GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.35.47_REC-320x180.png
200 OK 33 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.35.47_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 33 kB (32938 bytes)
MD5 6dfe9f2b0d4879036360078ba204a915
SHA1 244525345e40011a6d2e8adb7b0f29a2c22f5d38
SHA256 08a3923fb9e042aebca59f65ea4d8f3967b042ec3c4397032e4845dacce5f932
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.35.47_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=KRWWP3Ql7JpTpyD0; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Mon, 28 Apr 2025 11:36:07 GMT
accept-ranges: bytes
content-length: 32938
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/E365740-720p-frame-at-0m2s-320x180.jpg
200 OK 14 kB URL
pytsct.com/wp-content/uploads/2025/04/E365740-720p-frame-at-0m2s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 14 kB (14512 bytes)
MD5 7c7c2cf17b0f75413f1561db38ec000d
SHA1 a5af4543012efc715e08f3c2114f7cdedd78cb3c
SHA256 12baf4e6ff541f5e2a8204043e165d6b41d6e4180f098fe5e2c5cb01da424594
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/E365740-720p-frame-at-0m2s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=f0brJnoy1otjmrar; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sun, 27 Apr 2025 10:14:36 GMT
accept-ranges: bytes
content-length: 14512
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/26C7E7A-frame-at-1m6s-320x180.jpg
200 OK 11 kB URL
pytsct.com/wp-content/uploads/2025/04/26C7E7A-frame-at-1m6s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 11 kB (11346 bytes)
MD5 372ded97a344bf96c2114a89d742e905
SHA1 e868ffde295671155951eb280df9db90a4008306
SHA256 3ac7161b89714691da70e0e675f9cc81e7a611bb36a02b66e1fe57550f20e979
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/26C7E7A-frame-at-1m6s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=LTVYyAmv60uKaXsK; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:04 GMT
last-modified: Sun, 27 Apr 2025 10:08:22 GMT
accept-ranges: bytes
content-length: 11346
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/1910734075654012928-frame-at-23m43s-320x180.jpg
200 OK 11 kB URL
pytsct.com/wp-content/uploads/2025/04/1910734075654012928-frame-at-23m43s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 11 kB (10675 bytes)
MD5 76cd242739c78eb4628f6dd233cf2a67
SHA1 fcacfd1c59ed4b3599e322d1e9ac9b0b4c2a1770
SHA256 91943beb8f98b1a48a743bcba204ec28eff09c98a5be902c81c0e0416a76b75a
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/1910734075654012928-frame-at-23m43s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=ezK2DySd0dasOl7M; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:07:00 GMT
last-modified: Fri, 25 Apr 2025 11:35:17 GMT
accept-ranges: bytes
content-length: 10675
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 10227
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/24.04.2025_12.02.41_REC-320x180.png
200 OK 32 kB URL
pytsct.com/wp-content/uploads/2025/04/24.04.2025_12.02.41_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 32 kB (31645 bytes)
MD5 bc8cd99e9187917c06c164fec38ad9cf
SHA1 552240ffc548e8db3ebb9071407fb5bdd2edbcbe
SHA256 23a9d2449eab8462932ec86145627045dea41c02b31601ad7ed22f08eb857a37
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/24.04.2025_12.02.41_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=bY3HWhIxeBb8hvX0; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:52:15 GMT
last-modified: Thu, 24 Apr 2025 11:03:03 GMT
accept-ranges: bytes
content-length: 31645
content-type: image/png
ddg-cache-status: HIT,HIT
age: 7512
X-Firefox-Spdy: h2
GET guidepaparazzisurface.com/lv/esnk/2064784/code.js
200 OK 175 kB URL
guidepaparazzisurface.com/lv/esnk/2064784/code.js
IP / ASN
94.242.247.33
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 175 kB (174719 bytes)
MD5 db945fef7bfbb8351b2df8cbf8b308e2
SHA1 4cf092ce54696b37c1c706783cbfb75e2156e06d
SHA256 1e3f58207a17c9ce4413c023f57d66b6f3fca09330522d04df468c5ba87f5ca0
Certificate Info
Issuer Google Trust Services
Subject guidepaparazzisurface.com
Fingerprint E0:2B:E5:BB:DD:D5:4D:8C:03:81:64:8C:41:56:C2:13:F7:7E:38:0F
Validity Wed, 12 Mar 2025 15:21:29 GMT - Tue, 10 Jun 2025 15:21:28 GMT
GET /lv/esnk/2064784/code.js HTTP/1.1
Host: guidepaparazzisurface.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 29 Apr 2025 00:57:26 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Apr 2025 08:42:15 GMT
vary: Accept-Encoding
etag: W/"680f3f67-2ab27"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.49.02_REC-320x180.png
200 OK 38 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.49.02_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-07-09
Times Seen 2
Size 38 kB (38304 bytes)
MD5 91f17940c81e969f5008fae7fca3dae1
SHA1 d720c33258de1275431b867c24a5d2529206086d
SHA256 12217147bcba839e3504e731c278738804011b89352682b2a268bbf5a821ae40
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.49.02_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=5KaJQolaazGNnqCk; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:49:19 GMT
accept-ranges: bytes
content-length: 38304
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.46.38_REC-320x180.png
200 OK 42 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.46.38_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-07-09
Times Seen 2
Size 42 kB (42349 bytes)
MD5 5d4fabfc9f32bbab773752c522869e4f
SHA1 2cf03e69ee0910e02571dcf6b887715ffe22755f
SHA256 b9946a4f5a05476529394610c5c6e812a362c2e2895bb8d9a42461c6c2104063
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.46.38_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=RMQ6K5bfJO8Evxkl; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:46:58 GMT
accept-ranges: bytes
content-length: 42349
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/27.04.2025_11.12.14_REC-320x180.png
200 OK 42 kB URL
pytsct.com/wp-content/uploads/2025/04/27.04.2025_11.12.14_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 42 kB (42528 bytes)
MD5 92dd81cc1fa462d05180ad77d9a9d77b
SHA1 78a012e244f8110dfcd2a8b51b859f461bd4eaba
SHA256 9ae761aeb2daa9bf8df6f00d8e8dd6b15cfe5d4c82c21519db67079f4ca6fa02
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/27.04.2025_11.12.14_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=1DTtdZOov6JRwjQo; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:04 GMT
