Report - yatv.red

Report Overview

Visited public
2024-11-23 13:54:27
Tags
Submit Tags
URL
yatv.red
Finishing URL
yatv1.com/
IP / ASN
172.67.217.157
#13335 CLOUDFLARENET
Title
DNS resolution error | yatv1.com | Cloudflare

Detections

urlquery

0

Network Intrusion Detection

1

Threat Detection Systems

0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
yatv.red	unknown	2024-04-10	2024-10-13	2024-10-13	463 B	793 B	172.67.217.157
yatv1.com	unknown	2024-10-19	2024-10-20	2024-10-20	1.0 kB	16 kB	104.17.39.19
performance.radar.cloudflare.com	unknown	2009-02-17	2022-06-29	2024-11-20	383 B	11 kB	104.18.31.78

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-11-23 13:54:03	medium	104.17.39.19	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Mnemonic Secure DNS

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	performance.radar.cloudflare.com/beacon.js	ScriptElement	10 kB	2024-11-23	2024-11-23
Pretty URL performance.radar.cloudflare.com/beacon.js IP 104.18.31.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-23 13:54 Last Seen2024-11-23 13:54 Times Seen1 Hash 0f33b8b0de532ae63df448c5dc95773b 5f442f519a470ad22223eae85bb31f46f839f61c b341e55b542e0cf8298e3f71910e205a4aa36d3b409b8d068976d108526f2ff8 Loading...

	yatv1.com/	ScriptElement	0 B	0001-01-01	2025-06-30
Pretty URL yatv1.com/ IP 104.17.39.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-30 06:54 Times Seen5206755 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	yatv1.com/	ScriptElement	393 B	2023-04-05	2025-03-02
Pretty URL yatv1.com/ IP 104.17.39.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 04:39 Last Seen2025-03-02 06:13 Times Seen143291 Hash 34ad0a116707d3b794129a6720af92d7 424de9dbb8bc774e2a2d4ade100d90f5ac0ecbf4 d011a9449a990f2086894be870adc6fbb53595dc593b410a83e45e40bfbc7262 Loading...

	yatv1.com/	ScriptElement	0 B	0001-01-01	2025-06-30
Pretty URL yatv1.com/ IP 104.17.39.19 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-30 06:54 Times Seen5206755 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (5)

	URL	IP	Response	Size
	GET yatv.red/	172.67.217.157	301 Moved Permanently	167 B
URL User Request GET HTTP/2 yatv.red/ IP 172.67.217.157:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectyatv.red Fingerprint8C:EF:B8:A6:4F:72:D2:EF:CF:01:32:1F:FB:BB:BA:40:FD:FA:BA:2E ValidityWed, 20 Nov 2024 10:56:25 GMT - Tue, 18 Feb 2025 10:56:24 GMT File type HTML document, ASCII text, with CRLF line terminators Size 167 B (167 bytes) Hash 0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f HTTP Headers `GET / HTTP/1.1 Host: yatv.red User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Sat, 23 Nov 2024 13:54:03 GMT content-type: text/html content-length: 167 location: https://yatv1.com/ cache-control: max-age=3600 expires: Sat, 23 Nov 2024 14:54:03 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4b0n4QgspaxjGP15%2BQkac10o73Ntrm8Rjdjnqzb9FFmnkX%2FVZ2T%2B0Vd2DBO1JpzQbLdTR00m2vdX7PeKW3JZBc7yK7%2FSY6iA8IqxNDyKjmGqu2Z6Qeb4kf2OiQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 8e71a625ca2656bf-OSL X-Firefox-Spdy: h2

	GET yatv1.com/	104.17.39.19	409 Conflict	6.1 kB
URL User Request GET HTTP/1.1 yatv1.com/ IP 104.17.39.19:80 ASN #13335 CLOUDFLARENET File type HTML document, ASCII text, with very long lines (501) Size 6.1 kB (6095 bytes) Hash a8f6c14f405667b80df7352651113938 6aaf35b301938c1cae36a01260c335c116de0a83 246f529f484cc1408659a6b2dc54af0d7cc5063def5450584374726f3b8d6088 HTTP Headers `GET / HTTP/1.1 Host: yatv1.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 409 Conflict Date: Sat, 23 Nov 2024 13:54:03 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 6095 Connection: close X-Frame-Options: SAMEORIGIN Referrer-Policy: same-origin Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 8e71a626ec2eb4f1-OSL`

