| www.rojadirectaenvivo.pl/logo.png | 172.67.162.198 | 200 OK | 1.9 kB |
URL GET HTTP/3www.rojadirectaenvivo.pl/logo.png IP172.67.162.198:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.pl Fingerprint6F:FB:D9:76:2B:5B:EA:A3:39:4B:72:B0:17:FD:1C:4C:76:BC:81:7B ValidityMon, 15 Apr 2024 15:24:39 GMT - Sun, 14 Jul 2024 15:24:38 GMT
File typePNG image data, 454 x 30, 8-bit colormap, non-interlaced Hash054337b6a93803070828718aca348a48 0d3c537eb32300f7913385f9f2deae8a8ef776b6 2a2dca677cc6cc34dd89659ae2e8c8c911e9a883d6278734893c34b33013f4ff
GET /logo.png HTTP/1.1
Host: www.rojadirectaenvivo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: image/png
content-length: 1916
last-modified: Sat, 17 Feb 2024 03:19:11 GMT
etag: "65d025af-77c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 825412
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zWXmrnQPqPQzN2P8z9WvYiwGK8u8efgIY%2FjgYg8n8o9BunDiHyrb4otp%2FJRjzW033i8xLDKHsVpV9qlUvYclaWnsxG7b2me%2Foonpn2KsSOSFY64xoDri%2FIF4JMEh2HQ9%2FbQGTUhrid%2FK%2Bvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e667b55b515-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js | 142.250.74.106 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js IP142.250.74.106:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65480) Hash0b6ecf17e30037994d3ffee51b525914 d09d3a99ed25d0f1fbe6856de9e14ffd33557256 f554d2f09272c6f71447ebfe4532d3b1dd1959bce669f9a5ccc99e64ef511729
GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33621
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 20:42:51 GMT
expires: Fri, 09 May 2025 20:42:51 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 40374
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/ut.js?cb=1715327745445 | 104.21.11.26 | 200 OK | 22 kB |
URL GET HTTP/3acscdn.com/script/ut.js?cb=1715327745445 IP104.21.11.26:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (62938), with no line terminators Hashbc481e345c04b4534e0a4e54a0f2c1c6 2be428035dd37b2722891c200f35449c5893df33 04d8cc0aacc3f172f638e608d3f08e8457d849290ae553090cb951d4b3f1b97b
GET /script/ut.js?cb=1715327745445 HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq4rLQfUzIb4PXABJF3kaL6QpNC2eEDt1dZIA_AICzJwRtEzQkHmfGBvBjJTgyllcLoFfCchk7ypw
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 10 May 2024 08:12:44 GMT
cache-control: public, max-age=3600
age: 823
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qxNunAaYyQpLH0K9mkCWjWlEj%2FwfgYHrac3rdKeEYnCZxnDlNXzsJnJs5SGbeA5MUNIfMKDrt7F8wAPn08GdYnjAbOW3UvNy4mO5bTGyqgBIjOojFnI7PwE2pGSS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e69190ab52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| guardiannostrils.com/2b/a8/e0/2ba8e0b8ae36a3a2c24c170c7c0734cc.js | 192.243.59.20 | 200 OK | 28 kB |
URL GET HTTP/1.1guardiannostrils.com/2b/a8/e0/2ba8e0b8ae36a3a2c24c170c7c0734cc.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerLet's Encrypt Subjectguardiannostrils.com Fingerprint05:1C:7C:2B:E0:77:D4:89:0E:76:BC:F8:BB:BE:6A:94:6F:40:56:76 ValidityThu, 11 Apr 2024 06:53:38 GMT - Wed, 10 Jul 2024 06:53:37 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash28688b0c60470e4ffa72d3d8ba7b6211 a8e64c715b8e6203e0911b9973b4f65b89b1769d 5d1dc52ab0a1360112eb3b6987399122140a4abf64c5149529efd07cf5fabf42
GET /2b/a8/e0/2ba8e0b8ae36a3a2c24c170c7c0734cc.js HTTP/1.1
Host: guardiannostrils.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 07:55:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 31a155a2ea6531fcc24e862a4be46b40
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP54.230.218.11:0
Hashc1ae368dfcd18c3fe0a38f18783ecfe1 591b78d8c937af6063def58fa5d376d07e7d005e 58ceb2cb03a41de3ae12171e7359276ed8fcbc1881b071c2783b782667cf124b
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 07:55:46 GMT
Last-Modified: Fri, 10 May 2024 06:50:50 GMT
Server: ECAcc (ska/F776)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hJcagxrTM_VVyRSZtD8FcBmqVU42-V2XMoLm2SAFeyzwpZ8BH949-Q==