last-modified: Sun, 27 Apr 2025 10:12:34 GMT
accept-ranges: bytes
content-length: 42528
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.13.21_REC-320x180.png
200 OK 47 kB URL
pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.13.21_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 47 kB (46850 bytes)
MD5 db9064a538912160ef8c9e3a593464eb
SHA1 3ac3a02bf11a4f66015e21ac6bfe88deb7ff5750
SHA256 6cce2db1b2e3a005bd878af2f4de4e57d8c64fe0aa84358c95ce8d751c46300c
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/26.04.2025_14.13.21_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=Qy1wrB3QRjeiuJXj; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sat, 26 Apr 2025 13:13:46 GMT
accept-ranges: bytes
content-length: 46850
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/D0A8318-frame-at-0m29s-320x180.jpg
200 OK 14 kB URL
pytsct.com/wp-content/uploads/2025/04/D0A8318-frame-at-0m29s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 14 kB (13569 bytes)
MD5 084d1eb3a7b03afc344462a502e4690e
SHA1 1dbe99f3e52decf09b78a5a57598b08d70fb829b
SHA256 36fee0c49813e4797a675ccbb98c406c63acff71bf0015916c3910499d5a8f0d
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/D0A8318-frame-at-0m29s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=ecVpvIMaChSZKKog; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:23:21 GMT
last-modified: Fri, 25 Apr 2025 11:26:48 GMT
accept-ranges: bytes
content-length: 13569
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 9246
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.53.43_REC-320x180.png
200 OK 30 kB URL
pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.53.43_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 30 kB (29826 bytes)
MD5 483e2830f728adfc5d433de007a898df
SHA1 cdd478ce3be45189c94f21b5b4f6ca8a07478432
SHA256 9415c920c7a6e6c47cd6b87f65f8ec835381799566319f15199c07f680544515
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/24.04.2025_11.53.43_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=PDGcWE8buNVQ0deX; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:52:15 GMT
last-modified: Thu, 24 Apr 2025 10:54:06 GMT
accept-ranges: bytes
content-length: 29826
content-type: image/png
ddg-cache-status: HIT,HIT
age: 7512
X-Firefox-Spdy: h2
GET pytsct.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL
pytsct.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65447)
First Seen 2023-11-03
Last Seen 2025-08-02
Times Seen 153883
Size 88 kB (87553 bytes)
MD5 826eb77e86b02ab7724fe3d0141ff87c
SHA1 79cd3587d565afe290076a8d36c31c305a573d18
SHA256 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=9ojMdas4OoEofBWz; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Apr 2025 14:18:40 GMT
last-modified: Mon, 28 Aug 2023 14:14:24 GMT
accept-ranges: bytes
content-length: 87553
content-type: text/javascript
ddg-cache-status: HIT,HIT
age: 297526
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.43.07_REC-320x180.png
200 OK 82 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.43.07_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-07-09
Times Seen 2
Size 82 kB (82219 bytes)
MD5 bad8b8f0a1381634f36f9d839ec654f1
SHA1 c2eb62d77a712283ed50d3782891e9eb8e2ac121
SHA256 7c89a75362f354e14136764e7c176f6b88e53f8c3767090be7537f36b7cab7dc
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.43.07_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=aIspB2jbUspRuaEU; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:43:26 GMT
accept-ranges: bytes
content-length: 82219
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.15.42_REC-320x180.png
200 OK 44 kB URL
pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.15.42_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 44 kB (43842 bytes)
MD5 0f6d49883a7e0cbc798aff39f7e4c59f
SHA1 0e030cd8297e2800c0346d160bf65ca47e7b0a10
SHA256 2baa6a9d68445d733e7ad10d0274ff826e9cd3d923e3b1207c5f9f0eb68bc0f9
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/26.04.2025_14.15.42_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=LrzypsLU9jaxgkWa; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:05 GMT
last-modified: Sat, 26 Apr 2025 13:16:08 GMT
accept-ranges: bytes
content-length: 43842
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/A981062-frame-at-0m46s-320x180.jpg
200 OK 11 kB URL
pytsct.com/wp-content/uploads/2025/04/A981062-frame-at-0m46s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 11 kB (11156 bytes)
MD5 9200bde17ca722e37c3df0ecb89e68a9
SHA1 00840c2a0441bf5396ec81cbb75572da4a3587b2
SHA256 bb13002ff32a37cb16eeef65b8a4d584655308eb314d65edbf55af1cdf9edf47
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/A981062-frame-at-0m46s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=wHHKb55stsearUp9; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sat, 26 Apr 2025 13:11:55 GMT
accept-ranges: bytes
content-length: 11156
content-type: image/jpeg
ddg-cache-status: HIT,HIT
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/24.04.2025_12.08.08_REC-320x180.png
200 OK 27 kB URL
pytsct.com/wp-content/uploads/2025/04/24.04.2025_12.08.08_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 27 kB (27088 bytes)
MD5 201bc39808447388638de6329720ea68
SHA1 beb309b66fa63c754b299017b9a361337d450139
SHA256 4948b42da31ccec12b1d2e94213b9f97366f7fedc04c295403aa101eef1453d1
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/24.04.2025_12.08.08_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=HdBnvorTFYtU6HHa; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:52:15 GMT
last-modified: Thu, 24 Apr 2025 11:08:25 GMT
accept-ranges: bytes
content-length: 27088
content-type: image/png
ddg-cache-status: HIT,HIT
age: 7512
X-Firefox-Spdy: h2
GET experttrafficcounter.com/stats
200 OK 40 B URL
experttrafficcounter.com/stats
IP / ASN
52.59.66.7
#16509 AMAZON-02
Requested by https://pytsct.com/
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 40 B (40 bytes)
MD5 a672d891ec8261246f8c66c492f4abeb
SHA1 700fb68cd4d716692a933a0457e137b655ef23c9
SHA256 48fb0cef299e55677bbac644e447a9adeb12cf41b2084ffa6c9e251c6bba3b34
Certificate Info
Issuer Amazon
Subject experttrafficcounter.com
