016	1995-01-18	2019-02-20	2025-08-02	2.5 kB	96 kB	54.229.95.72
s.yimg.com	375	1997-05-14	2012-05-20	2025-07-31	3.2 kB	400 kB	188.125.94.206
www.yahoo.com	1299	1995-01-18	2012-05-20	2025-08-02	482 B	94 kB	188.125.94.206
udc.yahoo.com	2454	1995-01-18	2017-01-30	2025-08-02	689 B	594 B	188.125.72.139
pumpum.top	unknown	2025-01-28	2025-03-23	2025-07-31	516 B	93 kB	159.253.19.140
guce.yahoo.com	2064	1995-01-18	2018-03-16	2025-08-02	580 B	93 kB	34.246.18.75

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Quad9 DNS	pumpum.top	malicious	Sinkholed

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1	ScriptElement	140 B	2024-03-02	2025-08-03
URL consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1 IP / ASN 54.229.95.72 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2024-03-02 Last Seen 2025-08-03 Times Seen 974 Size 140 B (140 bytes) MD5 cb35f66e60f5a88b6ad45db24cfd4a1e SHA1 0d89c03ff758fffdbd48297c905430f46e05640d SHA256 39aa0748ee518e97e5a33e72328fcf31efae53dc5eef2e84115861328634ca82 Format Code Loading...

	s.yimg.com/ss/rapid-3.53.30.js	ScriptElement	50 kB	2023-03-07	2025-08-03
URL s.yimg.com/ss/rapid-3.53.30.js IP / ASN 188.125.94.206 #10310 YAHOO-1 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 3558 Size 50 kB (50266 bytes) MD5 665798d28ecf9be7cbc434e75267920d SHA1 55864f76f012bb11a354c6bacdcc7769a5ec6fa2 SHA256 7bc917ebee12bcd521ae88840228032579459c25a3ccf8953d8a2dbe5e085be9 Format Code Loading...

	s.yimg.com/oa/build/js/site-73f55ada.js	ScriptElement	101 kB	2025-07-28	2025-08-03
URL s.yimg.com/oa/build/js/site-73f55ada.js IP / ASN 188.125.94.206 #10310 YAHOO-1 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-28 Last Seen 2025-08-03 Times Seen 65 Size 101 kB (101167 bytes) MD5 0f64647d8f7f4314a6d67fda1fba4e9f SHA1 73f55adad64d61c6ca9c10f1a6f8bdf3b7c175cd SHA256 05501cd208dfe67ac638c8c789d9cacecde2d7351272f24a86ccbb9f1259a339 Format Code Loading...

	consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1	ScriptElement	700 B	2025-03-25	2025-08-03
URL consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1 IP / ASN 54.229.95.72 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2025-03-25 Last Seen 2025-08-03 Times Seen 861 Size 700 B (700 bytes) MD5 ce8910148f681d52b05edc8fc744b5d5 SHA1 172f26f8900a4e3bde1252ab00d2c8826ad2996f SHA256 a1e6aeac162d2dcfc603b227c9327dc0da9df968837f8b18cba20bcc11c6e543 Format Code Loading...

HTTP Transactions (15)

URL IP Response Size

POST consent.yahoo.com/beacon?tag=TCF2&step=Layer1-View-Js&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

54.229.95.72

204 No Content

0 B

URL

consent.yahoo.com/beacon?tag=TCF2&step=Layer1-View-Js&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

IP / ASN

54.229.95.72

#16509 AMAZON-02

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subjectconsent.oath.com

Fingerprint32:DE:14:6E:F4:5A:10:9F:32:24:EE:99:A9:CE:43:5E:25:23:3A:CC

ValidityTue, 01 Jul 2025 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT

Technology Fingerprints

HTTP Headers

POST /beacon?tag=TCF2&step=Layer1-View-Js&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1 HTTP/1.1
Host: consent.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1
Origin: https://consent.yahoo.com
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Content-Length: 0

HTTP/1.1 204 No Content
Server: guce
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Sat, 02 Aug 2025 21:02:25 GMT