Age: 3896
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash995e0bb64cb6e55e8a89c8358a6d8d4e 075140706048a787d9fc04984f417b0fa51e49c5 9d845f364c83a2a16164a48e053069a845cc148786c4a40dce0a0eabbd5e1978
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capofut.net
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:46 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capofut.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=ec2981cd-62cf-4b36-bbca-593bd740d441:3:1; expires=Mon, 08 May 2034 07:55:46 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| hoyfutbol.info/player/3/67 | 104.21.5.247 | 200 OK | 0 B |
URL GET HTTP/2hoyfutbol.info/player/3/67 IP104.21.5.247:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerGoogle Trust Services LLC Subjecthoyfutbol.info Fingerprint4D:67:E5:02:CF:33:0B:9E:82:FD:DA:6F:3F:BE:95:19:5A:31:FF:B3 ValidityTue, 02 Apr 2024 17:41:15 GMT - Mon, 01 Jul 2024 17:41:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /player/3/67 HTTP/1.1
Host: hoyfutbol.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/player/3/67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/html; charset=UTF-8
x-proxy-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m0M9wtxYZ30hm842K0Xz98B%2FXh82mq8jGQhZ7V7YLH44YZGPmqJtTnMa4U%2FixULTUA6sv%2BXoszLDgxyulCyJ%2FuetJnpes7iHcWeD0Z5Lcq%2BdjkBNkup4RZxUK2HdM8koyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e733cb456b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Fwww.capofut.net%2Fplay%2Fdeportes1.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2F | 141.101.120.10 | 200 OK | 1.6 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Fwww.capofut.net%2Fplay%2Fdeportes1.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2F IP141.101.120.10:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2077) Hash51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c
GET /i/?l=https%3A%2F%2Fwww.capofut.net%2Fplay%2Fdeportes1.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2F HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Cookie: m=1; oa=1; df=1715327745
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:46 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=2; Domain=dtscout.com; Expires=Fri, 10-May-2024 09:19:06 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=2; Domain=dtscout.com; Expires=Fri, 10-May-2024 11:55:46 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
x-t: 0.295
expires: Fri, 10 May 2024 07:55:45 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M7hTylU6m6N5IV3y1%2FDrPQmBQbEpyfPu%2FjJA9c4OFINCWs1%2F%2F9k8qDxrO2y%2FglOK3Wn%2BRWPXGrc9I2QRl7JrwKoTzCi9F05%2FEggm6g4YEFdBAXDoiu9OcMdqIqVSolI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e70eb288d71-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.76:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4 ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 07:55:47 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: df34e250feadc3095a37dad8c06b4fd2
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| acscdn.com/script/suv5.js | 104.21.11.26 | 200 OK | 26 kB |
URL GET HTTP/3acscdn.com/script/suv5.js IP104.21.11.26:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators Hash9d6eb2890d21b253ae6805e887bc3e7d 445a76360b55b73e5be624029c6a152f859532ba 46bca0d03531443972441e135afb00e7fd35bc74d0f466efe2dd782071a2d9e0
GET /script/suv5.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: text/javascript
x-goog-generation: 1714390003317461
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 74331
x-goog-hash: crc32c=uRKYDw==, md5=nW6yiQ0hslOuaAXoh7w+fQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPoyHy5IgIuP3Mx7d8xlbGr4Ztbdj_zWMql0Ug3V060iSEYvlT2mT6rwqBt-gh0jlGuekBpqa_BYKw
expires: Fri, 10 May 2024 08:40:30 GMT
cache-control: public, max-age=3600
age: 915
last-modified: Mon, 29 Apr 2024 11:26:43 GMT