Fingerprint EE:A0:89:D0:CF:A2:E2:EC:50:6D:6C:20:D2:5A:BB:B9:8C:6E:3F:CC
Validity Thu, 23 Jan 2025 00:00:00 GMT - Sat, 21 Feb 2026 23:59:59 GMT
GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pytsct.com
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 29 Apr 2025 00:57:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://pytsct.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=a9567bef-eda6-40f4-a2ce-ad0e67286137:1:1; expires=Fri, 27 Apr 2035 00:57:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET pytsct.com/wp-includes/js/wp-emoji-release.min.js?ver=6.8
200 OK 19 kB URL
pytsct.com/wp-includes/js/wp-emoji-release.min.js?ver=6.8
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (16290)
First Seen 2025-04-03
Last Seen 2025-08-02
Times Seen 33020
Size 19 kB (19264 bytes)
MD5 1dafa7fe14b33c26fef9b0e5ba0c8e72
SHA1 62f67cdac55d89c43570bf0c338f4edf548b14e1
SHA256 50cc1a0490008ec62ca8b581fa9cdcfb2eda2d36a08ccbeb1f004da599e9cc61
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.8 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=YyuV0G2DqfHS7OVV; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=puOWhuzrBvGBXnUa; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 02:19:55 GMT
last-modified: Tue, 15 Apr 2025 23:04:47 GMT
accept-ranges: bytes
content-length: 19264
content-type: text/javascript
age: 81451
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/DE37CBC-720p-frame-at-0m24s-320x180.jpg
200 OK 14 kB URL
pytsct.com/wp-content/uploads/2025/04/DE37CBC-720p-frame-at-0m24s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 14 kB (13560 bytes)
MD5 e40f5009a8016ab8da6246eb34b83942
SHA1 bd6bf85ff1351cb4fec5607af111249cd3a4fad2
SHA256 ec0d536501b4cf363c8a0f6fb64587786d2d122e42c28451544b92c91ac1743e
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/DE37CBC-720p-frame-at-0m24s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=v5vXwvdApjhBiQMq; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sun, 27 Apr 2025 10:17:03 GMT
accept-ranges: bytes
content-length: 13560
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
200 OK 71 kB IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Resource Info
File type HTML document, Unicode text, UTF-8 text, with very long lines (8856), with CRLF, LF line terminators
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 71 kB (71031 bytes)
MD5 695e862a87ff1149a6d2b9102842975c
SHA1 f2e8914c8e6b0569040b79f1ed553057493a31e0
SHA256 bd95e9d94cefad5e49bd65f4ec79d9afb31c7466591b28f475350b62dddd75a7
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=4P8iZOPSlNO5O4jn; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:25 GMT
__ddg10_=1745888245; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:25 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:25 GMT
__ddg1_=rqkOjIXAeMnIqHm8jtFj; Domain=.pytsct.com; HttpOnly; Path=/; Expires=Wed, 29-Apr-2026 00:57:25 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:57:25 GMT
link: <https://pytsct.com/index.php?rest_route=/>; rel="https://api.w.org/"
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.51.21_REC-320x180.png
200 OK 36 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.51.21_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-07-09
Times Seen 2
Size 36 kB (36509 bytes)
MD5 eefe704d38b05ffd6828cb894f46306e
SHA1 ed6c8913a7a1073c66c88b232346dc691ad5fddb
SHA256 db44385896822d3909346dec48138e38485639a3bf903ce77a85ce77c1655bb5
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.51.21_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=IUVNRG707OHmwhBm; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:51:46 GMT
accept-ranges: bytes
content-length: 36509
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/6A2AD92-720p-frame-at-0m43s-320x180.jpg
200 OK 13 kB URL
pytsct.com/wp-content/uploads/2025/04/6A2AD92-720p-frame-at-0m43s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 13 kB (12621 bytes)
MD5 67f3f96b84db07897a5419dd9b7ffb9f
SHA1 d56b6bd9a7fde02109d65b03f82c1af3af942499
SHA256 44241a7b2fae1defdef3c33cb384db52f06e839e137e91c47d6db41e465f8106
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/6A2AD92-720p-frame-at-0m43s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=rgAx3ApWkzMx0bJT; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sun, 27 Apr 2025 10:19:39 GMT
accept-ranges: bytes
content-length: 12621
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.41.49_REC-320x180.png
200 OK 32 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.41.49_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-07-09
Times Seen 2
Size 32 kB (31656 bytes)
MD5 30ba67c5195ce45cf8c5b67fb094e955
SHA1 912ac06999be79b6b7d6f89458aaa0d1aab291c9
SHA256 b64d9962e09cfd09a7bdf1f6bc5a84f2169ad1ff77edd98e0bb103cd02a0a419
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.41.49_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=YZWsVeXFbXqgohDN; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:42:06 GMT
accept-ranges: bytes
content-length: 31656
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/D22298F-720p-frame-at-2m24s-320x180.jpg
200 OK 12 kB URL
pytsct.com/wp-content/uploads/2025/04/D22298F-720p-frame-at-2m24s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 12 kB (11574 bytes)
MD5 f2ac101152ad697a384971da0347ccb7
SHA1 cbd6dcba21bc358095d91ddfcf25703e83b44a74
SHA256 48321c7fe349a9ed74c559f37461536c5b7e0dca2f552696ae84b743fe3c1f80
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/D22298F-720p-frame-at-2m24s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=OStQix1BjoK0jml9; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sun, 27 Apr 2025 10:06:34 GMT
accept-ranges: bytes
content-length: 11574
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/25.04.2025_12.24.31_REC-320x180.png
200 OK 34 kB URL
pytsct.com/wp-content/uploads/2025/04/25.04.2025_12.24.31_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 34 kB (34296 bytes)
MD5 8d6f86677aba9fc0cf7c48213f4f4cc6
SHA1 e6e695aa68a9b0ece30d8b6c22bead71a104b5ac
SHA256 c6bc0b03679c73bd6e29b569035fd9681e869a90a335c16dbda55ee85332512b
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/25.04.2025_12.24.31_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=UMRmq8Zj0zQGZSRi; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 17:20:20 GMT