GET consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

54.229.95.72

200 OK

93 kB

URL

consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

IP / ASN

54.229.95.72

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (38326)

First Seen2025-08-02

Last Seen2025-08-02

Times Seen1

Size93 kB (92880 bytes)

MD5095d6daf36a9f48111e41b64736737ee

SHA1c2583c36f7db47384f596cf45f9241a7ac63270a

SHA256d1c30bb45907d1c36235e2635983aed409b6632c8d7ae4a2b30a7f9ed9870d50

Certificate Info

IssuerDigiCert Inc

Subjectconsent.oath.com

Fingerprint32:DE:14:6E:F4:5A:10:9F:32:24:EE:99:A9:CE:43:5E:25:23:3A:CC

ValidityTue, 01 Jul 2025 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT

Technology Fingerprints

HTTP Headers

GET /v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1 HTTP/1.1
Host: consent.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Encoding: gzip
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Content-Security-Policy-Report-Only: default-src 'none'; block-all-mixed-content; connect-src 'self' https://udc.yahoo.com/ https://geo.yahoo.com/; frame-ancestors 'none'; img-src 'self' https://s.yimg.com; media-src 'none'; script-src 'self' 'nonce-y+itYjn+e3iZFlM1FyseqsKJm0dv1FNt' https://s.yimg.com; style-src 'self' 'nonce-y+itYjn+e3iZFlM1FyseqsKJm0dv1FNt' https://s.yimg.com; font-src 'self'; object-src 'none'; frame-src 'none'; report-uri https://csp.yahoo.com/beacon/csp?src=guce
Server: guce
X-XSS-Protection: 1; mode=block
Pragma: no-cache
X-Frame-Options: DENY
Referrer-Policy: strict-origin-when-cross-origin
Date: Sat, 02 Aug 2025 21:02:24 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
Content-Type: text/html;charset=UTF-8
Content-Length: 14431

GET s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage.png

188.125.94.206

200 OK

810 B

URL

s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage.png

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typePNG image data, 120 x 36, 8-bit colormap, non-interlaced

First Seen2023-05-01

Last Seen2025-08-03

Times Seen2241

Size810 B (810 bytes)

MD5119157c5c80d9db38f0da8098a35b53a

SHA16c65f9bdaf6aad4fdde6c1bde1e509a6f056058b

SHA2561b119e32e848339740c549d02aa62d5fd21451d5ce468225922faae86555a68d

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Amazon Web Services (PaaS)

Apache Traffic Server (Web servers)

HTTP Headers

GET /rz/p/yahoo_frontpage_en-US_s_f_w_bestfit_frontpage.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: zyMeGbdISPmrnHmmO9YuTWP/6+T3GjONCxdWMKCmfJzS4I5jydlF2nj/KOerbxFUJoUqm6A7qf4=
x-amz-request-id: P8JW8Q8PS4DTVX46
date: Sat, 02 Aug 2025 09:26:16 GMT
last-modified: Fri, 01 Aug 2025 21:31:45 GMT
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
accept-ranges: bytes
content-type: image/png
content-length: 810
server: ATS
vary: Origin
etag: "119157c5c80d9db38f0da8098a35b53a"
expires: Sat, 02 Aug 2025 23:00:00 GMT
age: 41770
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

GET consent.yahoo.com/static/images/close.svg

54.229.95.72

200 OK

1.4 kB

URL

consent.yahoo.com/static/images/close.svg

IP / ASN

54.229.95.72

#16509 AMAZON-02

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2023-09-13

Last Seen2025-08-03

Times Seen1954

Size1.4 kB (1402 bytes)

MD504fdad3c9b32cf024d3494c6e0b1f691

SHA1e7c0aabd33e695415e7a8c7afea4b94dca273f06

SHA2568f0baedf119a144b8b4fe597eb02a91fc47d89284aa6cdcc12097cb109598796

Certificate Info

IssuerDigiCert Inc

Subjectconsent.oath.com

Fingerprint32:DE:14:6E:F4:5A:10:9F:32:24:EE:99:A9:CE:43:5E:25:23:3A:CC

ValidityTue, 01 Jul 2025 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT

Technology Fingerprints

HTTP Headers

GET /static/images/close.svg HTTP/1.1
Host: consent.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Encoding: gzip
Server: guce
Accept-Ranges: bytes
Date: Sat, 02 Aug 2025 21:02:25 GMT
Connection: keep-alive
Last-Modified: Wed, 30 Jul 2025 19:07:29 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 703
Content-Type: image/svg+xml