etag: W/"9d6eb2890d21b253ae6805e887bc3e7d"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B1sJv8c09pLG0%2B%2Br4qCEOMmkxmo0PbuNRFPfIF9stbn5%2FSbrxpoHd2zm2FOH0BZ%2BIKldt2bA0RTSV3EpZ%2B5R6QOo9udLT2UurEDKXq%2Fd7%2FZOwn7v14JZldmBY74v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e685816b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 52.29.105.35 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.29.105.35:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash995e0bb64cb6e55e8a89c8358a6d8d4e 075140706048a787d9fc04984f417b0fa51e49c5 9d845f364c83a2a16164a48e053069a845cc148786c4a40dce0a0eabbd5e1978
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capofut.net
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Cookie: uid_id2=ec2981cd-62cf-4b36-bbca-593bd740d441:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capofut.net
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| nossairt.net/tag.min.js | 139.45.197.238 | 200 OK | 28 kB |
IP139.45.197.238:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjectnossairt.net Fingerprint9B:D9:3C:16:AE:3A:B3:4C:11:53:DB:A3:74:9D:97:43:AE:4B:80:83 ValidityTue, 07 May 2024 05:19:07 GMT - Mon, 05 Aug 2024 05:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashe3024b1a3cbcc47f3eef4bab101c0b7f 73f6d27a2ff5cbf11ab455917016b5f70ba63444 41e1c3be0f91a1766e024356a7c4feee73a360f9f5691b79d6ceab270fd51edc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: nossairt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/javascript; charset=utf-8
content-length: 28450
content-encoding: br
x-trace-id: 34303910b50f9340c28c2dfea9645cfb
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 09 May 2024 21:41:20 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js | 142.250.74.106 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js IP142.250.74.106:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32033) Hashd4162c9d7e520a5de05001be6e741899 0baf29230047c9cd896f14c59618c9948ea79451 2405bdf4c255a4904671bcc4b97938033d39b3f5f20dd068985a8d94cde273e2
GET /ajax/libs/jquery/3.2.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 01:53:31 GMT
expires: Fri, 09 May 2025 01:53:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 108136
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| hocast4.com/css/embed.css?ver=1.4.4 | 188.114.97.1 | 200 OK | 771 B |
URL GET HTTP/3hocast4.com/css/embed.css?ver=1.4.4 IP188.114.97.1:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerLet's Encrypt Subjecthocast4.com FingerprintBB:61:90:8E:3E:6C:F1:3D:E5:30:92:9F:CA:8A:DE:9B:7A:37:58:54 ValidityThu, 09 May 2024 02:51:26 GMT - Wed, 07 Aug 2024 02:51:25 GMT
File typegzip compressed data, from Unix Hash20dd850eec15cf7a5046feffb471d48a 5ceb82877db10ee770416b0c2cf8f65ef75d7bf4 3efda2209be927ff817ec65c23497bfe4d8a7ea38c6ad2c26bccf339db21f500
GET /css/embed.css?ver=1.4.4 HTTP/1.1
Host: hocast4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/footy.php?player=desktop&live=ufeed67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/css
last-modified: Fri, 29 Oct 2021 09:08:53 GMT
vary: Accept-Encoding
etag: W/"617bba25-219"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3396
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9pxz5LP78TnCaz5tuFmTrvyRVlHFURYn%2FTRs7aotNvhtoI9xZxHRHzeZ0N1WFglVC%2FwhGLWWbYDaJEYCxz%2FqaGeVssRxRZP8sHeHm1MT94et7QNUuisVffmD1QAghA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e75cca05691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| code.jquery.com/jquery-1.11.0.min.js | 151.101.2.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.11.0.min.js IP151.101.2.137:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32341) Hash8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1787d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 20423953
x-served-by: cache-lga21931-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 139473
x-timer: S1715327748.566501,VS0,VE0
vary: Accept-Encoding
content-length: 33357