last-modified: Fri, 25 Apr 2025 11:24:56 GMT
accept-ranges: bytes
content-length: 34296
content-type: image/png
ddg-cache-status: HIT,HIT
age: 27427
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.58.29_REC-320x180.png
200 OK 31 kB URL
pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.58.29_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 31 kB (30594 bytes)
MD5 9ca96d3ead1a0771d37ce643b385d87e
SHA1 63cc8092dfcd155951c94c41a247243b76927a86
SHA256 81a0fb33e372358aae047d86829850bf3118adf6c5ac325ce777ee80c1ab6577
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/24.04.2025_11.58.29_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=jvfJAlwRViSO2RAQ; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:52:15 GMT
last-modified: Thu, 24 Apr 2025 10:58:52 GMT
accept-ranges: bytes
content-length: 30594
content-type: image/png
ddg-cache-status: HIT,HIT
age: 7512
X-Firefox-Spdy: h2
GET wearychallengeraise.com/watch.494520185054.js?dev=e&key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&pst=1745888307&rb=&refer=https%3A%2F%2Fpytsct.com%2F&res=14.3095&rmtc=t&shu=12c385fc018ab4ceb0d696e2e7052d29b4f18144e6c0c928430e2efdfd0a47af64a2d6b6a3fcbe180af86433b2a883dfe577964350666fc66009ca2b932135f1923f889e7a0869d16d40ae1facae364141d58ae2c7caeeac9e8240&tz=0&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1
200 OK 5.1 kB URL
wearychallengeraise.com/watch.494520185054.js?dev=e&key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&pst=1745888307&rb=&refer=https%3A%2F%2Fpytsct.com%2F&res=14.3095&rmtc=t&shu=12c385fc018ab4ceb0d696e2e7052d29b4f18144e6c0c928430e2efdfd0a47af64a2d6b6a3fcbe180af86433b2a883dfe577964350666fc66009ca2b932135f1923f889e7a0869d16d40ae1facae364141d58ae2c7caeeac9e8240&tz=0&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1
IP / ASN
172.240.253.132
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (4177)
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 5.1 kB (5053 bytes)
MD5 0594ae3b18bb64e5682fa8fb5e784d8a
SHA1 3bf79216e0a80af78f9d58c069ad9acb9401cdaf
SHA256 0f51d32c64cb26129d8688e4fa45f9c7162fa2828f60498acdaf93c9de2954d7
Certificate Info
Issuer Let's Encrypt
Subject wearychallengeraise.com
Fingerprint 59:0D:D9:8E:52:01:C0:D1:1E:83:C9:8F:D9:E2:AA:FF:AF:B7:B8:51
Validity Sun, 20 Apr 2025 03:17:43 GMT - Sat, 19 Jul 2025 03:17:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.494520185054.js?dev=e&key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&pst=1745888307&rb=&refer=https%3A%2F%2Fpytsct.com%2F&res=14.3095&rmtc=t&shu=12c385fc018ab4ceb0d696e2e7052d29b4f18144e6c0c928430e2efdfd0a47af64a2d6b6a3fcbe180af86433b2a883dfe577964350666fc66009ca2b932135f1923f889e7a0869d16d40ae1facae364141d58ae2c7caeeac9e8240&tz=0&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pytsct.com
Referer: https://pytsct.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.gCzVhgnsfdy6a13Bvv8dnH5aekeRh-3k_d1IDd8moFQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 29 Apr 2025 00:57:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://pytsct.com
access-control-allow-origin: https://pytsct.com
access-control-allow-credentials: true
set-cookie: uid_id2=a9567bef-eda6-40f4-a2ce-ad0e67286137:1:1; expires=Tue, 06 May 2025 00:57:27 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Wed, 30 Apr 2025 00:57:27 GMT; path=/; secure; SameSite=None
uncs=1; expires=Wed, 30 Apr 2025 00:57:27 GMT; path=/; secure; SameSite=None
pdhtkv23=true; expires=Wed, 30 Apr 2025 00:57:27 GMT; path=/; secure; SameSite=None
uncs23=1; expires=Wed, 30 Apr 2025 00:57:27 GMT; path=/; secure; SameSite=None
u_pl26280677=1; expires=Wed, 30 Apr 2025 00:57:27 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 35
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: af3f34cfeb2589de5cf0084c293f68ff
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.storageimagedisplay.com/cti/bd/f1/03/bdf10332bf86a6103b47ec75eceebd73/1708270698.jpg
200 OK 83 kB URL
cdn.storageimagedisplay.com/cti/bd/f1/03/bdf10332bf86a6103b47ec75eceebd73/1708270698.jpg
IP / ASN
45.133.44.2
#39572 DataWeb Global Group B.V.
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 15:12:43], progressive, precision 8, 728x90, components 3
First Seen 2024-02-19
Last Seen 2025-07-29
Times Seen 543
Size 83 kB (82939 bytes)
MD5 7d58d61d22f030eeb233d77f7699693f
SHA1 739efe509f7d2e41328173dce54076a0aaab9fa9
SHA256 0c7499eedf96cd39ff7695da2ceca3e4cdd0a189874f063477475c8a157078b8
Certificate Info
Issuer Let's Encrypt
Subject cdn.storageimagedisplay.com
Fingerprint 44:32:60:54:16:79:8E:ED:60:B9:DD:B2:36:7C:B0:DC:CC:F5:B5:5C
Validity Wed, 12 Mar 2025 02:33:05 GMT - Tue, 10 Jun 2025 02:33:04 GMT
GET /cti/bd/f1/03/bdf10332bf86a6103b47ec75eceebd73/1708270698.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 29 Apr 2025 00:57:28 GMT
content-type: image/jpeg
content-length: 82939
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:38:26 GMT
etag: "65d22472-143fb"
expires: Thu, 01 May 2025 00:57:28 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET pytsct.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 14 kB URL
pytsct.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (13479)
First Seen 2023-05-09
Last Seen 2025-08-02
Times Seen 159569
Size 14 kB (13577 bytes)
MD5 9ffeb32e2d9efbf8f70caabded242267
SHA1 3ad0c10e501ac2a9bfa18f9cd7e700219b378738
SHA256 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=IL3jnrcbPObYEGD4; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Sat, 26 Apr 2025 10:01:29 GMT
last-modified: Fri, 09 Jun 2023 02:49:24 GMT
accept-ranges: bytes
content-length: 13577
content-type: text/javascript
age: 226557
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
GET leaklitre.com/d6aa0fd15b184fa89f600e7ed3f546fa/invoke.js
200 OK 26 kB URL
leaklitre.com/d6aa0fd15b184fa89f600e7ed3f546fa/invoke.js
IP / ASN
172.240.108.84
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (26445), with no line terminators
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 26 kB (26445 bytes)
MD5 b35cfd4fcba5504789bc029a18a1e684
SHA1 466673fea3657072a9b8b6d0a49a8839a670a512
SHA256 e2bdfb08389e266c59a0dff92155570c1322b2f8c43686016ebffd8bd617ff9b
Certificate Info
Issuer Let's Encrypt