GET consent.yahoo.com/beacon?tag=TCF2&step=Layer1-View&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

54.229.95.72

204 No Content

0 B

URL

consent.yahoo.com/beacon?tag=TCF2&step=Layer1-View&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

IP / ASN

54.229.95.72

#16509 AMAZON-02

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subjectconsent.oath.com

Fingerprint32:DE:14:6E:F4:5A:10:9F:32:24:EE:99:A9:CE:43:5E:25:23:3A:CC

ValidityTue, 01 Jul 2025 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT

Technology Fingerprints

HTTP Headers

GET /beacon?tag=TCF2&step=Layer1-View&brandDomain=www.yahoo.com&brandBid=&userType=nonreg&sdk=false&tos=nb-NO&country=NO&x=&sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1 HTTP/1.1
Host: consent.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 204 No Content
Server: guce
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Sat, 02 Aug 2025 21:02:25 GMT

GET s.yimg.com/oa/build/images/help-circle-solid-black_f68609a66d5b78e7.svg

188.125.94.206

200 OK

2.7 kB

URL

s.yimg.com/oa/build/images/help-circle-solid-black_f68609a66d5b78e7.svg

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2023-05-07

Last Seen2025-08-03

Times Seen2205

Size2.7 kB (2715 bytes)

MD55fec39e72a4ed58c02f47c08dcf0ee9b

SHA1fb77c65f3087b8cf25cdcda7c76fb22e2d698d2d

SHA2569284f7fb38c8d02a4bd0e156987de0ececfb3b7aab4a0a004591fc784f1d01b5

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

Amazon Web Services (PaaS)

HTTP Headers

GET /oa/build/images/help-circle-solid-black_f68609a66d5b78e7.svg HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://s.yimg.com/oa/build/css/site-ltr-fcbc12bf.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: hzwBmJ8mvQ+8J/w9vY9U1D3kQT3y7G8baYwsCCnXMaIItJso+2hAcCpfY4aD0Gtd32CHJXdN4RTNF/tBzjxUFOr+TW+X+Q4Cl42IV+TPD4c=
x-amz-request-id: DXCV3SHB0ZQW83DR
date: Sat, 26 Jul 2025 11:03:13 GMT
last-modified: Thu, 24 Jul 2025 14:38:50 GMT
etag: "db8ae5c3af867c288f5acd55550ff4c9"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000; immutable
content-encoding: gzip
accept-ranges: bytes
content-type: image/svg+xml
content-length: 1312
server: ATS
vary: Origin
age: 640753
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
ats-carp-promotion: 1
X-Firefox-Spdy: h2

GET www.yahoo.com/

188.125.94.206

307 Temporary Redirect

93 kB

URL

www.yahoo.com/

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size93 kB (92880 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

HTTP Headers

GET / HTTP/1.1
Host: www.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 307 Temporary Redirect
date: Sat, 02 Aug 2025 21:02:24 GMT
strict-transport-security: max-age=31536000
server: ATS
cache-control: no-store
content-type: text/html; charset=utf-8
content-language: en
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
location: https://guce.yahoo.com/consent?brandType=nonEu&gcrumb=a0ramsQ&done=https%3A%2F%2Fwww.yahoo.com%2F
set-cookie: GUCS=AWtK2prE; Max-Age=1800; Domain=.yahoo.com; Path=/; Secure
content-security-policy: frame-ancestors 'self' https://*.builtbygirls.com https://*.rivals.com https://*.engadget.com https://*.intheknow.com https://*.autoblog.com https://*.techcrunch.com https://*.yahoo.com https://*.aol.com https://*.huffingtonpost.com https://*.oath.com https://*.search.yahoo.com https://*.pnr.ouryahoo.com https://pnr.ouryahoo.com https://*.search.aol.com https://*.search.huffpost.com https://*.onesearch.com https://*.verizonmedia.com https://*.publishing.oath.com https://cdn.taboola.com https://ads.taboola.com; sandbox allow-forms allow-same-origin allow-scripts allow-popups allow-popups-to-escape-sandbox allow-presentation; report-uri https://csp.yahoo.com/beacon/csp?src=ats&site=news&region=US&lang=en-US&device=desktop&yrid=6o9nr8tivmg0j&partner=;
content-length: 0
X-Firefox-Spdy: h2