X-Firefox-Spdy: h2
|
|
| nossairt.net/5/5548992/?oo=1&aab=1 | 139.45.197.238 | 200 OK | 1.5 kB |
URL GET HTTP/2nossairt.net/5/5548992/?oo=1&aab=1 IP139.45.197.238:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjectnossairt.net Fingerprint9B:D9:3C:16:AE:3A:B3:4C:11:53:DB:A3:74:9D:97:43:AE:4B:80:83 ValidityTue, 07 May 2024 05:19:07 GMT - Mon, 05 Aug 2024 05:19:06 GMT
File typegzip compressed data, max speed, from Unix Hash226f9831223ea45ee6afde4003ee8b43 3d7dfce73a37b1c2f576b2768ecd4f9e69c165af 65aff179a10f897ca7791349131c632124563d0a4e5d7459a0342f75e5e87958
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /5/5548992/?oo=1&aab=1 HTTP/1.1
Host: nossairt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hoyfutbol.info
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/json
x-trace-id: aea4bf07eddc6361229bf1411499af45
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://hoyfutbol.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00805881d0824fc1e4c6c465cd01dfbc; expires=Sat, 10 May 2025 07:55:47 GMT; path=/; secure; SameSite=None
oaidts=1715327747; expires=Sat, 10 May 2025 07:55:47 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| hocast4.com/footy.php?player=desktop&live=ufeed67 | 188.114.97.1 | 200 OK | 25 kB |
URL GET HTTP/2hocast4.com/footy.php?player=desktop&live=ufeed67 IP188.114.97.1:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjecthocast4.com FingerprintBB:61:90:8E:3E:6C:F1:3D:E5:30:92:9F:CA:8A:DE:9B:7A:37:58:54 ValidityThu, 09 May 2024 02:51:26 GMT - Wed, 07 Aug 2024 02:51:25 GMT
File typeJavaScript source, ASCII text, with very long lines (57190) Hashe30a79bdb698197e62740b83298df5fd 7e2d2664afb8d1a35a192d875a8430b6b8f65f6a 0a7a185f3c96106e3e5c8ded1c1d653c898b807fa57b1a445ea9bf7f36e5d6eb
GET /footy.php?player=desktop&live=ufeed67 HTTP/1.1
Host: hocast4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sb1ITFml6LSuLzmm4Uxrh3RZKzBfREyHMm1zLmTB4K%2FHY1YLwJMTwF7pyVWB8Qk8dZCaQahce%2FCpOxxNyB%2FibKb3Agjfcsyh1l7qfsiZp0Q1v%2BgEwpasq8EokD4Ivw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e741934b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=capofut.net&_ss=6vnk5hmd2b&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5dm7&_cb=_dtspv.c | 141.101.120.10 | 200 OK | 84 kB |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=capofut.net&_ss=6vnk5hmd2b&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5dm7&_cb=_dtspv.c IP141.101.120.10:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Hash0fc06bdc526df871d54422f78c310b9e e6679f0e3ea09949eeda0a564fe2a97cde5ada12 a5baead35f1041ec14a0249ca88309568374200553699f98befa4171983e542d
GET /pv/?_a=v&_h=capofut.net&_ss=6vnk5hmd2b&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5dm7&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Cookie: m=2; oa=2; df=1715327745
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/javascript
x-t: 0.198
x-c: 0
expires: Fri, 10 May 2024 07:55:46 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NfdK8thWnvVd9DLuDaGVpHpo1U3cZX9iOBoHLaG46CBGslQKeaoaCkzFq%2B6OpEB5ae4cbe6ZckEhzODInCkqFoH1xdRdiCDXufSSkPHUu%2BC3TT1yJ6%2B3rIJwjvh0w4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e72ac2a8d71-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-migrate-1.2.1.min.js | 151.101.2.137 | 200 OK | 3.1 kB |
URL GET HTTP/2code.jquery.com/jquery-migrate-1.2.1.min.js IP151.101.2.137:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7085) Hasheb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 20423952
x-served-by: cache-lga21931-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 124779
x-timer: S1715327748.603728,VS0,VE0
vary: Accept-Encoding
content-length: 3063
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js | 151.101.1.229 | 200 OK | 145 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js IP151.101.1.229:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size145 kB (145133 bytes) Hashf55c6c796275a41ce7d97bd160e648ff 936285f9c8c85a749a1ef8cfc4d5e84b7ea2bc89 db7ce4b1edd2c3701c3f2585f7cbd70857173195489a99703ab39de16fa45b6c
GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: br
accept-ranges: bytes
age: 14272
date: Fri, 10 May 2024 07:55:47 GMT
x-served-by: cache-fra-etou8220029-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 145133
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js | 151.101.1.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js IP151.101.1.229:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (30387) Hash1b142ebaf5f868c4c11a73ffe9175afb aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9 df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 9022
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10804
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js | 151.101.1.229 | 200 OK | 58 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js IP151.101.1.229:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb918a2715e5090b0d6dbd00c85377b4e 39aeed3c73b34661b4085afcd2321e2141bbcc9e 40e0be1f17c323e84cd387c13e3191628992bc687e2046bca724ba609b92cb0b
GET /npm/swarmcloud-hls@latest/dist/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.9.16
x-jsd-version-type: version
etag: W/"2d729-Oa7tPHOzRmG0CFr80jIeIUG7zJ4"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 19516
x-served-by: cache-fra-eddf8230112-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 58381
X-Firefox-Spdy: h2
|
|
| kzzwi.com/script/ut.js?cb=1715327747244 | 104.21.92.173 | 200 OK | 34 kB |
URL GET HTTP/2kzzwi.com/script/ut.js?cb=1715327747244 IP104.21.92.173:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjectkzzwi.com Fingerprint93:79:DA:4F:31:4A:0C:F8:01:59:7F:2A:4B:E2:DB:69:CF:3C:65:67 ValiditySun, 05 May 2024 23:44:54 GMT - Sat, 03 Aug 2024 23:44:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (62938), with no line terminators Hashbc481e345c04b4534e0a4e54a0f2c1c6 2be428035dd37b2722891c200f35449c5893df33 04d8cc0aacc3f172f638e608d3f08e8457d849290ae553090cb951d4b3f1b97b
GET /script/ut.js?cb=1715327747244 HTTP/1.1
Host: kzzwi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPrCjHGSc70U-nR0__MuMvVZmgf4KgvUyCpFVSFEKMDEDZh19A4Nx4-amK5iP0RUzfZMNWI
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Fri, 10 May 2024 08:12:44 GMT
cache-control: public, max-age=14400
age: 323
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Msu1HEDAAg91NJhvJcndsoy%2FUZnG5OZgs3VpxUek%2Furt%2FOcXY4mwe2XwR4KWlwaeTD8FH2gnfO%2FjtV5km0ZB78ioM2%2B7WhdbP2c7ASNVc8jaPJTtGMh2zcflC%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e74bfdc712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hocast4.com/z-7951458 | 188.114.97.1 | 200 OK | 162 kB |
IP188.114.97.1:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerLet's Encrypt Subjecthocast4.com FingerprintBB:61:90:8E:3E:6C:F1:3D:E5:30:92:9F:CA:8A:DE:9B:7A:37:58:54 ValidityThu, 09 May 2024 02:51:26 GMT - Wed, 07 Aug 2024 02:51:25 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (40952), with NEL line terminators Size162 kB (161591 bytes) Hash30595750570daebfd3478af594f5f2de 822624174ca6c98c9e9ca24e45e9ec9e60ec0d3e 19d1f3ccc5e57d175c85c3513f5ef2844531845f25853143db371410a9f26a9c
GET /z-7951458 HTTP/1.1
Host: hocast4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/footy.php?player=desktop&live=ufeed67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/octet-stream
content-length: 161591
last-modified: Fri, 10 May 2024 07:01:03 GMT