Subject leaklitre.com
Fingerprint BD:80:C7:01:CD:DA:0F:AD:44:6D:4A:E1:9C:FD:58:A7:3A:8F:FA:9D
Validity Sat, 08 Mar 2025 13:25:33 GMT - Fri, 06 Jun 2025 13:25:32 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /d6aa0fd15b184fa89f600e7ed3f546fa/invoke.js HTTP/1.1
Host: leaklitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 29 Apr 2025 00:57:26 GMT
Content-Type: application/javascript
Content-Length: 11094
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 9
Host: leaklitre.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 72ceb0a923c4784840d1f1725cc63b14
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET guidepaparazzisurface.com/get/2064784?zoneid=2064784&pid=__clb-2064784_1&jp=_clqqsbblfzmqrybezmmwza&dr=52&nojs=0&abvar=0&febuild=1.0.539&t=0&wcks=1&wgl=1&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=3&es=13&ge=2&th=vX8&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&vcv=Mesa&vcn=llvmpipe&ix=0&x=1280&y=1024&md=0&psu=dB8hV4maHR0cHM6Ly9weXRzY3QuY29tLw&afid=2366218345812992&eclog=0&snc=0&ssc=0&vp=0&dto=2&im=1&noch=1&de=0&cs=5&bp=3&uf=0&freq=0
200 OK 6.5 kB URL
guidepaparazzisurface.com/get/2064784?zoneid=2064784&pid=__clb-2064784_1&jp=_clqqsbblfzmqrybezmmwza&dr=52&nojs=0&abvar=0&febuild=1.0.539&t=0&wcks=1&wgl=1&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=3&es=13&ge=2&th=vX8&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&vcv=Mesa&vcn=llvmpipe&ix=0&x=1280&y=1024&md=0&psu=dB8hV4maHR0cHM6Ly9weXRzY3QuY29tLw&afid=2366218345812992&eclog=0&snc=0&ssc=0&vp=0&dto=2&im=1&noch=1&de=0&cs=5&bp=3&uf=0&freq=0
IP / ASN
94.242.247.33
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type ASCII text, with very long lines (6525), with no line terminators
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 6.5 kB (6525 bytes)
MD5 76af3b709b133607d43d9ff905bc6def
SHA1 dd7287af11c9b0f86acdeb61c4c1b0b68a711a21
SHA256 063b2616b93032de3056abae4383f00b0342237cf77817e1d434a4e67202bbd8
Certificate Info
Issuer Google Trust Services
Subject guidepaparazzisurface.com
Fingerprint E0:2B:E5:BB:DD:D5:4D:8C:03:81:64:8C:41:56:C2:13:F7:7E:38:0F
Validity Wed, 12 Mar 2025 15:21:29 GMT - Tue, 10 Jun 2025 15:21:28 GMT
GET /get/2064784?zoneid=2064784&pid=__clb-2064784_1&jp=_clqqsbblfzmqrybezmmwza&dr=52&nojs=0&abvar=0&febuild=1.0.539&t=0&wcks=1&wgl=1&cnvs=1&os=0&tz=UTC&ss=1&ls=1&bb=0&cti=0&fn=3&es=13&ge=2&th=vX8&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&vcv=Mesa&vcn=llvmpipe&ix=0&x=1280&y=1024&md=0&psu=dB8hV4maHR0cHM6Ly9weXRzY3QuY29tLw&afid=2366218345812992&eclog=0&snc=0&ssc=0&vp=0&dto=2&im=1&noch=1&de=0&cs=5&bp=3&uf=0&freq=0 HTTP/1.1
Host: guidepaparazzisurface.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: cart=1; cart_p=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 29 Apr 2025 00:57:27 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Tue, 02 Jun 2026 00:57:27 GMT; Secure; SameSite=None
UID=2504281957307bec35c2da4de1a56e6d339f; Path=/; Expires=Tue, 02 Jun 2026 00:57:27 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/48DB4A6-frame-at-0m20s-320x180.jpg
200 OK 13 kB URL
pytsct.com/wp-content/uploads/2025/04/48DB4A6-frame-at-0m20s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 13 kB (12947 bytes)
MD5 f2b963db7f3c43eac667868ea5a120c7
SHA1 fc582308fcec62c8f0706075ebaf4e88b10ea0e7
SHA256 5d048e81f6a69014a99303c7a93d4acee25d5c61850140eefac3202efb004aed
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/48DB4A6-frame-at-0m20s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=AGv1KXBmYhrI43Ce; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:23:21 GMT
last-modified: Fri, 25 Apr 2025 11:29:26 GMT
accept-ranges: bytes
content-length: 12947
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 9246
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 31 kB URL
pytsct.com/wp-content/themes/kingtube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type ASCII text, with very long lines (30837)
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 113158
Size 31 kB (31000 bytes)
MD5 269550530cc127b6aa5a35925a7de6ce
SHA1 512c7d79033e3028a9be61b540cf1a6870c896f8
SHA256 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=N5gznIAV3D3kdr3D; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 16:03:34 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 31000
content-type: text/css
ddg-cache-status: HIT,HIT
age: 32032
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/EDE1E29-720p-frame-at-0m56s-320x180.jpg
200 OK 9.8 kB URL
pytsct.com/wp-content/uploads/2025/04/EDE1E29-720p-frame-at-0m56s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 9.8 kB (9758 bytes)
MD5 5431511d5630d8b844d9fbcf6101272b
SHA1 30ec33d8cd6272d6e8c1dcbc755d4dcd58f3778f
SHA256 fcfba59d8a2dab7cffeb7c2395cffd5e1fcabffcdad18b07fcaf96a585a2199a
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/EDE1E29-720p-frame-at-0m56s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=jzxXVC7Git2iFPtk; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 23:19:12 GMT
last-modified: Sat, 26 Apr 2025 13:21:03 GMT
accept-ranges: bytes
content-length: 9758
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 5895
X-Firefox-Spdy: h2
GET guidepaparazzisurface.com/jserror?type=banner&abvar=0&build=1.0.539&zoneid=2064784&e=Error&m=BCLC&aa=0&trid=&url=https%3A%2F%2Fpytsct.com%2F
200 OK 0 B URL
guidepaparazzisurface.com/jserror?type=banner&abvar=0&build=1.0.539&zoneid=2064784&e=Error&m=BCLC&aa=0&trid=&url=https%3A%2F%2Fpytsct.com%2F
IP / ASN
94.242.247.33
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606810
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject guidepaparazzisurface.com
Fingerprint E0:2B:E5:BB:DD:D5:4D:8C:03:81:64:8C:41:56:C2:13:F7:7E:38:0F
Validity Wed, 12 Mar 2025 15:21:29 GMT - Tue, 10 Jun 2025 15:21:28 GMT
GET /jserror?type=banner&abvar=0&build=1.0.539&zoneid=2064784&e=Error&m=BCLC&aa=0&trid=&url=https%3A%2F%2Fpytsct.com%2F HTTP/1.1
Host: guidepaparazzisurface.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: cart=1; cart_p=2; CHCK=1; UID=2504281957307bec35c2da4de1a56e6d339f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 29 Apr 2025 00:57:27 GMT
content-type: application/octet-stream
content-length: 0