POST udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=1197812781&yhlCT=2&yhlBTMS=1754168545223&yhlClientVer=3.53.30&yhlRnd=OC0c8CPQLV5baFbh&yhlCompressed=0

188.125.72.139

204 No Content

0 B

URL

udc.yahoo.com/v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=1197812781&yhlCT=2&yhlBTMS=1754168545223&yhlClientVer=3.53.30&yhlRnd=OC0c8CPQLV5baFbh&yhlCompressed=0

IP / ASN

188.125.72.139

#34010 Yahoo-UK Limited

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subjectyahoo.com

Fingerprint6C:23:14:EA:B1:DF:98:60:2A:CF:08:82:7B:57:A5:93:E6:7B:D1:5E

ValidityTue, 06 May 2025 00:00:00 GMT - Wed, 29 Oct 2025 23:59:59 GMT

Technology Fingerprints

Envoy (Reverse proxies)

Apache Traffic Server (Web servers)

HTTP Headers

POST /v2/public/yql?yhlVer=2&yhlClient=rapid&yhlS=1197812781&yhlCT=2&yhlBTMS=1754168545223&yhlClientVer=3.53.30&yhlRnd=OC0c8CPQLV5baFbh&yhlCompressed=0 HTTP/1.1
Host: udc.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1302
Origin: https://consent.yahoo.com
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: https://consent.yahoo.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, private, max-age=0
p3p: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV"
pragma: no-cache
expires: -1
x-envoy-upstream-service-time: 1
date: Sat, 02 Aug 2025 21:02:25 GMT
server: ATS
age: 0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

GET s.yimg.com/oa/build/images/favicons/yahoo.png

188.125.94.206

200 OK

1.4 kB

URL

s.yimg.com/oa/build/images/favicons/yahoo.png

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeMS Windows icon resource - 1 icon, 16x16, 8 bits/pixel

First Seen2023-04-12

Last Seen2025-08-03

Times Seen4138

Size1.4 kB (1406 bytes)

MD5b6814ae5582d7953821acbd76e977bb4

SHA175a33fc706c2c6ba233e76c17337e466949f403c

SHA2564a491acd00880c407a2b749619003716c87e9c25ac344e5934c13e8f9aa0e8b3

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

Amazon Web Services (PaaS)

HTTP Headers

GET /oa/build/images/favicons/yahoo.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: bdgB8jWRMkzXaRU2wDRZilNmySG1/HZd+sMORhM0VpX0iMD20jtpYaH9nUkCAgpQ9EdWSLAqzBA=
x-amz-request-id: 93MKZB7D7EV9DR9E
date: Tue, 29 Jul 2025 13:12:16 GMT
last-modified: Tue, 29 Jul 2025 13:04:25 GMT
etag: "b6814ae5582d7953821acbd76e977bb4"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000; immutable
accept-ranges: bytes
content-type: image/png
content-length: 1406
server: ATS
vary: Origin
age: 373810
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
ats-carp-promotion: 1
X-Firefox-Spdy: h2

GET s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage.png

188.125.94.206

200 OK

760 B

URL

s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage.png

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typePNG image data, 120 x 36, 8-bit colormap, non-interlaced

First Seen2023-05-01

Last Seen2025-08-03

Times Seen2253

Size760 B (760 bytes)