	GET yatv1.com/cdn-cgi/styles/main.css	104.16.237.20	200 OK	2.2 kB
URL GET HTTP/1.1 yatv1.com/cdn-cgi/styles/main.css IP 104.16.237.20:80 ASN #13335 CLOUDFLARENET Requested by http://yatv1.com/ File type ASCII text, with very long lines (8012) Size 2.2 kB (2176 bytes) Hash ff26f59e28a5fe6ea4ab23586415696b 4182675484d175e363cd34b43041b7b1af93d0cd d30b4ea6f68456672f5abb35e9dcf7d54226372b66e9d60a7ee26b7a52568e74 HTTP Headers `GET /cdn-cgi/styles/main.css HTTP/1.1 Host: yatv1.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://yatv1.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 23 Nov 2024 13:54:04 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Wed, 20 Nov 2024 12:19:03 GMT ETag: W/"673dd3b7-1f4d" Server: cloudflare CF-RAY: 8e71a627e83156c3-OSL X-Frame-Options: DENY X-Content-Type-Options: nosniff Vary: Accept-Encoding Expires: Sat, 23 Nov 2024 15:54:04 GMT Cache-Control: max-age=7200, public Content-Encoding: gzip`

	GET yatv1.com/favicon.ico	104.16.237.20	409 Conflict	6.1 kB
URL GET HTTP/1.1 yatv1.com/favicon.ico IP 104.16.237.20:80 ASN #13335 CLOUDFLARENET Requested by http://yatv1.com/ File type HTML document, ASCII text, with very long lines (501) Size 6.1 kB (6095 bytes) Hash ce576f93cd38ae491683fe760fef7c1a 45fbb76ccfda41b922873b99bb8d7308d864d913 b4c5377fce80baec89905a5b68e50c6f0a6dc4222bd653e360780f508bb0ecbe HTTP Headers `GET /favicon.ico HTTP/1.1 Host: yatv1.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://yatv1.com/ DNT: 1 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 409 Conflict Date: Sat, 23 Nov 2024 13:54:04 GMT Content-Type: text/html; charset=UTF-8 Content-Length: 6095 Connection: close X-Frame-Options: SAMEORIGIN Referrer-Policy: same-origin Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Expires: Thu, 01 Jan 1970 00:00:01 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 8e71a62acb4356c3-OSL`

	GET performance.radar.cloudflare.com/beacon.js	104.18.31.78	200 OK	10 kB
URL GET HTTP/2 performance.radar.cloudflare.com/beacon.js IP 104.18.31.78:443 ASN #13335 CLOUDFLARENET Requested by http://yatv1.com/ Certificate IssuerGoogle Trust Services Subjectradar.cloudflare.com FingerprintBC:C0:F5:CE:2A:87:18:31:8D:ED:42:43:47:9C:BE:38:2C:1D:E0:AB ValiditySat, 26 Oct 2024 19:00:03 GMT - Fri, 24 Jan 2025 19:59:11 GMT File type JavaScript source, ASCII text, with very long lines (10196) Size 10 kB (10197 bytes) Hash 0f33b8b0de532ae63df448c5dc95773b 5f442f519a470ad22223eae85bb31f46f839f61c b341e55b542e0cf8298e3f71910e205a4aa36d3b409b8d068976d108526f2ff8 HTTP Headers `GET /beacon.js HTTP/1.1 Host: performance.radar.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sat, 23 Nov 2024 13:54:04 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: no-store, max-age=0 access-control-allow-headers: * access-control-allow-methods: * referrer-policy: no-referrer timing-allow-origin: * set-cookie: __cf_bm=GZZt0N5W2wxz_OXgndNG7m86SNcSpbcyjN7aelyPTFc-1732370044-1.0.1.1-LKmVARaHpNMinFepbbmnVXeBOMFtatVihlzzE4IuCFxlQB0D3j1HdJ5TAikp2cZna6VRWixVNUkjiG6Tgf88Sw; path=/; expires=Sat, 23-Nov-24 14:24:04 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains x-content-type-options: nosniff server: cloudflare cf-ray: 8e71a6283d8f56c7-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2