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/logo-dark-transparent.png
200 OK 1.7 kB URL
pytsct.com/wp-content/uploads/2025/04/logo-dark-transparent.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 498 x 144, 4-bit colormap, non-interlaced
First Seen 2025-04-28
Last Seen 2025-07-09
Times Seen 4
Size 1.7 kB (1676 bytes)
MD5 a6131094e995e6413668094445631a5c
SHA1 fdec23bea80ff02e0809d4eb6d597309bd2e83b8
SHA256 6310bbeaedb07911cc466330ed52017462051171d28460dbe69c345e0ca340fa
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/logo-dark-transparent.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=96u81WXBLMkBKKvM; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Sun, 27 Apr 2025 17:56:12 GMT
last-modified: Mon, 14 Apr 2025 17:05:44 GMT
accept-ranges: bytes
content-length: 1676
content-type: image/png
ddg-cache-status: HIT,HIT
age: 111674
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/DEBDA2B-frame-at-1m0s-320x180.jpg
200 OK 14 kB URL
pytsct.com/wp-content/uploads/2025/04/DEBDA2B-frame-at-1m0s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 14 kB (14147 bytes)
MD5 f7f6e6d866748852633d408f6836f8a1
SHA1 a27e0079017eda8cb79d5ba46de6f86eb19d69a1
SHA256 d3900a4933b2de258a67690aa11a16a343c3705659e8d2903a7282ea992208e7
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/DEBDA2B-frame-at-1m0s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=MupTWvHKjhzfgGug; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:03 GMT
last-modified: Sun, 27 Apr 2025 10:10:24 GMT
accept-ranges: bytes
content-length: 14147
content-type: image/jpeg
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET pytsct.com/wp-includes/css/dist/block-library/style.min.css?ver=6.8
200 OK 116 kB URL
pytsct.com/wp-includes/css/dist/block-library/style.min.css?ver=6.8
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type ASCII text, with very long lines (55654)
First Seen 2025-04-15
Last Seen 2025-08-02
Times Seen 25797
Size 116 kB (116363 bytes)
MD5 dfe67cbbac3da53fdbbaed71c91db428
SHA1 8c82643ef63a8389c1b800b7c5d0af9d684b8b24
SHA256 597ddfdee7171750c16ec5aafd392cf992e9c53386d6bb6061d48e30334f09e9
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.8 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=3MOPs8lprKMxHMpy; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 07:44:17 GMT
last-modified: Tue, 15 Apr 2025 23:04:47 GMT
accept-ranges: bytes
content-length: 116363
content-type: text/css
ddg-cache-status: HIT,HIT
age: 61989
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/assets/img/px.gif
200 OK 1.1 kB URL
pytsct.com/wp-content/themes/kingtube/assets/img/px.gif
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type GIF image data, version 89a, 1 x 1
First Seen 2023-05-06
Last Seen 2025-07-31
Times Seen 483
Size 1.1 kB (1095 bytes)
MD5 96e31d075a835fb1e9d431373451cc27
SHA1 8c0c1169f70c3d487419599597f095c60ed2469f
SHA256 a9bb07bf95a4eb5b11f74e1be96e3cee1579e41c4c134b3773581c5340ba63ac
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/img/px.gif HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=x2HCoIDDLlXlryj7; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 12:29:22 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 1095
content-type: image/gif
ddg-cache-status: HIT,HIT
age: 44884
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/7693C5C-720p-frame-at-1m28s-320x180.jpg
200 OK 11 kB URL
pytsct.com/wp-content/uploads/2025/04/7693C5C-720p-frame-at-1m28s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 11 kB (11201 bytes)
MD5 f6dd38edbf7dd87243841d267c73d46b
SHA1 9c3fd1b3258adf04a5f1e55c94fa1828154dc234
SHA256 25ac1e5fc8eefd92b9f4712cf9a1511bbca4555e6c08af1aa70a72ace223f31c
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/7693C5C-720p-frame-at-1m28s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=y4wvHst8IgRu9wCj; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 23:19:12 GMT
last-modified: Sat, 26 Apr 2025 13:19:12 GMT
accept-ranges: bytes
content-length: 11201
content-type: image/jpeg
ddg-cache-status: HIT,HIT
age: 5895
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.08.42_REC-320x180.png
200 OK 48 kB URL
pytsct.com/wp-content/uploads/2025/04/26.04.2025_14.08.42_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 48 kB (47697 bytes)
MD5 028962464ffe6573720c77862c0be119
SHA1 6a31bc6a8e1dfbe2dcbf3f6dc9ec1d315e6dfb6f
SHA256 168d2da70b162c15a8c96f4565d8ff786cecf5527a704ba31fcd8cc8ab632024
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/26.04.2025_14.08.42_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=HFdKNTNV8Xk2qsSC; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:05 GMT
last-modified: Sat, 26 Apr 2025 13:09:04 GMT
accept-ranges: bytes
content-length: 47697
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2424
X-Firefox-Spdy: h2
GET wearychallengeraise.com/watch.494520185054.js?key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&refer=https%3A%2F%2Fpytsct.com%2F&tz=0&dev=e&res=14.3095&rb=&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1
307 Temporary Redirect 5.1 kB URL
wearychallengeraise.com/watch.494520185054.js?key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&refer=https%3A%2F%2Fpytsct.com%2F&tz=0&dev=e&res=14.3095&rb=&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1
IP / ASN
172.240.253.132
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606810
Size 5.1 kB (5053 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject wearychallengeraise.com
Fingerprint 59:0D:D9:8E:52:01:C0:D1:1E:83:C9:8F:D9:E2:AA:FF:AF:B7:B8:51
Validity Sun, 20 Apr 2025 03:17:43 GMT - Sat, 19 Jul 2025 03:17:42 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.494520185054.js?key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&refer=https%3A%2F%2Fpytsct.com%2F&tz=0&dev=e&res=14.3095&rb=&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pytsct.com
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 29 Apr 2025 00:57:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
custom-referer: https://pytsct.com
access-control-allow-origin: https://pytsct.com
access-control-allow-credentials: true