MD57e72897bf7bdaecf5fec47f028de6aac

SHA1a6d4f7b2b57a751941cc56e3cffbfde4de633576

SHA2568a781f94157287ada91708b4baf12712cedf808ce49c58c194fc9873f4fa7a30

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

Amazon Web Services (PaaS)

HTTP Headers

GET /rz/p/yahoo_frontpage_en-US_s_f_p_bestfit_frontpage.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: reWn295gkdevXu2YaFzdW3A05gulAmToLn5TwRMdu5xmApK7NoxNzQcfQf3Wi78z5u5IvSYVjoM=
x-amz-request-id: NSX3KT7NTQCFHE9X
date: Sat, 02 Aug 2025 13:00:35 GMT
last-modified: Fri, 01 Aug 2025 21:31:45 GMT
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
accept-ranges: bytes
content-type: image/png
content-length: 760
server: ATS
vary: Origin
etag: "7e72897bf7bdaecf5fec47f028de6aac"
expires: Sat, 02 Aug 2025 23:00:00 GMT
age: 28912
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

GET pumpum.top/back.html?traceID=88617634&tbReason=1

159.253.19.140

302 Found

93 kB

URL

pumpum.top/back.html?traceID=88617634&tbReason=1

IP / ASN

159.253.19.140

#198068 P.a.g.m. Ou

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size93 kB (92880 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subject*.xhives.net

Fingerprint92:C9:27:57:34:86:50:DC:4E:AE:9C:0A:E5:E0:21:40:2F:E9:59:BE

ValiditySat, 28 Jun 2025 07:51:27 GMT - Fri, 26 Sep 2025 07:51:26 GMT

Technology Fingerprints

PHP:8.1.29 (Programming languages)

Nginx:1.28.0 (Web servers, Reverse proxies)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /back.html?traceID=88617634&tbReason=1 HTTP/1.1
Host: pumpum.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Server: nginx/1.28.0
Date: Sat, 02 Aug 2025 21:02:24 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.1.29
X-Frame-Options: DENY
Set-Cookie: visit=1; expires=Sun, 03-Aug-2025 20:59:59 GMT; Max-Age=86256; HttpOnly
traceID=ZzHmvjXP; expires=Sun, 02-Aug-2026 21:02:23 GMT; Max-Age=31536000; HttpOnly
clickStatus: 1
location: https://www.yahoo.com

GET guce.yahoo.com/consent?brandType=nonEu&gcrumb=a0ramsQ&done=https%3A%2F%2Fwww.yahoo.com%2F

34.246.18.75

302 Found

93 kB

URL

guce.yahoo.com/consent?brandType=nonEu&gcrumb=a0ramsQ&done=https%3A%2F%2Fwww.yahoo.com%2F

IP / ASN

34.246.18.75

#16509 AMAZON-02

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5620951

Size93 kB (92880 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerDigiCert Inc

Subjectguce.oath.com

FingerprintBD:6E:A8:1A:CC:BB:D3:DB:B7:2C:10:EB:10:C4:41:09:AD:1D:E2:C6

ValidityTue, 01 Jul 2025 00:00:00 GMT - Wed, 24 Dec 2025 23:59:59 GMT

Technology Fingerprints

HTTP Headers

GET /consent?brandType=nonEu&gcrumb=a0ramsQ&done=https%3A%2F%2Fwww.yahoo.com%2F HTTP/1.1
Host: guce.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: GUCS=AWtK2prE
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Connection: keep-alive
Server: guce
Strict-Transport-Security: max-age=31536000; includeSubDomains
Location: https://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1
Content-Length: 0
Date: Sat, 02 Aug 2025 21:02:24 GMT

GET s.yimg.com/oa/build/css/site-ltr-fcbc12bf.css

188.125.94.206

200 OK

239 kB

URL

s.yimg.com/oa/build/css/site-ltr-fcbc12bf.css

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeASCII text

First Seen2025-05-14

Last Seen2025-08-03

Times Seen731

Size239 kB (238658 bytes)

MD505296cb1adf8cd0c27b9d7fa693f6838

SHA1fcbc12bf695cdb618625119e46a9d3abf55bc490

SHA256d92f28f16ef4904afb66cd19da7086b8014bfa504d1b876a57bdfd1ec63e1ace

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

Amazon Web Services (PaaS)