etag: "663dc62f-27737"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vFgw4hwcetyitKAmiqmUoS%2Bu2FP1t7Kl5k3p%2Bg5fyFCJFoJHADFi4qrFG2HB8uCvJQJYDHj4Up%2FuOFIjT6X%2F27b59iaLM9oafQ9LuIAPoAltxiG35jf2dWhO11mrUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e75fcee5691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| unseenreport.com/pxf.gif?uuid=ec2981cd-62cf-4b36-bbca-593bd740d441&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=2ba8e0b8ae36a3a2c24c170c7c0734cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 | 192.243.61.227 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=ec2981cd-62cf-4b36-bbca-593bd740d441&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=2ba8e0b8ae36a3a2c24c170c7c0734cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=ec2981cd-62cf-4b36-bbca-593bd740d441&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=2ba8e0b8ae36a3a2c24c170c7c0734cc&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 07:55:48 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1e3ab4a70106a6e3e742266d621ac8e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.capofut.net/play/deportes1.php | 104.21.11.190 | 200 OK | 74 kB |
URL GET HTTP/2www.capofut.net/play/deportes1.php IP104.21.11.190:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectcapofut.net Fingerprint41:1E:F5:90:CA:BE:2E:E3:DA:86:92:25:61:44:B1:89:FC:B6:76:16 ValidityWed, 08 May 2024 01:36:38 GMT - Tue, 06 Aug 2024 01:36:37 GMT
File typeHTML document, ASCII text Hash3ca78eca06d3c9775020d8a8b08ef602 89b19fc0f5b271f9c706ac58e3b7b968b71ca1c9 ec5276325d2f6b36318c3a338e10c44ded3e4ff98757cb44ec5143b99b62a500
GET /play/deportes1.php HTTP/1.1
Host: www.capofut.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2FpoRK0zkMubAVZr9MRfS%2Fi%2FNSuXo4rJda0vhzM1CoYGxPpksyfQNbgn9j21G7a%2BgdP84V8CoCnMuZLWgKOo4WQHlzeo7hFBhmzOLVhiT1l8oacjzbEDwOs5Jk2bS4M%2FMy0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e689b3c569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.pl&_ss=2i9vab3r6q&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3gzh&_cb=_dtspv.c | 141.101.120.10 | 200 OK | 8.0 kB |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.pl&_ss=2i9vab3r6q&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3gzh&_cb=_dtspv.c IP141.101.120.10:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Hash31b8f0102aad0c930f9d4b8ae6736093 147657c5626088803cdf27d8b5a38c7bed7b432a 7df00adf7bb1e6e342e2a72554fc55be2d0ddda362f73c8898b563c07e3783bd
GET /pv/?_a=v&_h=rojadirectaenvivo.pl&_ss=2i9vab3r6q&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3gzh&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Cookie: m=1; oa=1; df=1715327745
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: application/javascript
x-t: 0.143
x-c: 0
expires: Fri, 10 May 2024 07:55:44 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nCR9K6c45JnRXUs4cyWHOv7heanh3ORUSTf7mrITbeMUfExnwxW3iuyVaiEgwGrw88jBpc%2FACmk%2B2%2FOC%2BBnefHMsgqBP1cNLoDZGsr1oFo9eEEp4WhqAHBsZBjZ4jzw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e6b0e7c8d71-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/suurl5.php?r=8097274&cbur=0.5405515761267987&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=%C2%BB%20Deportes%201%20En%20Vivo%20%7C%20Rojadirecta&cbpage=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&cbref=&cbdescription=Ver%20Deportes%201%20en%20vivo%20y%20gratis%20por%20internet%20%7C%20Rojadirecta&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327745398&srs=0a543d49f082f448563bdd100fbec291&atv=48.1 | 104.21.91.188 | 200 OK | 1.1 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=8097274&cbur=0.5405515761267987&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=%C2%BB%20Deportes%201%20En%20Vivo%20%7C%20Rojadirecta&cbpage=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&cbref=&cbdescription=Ver%20Deportes%201%20en%20vivo%20y%20gratis%20por%20internet%20%7C%20Rojadirecta&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327745398&srs=0a543d49f082f448563bdd100fbec291&atv=48.1 IP104.21.91.188:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1124), with no line terminators Hashc2ba7945d8a31c9547842abd67a220e9 60005fd191aadc9506ab92a96dddd8b25a274fd8 60470505a1d77bc448361f374e680fc4786337f2ea0c596a086b3d889e50c5f4