location: https://wearychallengeraise.com/watch.494520185054.js?dev=e&key=d6aa0fd15b184fa89f600e7ed3f546fa&kw=%5B%22pytsct%22%5D&pst=1745888307&rb=&refer=https%3A%2F%2Fpytsct.com%2F&res=14.3095&rmtc=t&shu=12c385fc018ab4ceb0d696e2e7052d29b4f18144e6c0c928430e2efdfd0a47af64a2d6b6a3fcbe180af86433b2a883dfe577964350666fc66009ca2b932135f1923f889e7a0869d16d40ae1facae364141d58ae2c7caeeac9e8240&tz=0&uuid=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.gCzVhgnsfdy6a13Bvv8dnH5aekeRh-3k_d1IDd8moFQ; expires=Tue, 29 Apr 2025 00:58:27 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0dd2efa2227eea09a348f85cffb09b2a
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET pytsct.com/wp-content/themes/kingtube/assets/js/main.js?ver=1.3.11
200 OK 36 kB URL
pytsct.com/wp-content/themes/kingtube/assets/js/main.js?ver=1.3.11
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-09
Last Seen 2025-07-31
Times Seen 191
Size 36 kB (36213 bytes)
MD5 1317801bbaf6f25a4457ee66b1cee704
SHA1 6db0658f567614310aaa0f58cd641e32f7850ede
SHA256 919a1650792edc4d16b0e455bc5a85524563e655826653ce554229d22444e77c
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/js/main.js?ver=1.3.11 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=0nuynnAmZvEyYCTa; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 00:28:37 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 36213
content-type: text/javascript
ddg-cache-status: HIT,HIT
age: 88129
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.38.20_REC-320x180.png
200 OK 35 kB URL
pytsct.com/wp-content/uploads/2025/04/28.04.2025_12.38.20_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 35 kB (34667 bytes)
MD5 5647a7b4f4e24455405a77cdf48db705
SHA1 4564d81af958c670632b95c8f865df76b111de87
SHA256 8f95fb2ceaafedaef640c67911ca4bf536576cab6cb333143d6412698b785c4e
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/28.04.2025_12.38.20_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=iLvUwuTGvtIVC3gm; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:17:02 GMT
last-modified: Mon, 28 Apr 2025 11:38:43 GMT
accept-ranges: bytes
content-length: 34667
content-type: image/png
ddg-cache-status: HIT,MISS
age: 2425
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0
200 OK 683 B URL
pytsct.com/wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 4263
Size 683 B (683 bytes)
MD5 75abd4cd8807b312f9f7faeb77ee774b
SHA1 e7b7a7ed06d0123ab8667a1d1eeb23de9f2bece7
SHA256 ca424c0181141900220a19f998ffa7660380bc99ab99557ad458a083251f7034
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/js/skip-link-focus-fix.js?ver=1.0.0 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=q6Br5YohCjGzcccL; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 00:44:52 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 683
content-type: text/javascript
ddg-cache-status: HIT,MISS
age: 87155
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/ssstwitter.com_1745353414379-frame-at-1m6s-320x180.jpg
200 OK 10 kB URL
pytsct.com/wp-content/uploads/2025/04/ssstwitter.com_1745353414379-frame-at-1m6s-320x180.jpg
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 320x180, components 3
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 10 kB (10171 bytes)
MD5 99aaa2f14e390ddb6eee70cf710e1299
SHA1 bd2731b4b234c7d074be038b5fb37bd91c9dc992
SHA256 7f82a2728442f92a44a229f907880fb047ee1671baab91e1435973955f54d785
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/ssstwitter.com_1745353414379-frame-at-1m6s-320x180.jpg HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=rQxhbOTp2jtSC4kE; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:34:44 GMT
last-modified: Thu, 24 Apr 2025 11:05:04 GMT
accept-ranges: bytes
content-length: 10171
content-type: image/jpeg
ddg-cache-status: HIT,HIT
age: 8563
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=GT-TWZP3DTF
200 OK 382 kB URL
www.googletagmanager.com/gtag/js?id=GT-TWZP3DTF
IP / ASN
142.250.178.72
#15169 GOOGLE
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text, with very long lines (6129)
First Seen 2025-04-29
Last Seen 2025-04-29
Times Seen 1
Size 382 kB (381539 bytes)
MD5 9e4ec4af3acd2cfd3bd0c3ee5b4711ba
SHA1 492dc57b3df2236fb8783ca55851ecb4cb55e98c
SHA256 2e87b3581b9b4958a7699febf83ecd7d9962274f7c922064046d821947bc89e2
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint E4:97:12:2A:2B:30:84:66:33:9D:D6:09:14:D3:8F:CE:3E:20:73:24
Validity Mon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT
GET /gtag/js?id=GT-TWZP3DTF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Apr 2025 00:57:26 GMT
expires: Tue, 29 Apr 2025 00:57:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1072:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1072:0
report-to: {"group":"ascgcycc:1072:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1072:0"}],}
server: Google Tag Manager
content-length: 126941
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0
200 OK 4.5 kB URL
pytsct.com/wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-09
Last Seen 2025-07-31
Times Seen 218
Size 4.5 kB (4494 bytes)
MD5 3666196ce00f5c4fb6e0c9844d3f697a
SHA1 38cdee1738247cf9d898ebc1213b79593860bc39
SHA256 885845403cad2b1e4dea133e2c03cadbf4f89c02fee19d33adbfd89eb16d27e2
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/js/navigation.js?ver=1.0.0 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=zH1SOKHUBcHFSh3m; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Sun, 27 Apr 2025 19:47:23 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 4494
content-type: text/javascript
ddg-cache-status: HIT,HIT
age: 105003
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.57.01_REC-320x180.png
200 OK 35 kB URL
pytsct.com/wp-content/uploads/2025/04/24.04.2025_11.57.01_REC-320x180.png
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type PNG image data, 320 x 180, 8-bit/color RGBA, non-interlaced
First Seen 2025-04-28
Last Seen 2025-04-29
Times Seen 2
Size 35 kB (35006 bytes)
MD5 84ce5e647320e76b3a45f3f2e063d8a1
SHA1 d91d9a8a0c83bfb01011142827f85a51a0cdf510
SHA256 cff5a98b864de0325c9ba0125a36c372c410dd7e1c9d43ecaf148fa967e46a46
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2025/04/24.04.2025_11.57.01_REC-320x180.png HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=puOWhuzrBvGBXnUa; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=gB5nOcz7HGS1ObZv; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 22:52:15 GMT