HTTP Headers

GET /oa/build/css/site-ltr-fcbc12bf.css HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: TuiQSDXtYffqK0DsXTQwtyRBKUOSb4Lfd+i3knpv97sIk4ym8WtTaUqOZzyI/GEUAdZnPT0lWMY=
x-amz-request-id: PBXYCM5YXY6JD22Q
date: Mon, 14 Jul 2025 19:16:50 GMT
last-modified: Thu, 10 Jul 2025 12:09:49 GMT
etag: "719e9b778784d31c295ea2081c36d99a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000; immutable
content-encoding: gzip
accept-ranges: bytes
content-type: text/css
content-length: 37669
server: ATS
vary: Origin
age: 1647936
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2

GET s.yimg.com/oa/build/js/site-73f55ada.js

188.125.94.206

200 OK

101 kB

URL

s.yimg.com/oa/build/js/site-73f55ada.js

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typeJavaScript source, ASCII text, with very long lines (497)

First Seen2025-07-28

Last Seen2025-08-03

Times Seen65

Size101 kB (101167 bytes)

MD50f64647d8f7f4314a6d67fda1fba4e9f

SHA173f55adad64d61c6ca9c10f1a6f8bdf3b7c175cd

SHA25605501cd208dfe67ac638c8c789d9cacecde2d7351272f24a86ccbb9f1259a339

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Amazon Web Services (PaaS)

Apache Traffic Server (Web servers)

HTTP Headers

GET /oa/build/js/site-73f55ada.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 9/H6cWNYz0ucKwOFEfOrsFw721YTRGeEkXp4V4B7OLPxj7hzCnd6COTx1rOhRPfJiR7WHzVxsmAMB9aocWAXofPzpfmpFIKaIgq08kUjYbA=
x-amz-request-id: 5PWQMES0KAK2MQTA
date: Mon, 28 Jul 2025 07:04:50 GMT
last-modified: Mon, 28 Jul 2025 06:36:18 GMT
etag: "f7f0639b5b6e24d4ab10047b0248bc94"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000; immutable
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 18967
server: ATS
vary: Origin
age: 482256
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
ats-carp-promotion: 1
X-Firefox-Spdy: h2

GET s.yimg.com/ss/rapid-3.53.30.js

188.125.94.206

200 OK

50 kB

URL

s.yimg.com/ss/rapid-3.53.30.js

IP / ASN

188.125.94.206

#10310 YAHOO-1

Requested byhttps://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_cd67aea2-9249-4af6-98b4-0c9d297bc5e1

Resource Info

File typedata

First Seen2023-03-07

Last Seen2025-08-03

Times Seen3558

Size50 kB (50266 bytes)

MD5665798d28ecf9be7cbc434e75267920d

SHA155864f76f012bb11a354c6bacdcc7769a5ec6fa2

SHA2567bc917ebee12bcd521ae88840228032579459c25a3ccf8953d8a2dbe5e085be9

Certificate Info

IssuerDigiCert Inc

Subject*.fantasysports.yahoo.com

Fingerprint23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6

ValidityWed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT

Technology Fingerprints

Apache Traffic Server (Web servers)

Amazon Web Services (PaaS)

HTTP Headers

GET /ss/rapid-3.53.30.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://consent.yahoo.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: sFU4/XuvWLNRYIgAHxGqS+NrqBKKqc3lM23D1TmxRKttAFpHVmzqpGsiFsD/MwkGx6i9xuSqqSE=
x-amz-request-id: 7NYRWQ58DH5F6PXT
date: Sun, 06 Jul 2025 10:36:11 GMT
last-modified: Tue, 29 Jun 2021 01:45:07 GMT
etag: "665798d28ecf9be7cbc434e75267920d-df"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, immutable
x-amz-version-id: .Bcg25AHAdRCkTvv5tMdNmGVEjznZ_m3
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
content-encoding: gzip
age: 2370375
content-length: 17971
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
ats-carp-promotion: 1
X-Firefox-Spdy: h2