last-modified: Thu, 24 Apr 2025 10:57:19 GMT
accept-ranges: bytes
content-length: 35006
content-type: image/png
ddg-cache-status: HIT,HIT
age: 7512
X-Firefox-Spdy: h2
GET pytsct.com/favicon.ico
404 Not Found 315 B URL
pytsct.com/favicon.ico
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type HTML document, ASCII text
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 95582
Size 315 B (315 bytes)
MD5 a34ac19f4afae63adc5d2f7bc970c07f
SHA1 a82190fc530c265aa40a045c21770d967f4767b8
SHA256 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=jvfJAlwRViSO2RAQ; __ddg10_=1745888247; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj; UGVyc2lzdFN0b3JhZ2U=%7B%22CAIFRQ%22%3A%22ADNFZwAAAAAAAAAB%22%2C%22CAIFRT%22%3A%22ADNFZwAAAABoECSQ%22%7D; _ga_82WBLYHS6Q=GS1.1.1745888247.1.0.1745888247.0.0.0; _ga=GA1.1.1915365789.1745888247; dom3ic8zudi28v8lr6fgphwffqoz0j6c=a9567bef-eda6-40f4-a2ce-ad0e67286137%3A1%3A1; bnState_2064784={"impressions":1,"delayStarted":0}
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: ddos-guard
set-cookie: __ddg8_=k1UgN2vX6yPzxVgT; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg10_=1745888247; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:27 GMT
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Apr 2025 00:57:27 GMT
content-length: 315
content-type: text/html; charset=iso-8859-1
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL
pytsct.com/wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 164892
Size 77 kB (77160 bytes)
MD5 af7ae505a9eed503f8b8e6982036873e
SHA1 d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
SHA256 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/assets/stylesheets/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/wp-content/themes/kingtube/assets/stylesheets/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: __ddg8_=q6Br5YohCjGzcccL; __ddg10_=1745888246; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=YyuV0G2DqfHS7OVV; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 05:51:16 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
ddg-cache-status: HIT,HIT
age: 68770
X-Firefox-Spdy: h2
GET guidepaparazzisurface.com/check.html
200 OK 926 B URL
guidepaparazzisurface.com/check.html
IP / ASN
94.242.247.33
#7979 SERVERS-COM
Requested by https://pytsct.com/
Resource Info
File type HTML document, ASCII text
First Seen 2024-11-22
Last Seen 2025-08-02
Times Seen 5123
Size 926 B (926 bytes)
MD5 088dba8e97eede53134c93219f7ebbae
SHA1 adb707654d1fe0af7d0d7a9f55660d22bd3625e4
SHA256 6da0120b4c7bc45b63fcbb87595c3c1ea2cdca482b0c48d4d2ab434f9e897aff
Certificate Info
Issuer Google Trust Services
Subject guidepaparazzisurface.com
Fingerprint E0:2B:E5:BB:DD:D5:4D:8C:03:81:64:8C:41:56:C2:13:F7:7E:38:0F
Validity Wed, 12 Mar 2025 15:21:29 GMT - Tue, 10 Jun 2025 15:21:28 GMT
GET /check.html HTTP/1.1
Host: guidepaparazzisurface.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 29 Apr 2025 00:57:26 GMT
content-type: text/html; charset=utf-8
last-modified: Wed, 16 Apr 2025 07:53:28 GMT
vary: Accept-Encoding
etag: W/"67ff61f8-39e"
x-js-ab: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
GET playhubconnect.com/bn/bf3/7d0/56d/bf37d056d84d92ce50d337c48e4cb6ab143cda69.mp4
206 Partial Content 953 kB URL
playhubconnect.com/bn/bf3/7d0/56d/bf37d056d84d92ce50d337c48e4cb6ab143cda69.mp4
IP / ASN
104.18.14.39
#13335 CLOUDFLARENET
Requested by https://pytsct.com/
Resource Info
File type ISO Media, MP4 v2 [ISO 14496-14]
First Seen 2025-04-13
Last Seen 2025-07-24
Times Seen 572
Size 953 kB (952885 bytes)
MD5 87ef915cc39e1ca0204ebda8289b4f52
SHA1 bf37d056d84d92ce50d337c48e4cb6ab143cda69
SHA256 a5c2f77a616c7caf3801bb24f99ee6ac1c6cc2bc85c0d79f4224779e39a16249
Certificate Info
Issuer Google Trust Services
Subject playhubconnect.com
Fingerprint 41:34:43:06:D9:8E:33:32:9D:CF:FA:1D:6C:7F:F5:A2:43:0F:50:CC
Validity Fri, 21 Mar 2025 15:11:05 GMT - Thu, 19 Jun 2025 16:11:01 GMT
GET /bn/bf3/7d0/56d/bf37d056d84d92ce50d337c48e4cb6ab143cda69.mp4 HTTP/1.1
Host: playhubconnect.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Tue, 29 Apr 2025 00:57:27 GMT
content-type: video/mp4
content-length: 952885
x-amz-id-2: HD0L/UjDOsrgKzgLcNnxtcUoUtk/2Bg3WeJ4EerewbaHdRR76LfYt6HOb5OH9O/4njtj19Rgl+A=
x-amz-request-id: 01Z1A3SEZWF3GS1G
last-modified: Thu, 20 Mar 2025 14:21:13 GMT
etag: "87ef915cc39e1ca0204ebda8289b4f52"
x-amz-server-side-encryption: AES256
cf-cache-status: HIT
age: 1640738
expires: Fri, 30 May 2025 00:57:27 GMT
cache-control: public, max-age=2678400
content-range: bytes 0-952884/952885
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 937ad86a8d6256c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET pytsct.com/wp-content/themes/kingtube/style.css?ver=1.3.11.1744648036
200 OK 60 kB URL
pytsct.com/wp-content/themes/kingtube/style.css?ver=1.3.11.1744648036
IP / ASN
185.178.208.133
#57724 Ddos-guard Ltd
Requested by https://pytsct.com/
Resource Info
File type assembler source, ASCII text
First Seen 2024-11-24
Last Seen 2025-07-14
Times Seen 35
Size 60 kB (60340 bytes)
MD5 7172cd6c3a762cdcede5d7a018b6e495
SHA1 634062d67de96a8c4389fec42fa63751d47d48fb
SHA256 77ab0e9c8e7f349848ea888af6efa0c434d7e628a28523c58eb826e1fe8f842a
Certificate Info
Issuer Let's Encrypt
Subject pytsct.com
Fingerprint 53:23:2B:03:71:3F:CA:8D:02:98:5A:55:BC:85:18:A9:CD:80:FE:67
Validity Mon, 14 Apr 2025 14:45:54 GMT - Sun, 13 Jul 2025 14:45:53 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/kingtube/style.css?ver=1.3.11.1744648036 HTTP/1.1
Host: pytsct.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pytsct.com/
Cookie: __ddg8_=4P8iZOPSlNO5O4jn; __ddg10_=1745888245; __ddg9_=91.90.42.154; __ddg1_=rqkOjIXAeMnIqHm8jtFj
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg8_=L6xQ52iiK6Fjh4yR; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg10_=1745888246; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
__ddg9_=91.90.42.154; Domain=.pytsct.com; Path=/; Expires=Tue, 29-Apr-2025 01:17:26 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Apr 2025 00:44:51 GMT
last-modified: Mon, 14 Apr 2025 16:27:16 GMT
accept-ranges: bytes
content-length: 60340
content-type: text/css
ddg-cache-status: HIT,HIT
age: 87155
X-Firefox-Spdy: h2