GET /script/suurl5.php?r=8097274&cbur=0.5405515761267987&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=%C2%BB%20Deportes%201%20En%20Vivo%20%7C%20Rojadirecta&cbpage=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&cbref=&cbdescription=Ver%20Deportes%201%20en%20vivo%20y%20gratis%20por%20internet%20%7C%20Rojadirecta&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327745398&srs=0a543d49f082f448563bdd100fbec291&atv=48.1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rojadirectaenvivo.pl/
Origin: https://www.rojadirectaenvivo.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nHKb9ZUGv0gkZHr82EJtau4TtChEc2%2FlhvZ1iHY%2BVzmzbjFJBwcK2vDL3g2VYXUw0QL6%2BpwdbQPoJStyTLKsnKxrjet8lXpr53dB9YrGzSdtcv%2FzkLbYsnglaRQwkKHPbtpIX3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e68fbae56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hoyfutbol.info/wc.js?v=2 | 104.21.5.247 | 404 Not Found | 162 kB |
IP104.21.5.247:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerGoogle Trust Services LLC Subjecthoyfutbol.info Fingerprint4D:67:E5:02:CF:33:0B:9E:82:FD:DA:6F:3F:BE:95:19:5A:31:FF:B3 ValidityTue, 02 Apr 2024 17:41:15 GMT - Mon, 01 Jul 2024 17:41:14 GMT
Size162 kB (161705 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wc.js?v=2 HTTP/1.1
Host: hoyfutbol.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/player/3/67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZuyjpdoAt2DSAbgOi2Bl1l7InAEUTz4BIcBeoq8EDH0rdGg4JXzQLqR1Z4wcxSKY4ooMr%2FMhbrUNeWCS6T6J5O3KSzmuxhni6e2DHU26mE2%2Fc%2BVP2NvG%2BUTSj%2FrYIFmhLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e728b7a56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| code.jquery.com/jquery-latest.js | 151.101.2.137 | 200 OK | 283 kB |
URL GET HTTP/2code.jquery.com/jquery-latest.js IP151.101.2.137:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Size283 kB (282766 bytes) Hash3d93b072d14f2bd1ede58f4847f537fd 73e5d044bd153dd912930e8be433059454ce19cd 3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc
GET /jquery-latest.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4508e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 20527130
x-served-by: cache-lga21958-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 757, 603782
x-timer: S1715327748.592912,VS0,VE0
vary: Accept-Encoding
content-length: 83875
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/aclib.js | 104.21.11.26 | 200 OK | 126 kB |
URL GET HTTP/2acscdn.com/script/aclib.js IP104.21.11.26:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
Size126 kB (125606 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: text/javascript
x-goog-generation: 1714389616107910
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125606
x-goog-hash: crc32c=xTw75w==, md5=TCF5phnDVdTC7KGmT28/Bw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPq3WDRiywUXy1I9epsgjBrZr10_kxsxD8tygBTr-xkVVMzaGeOnPwLfQ_UPT0AwhViwE90
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Fri, 10 May 2024 08:06:38 GMT
cache-control: public, max-age=3600
age: 1515
last-modified: Mon, 29 Apr 2024 11:20:16 GMT
etag: W/"4c2179a619c355d4c2eca1a64f6f3f07"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FV4Uxg4qWa8MAkooPeIJhZCENnQwuNrFmkm3EdQM09mIubNyW8d4%2Fw1YyWTIxpedQA0NX8UfSpgrMqUU174605enJlfdZ7%2F9ZiVw3kmzhxXEVEHRE3Jr6acawI25"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e669864712e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| waust.at/s.js | 172.67.71.57 | 200 OK | 8.6 kB |
IP172.67.71.57:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (8826), with no line terminators Hashe035263c3e1d7ccd4168070e0954df82 8b47f35dfcada03dd10e1970081ca0b622bd94b9 3efdd12bf82a9d8985d85246e53a8150bc955948a5f0a4a2882ffc6242fdaa7c
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:36 GMT
etag: W/"63c04128-2170"
expires: Sat, 11 May 2024 06:58:37 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3428
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jYFM5NZR3F4S70bqdc6yWLjUy9WEv4yvGG%2BesbY2Jmd7AC%2FhrRveGI%2BwgXzTGOt0ZVsVEG6mKsPBp9KMGkJC5Epwa0M239gAIzuFQALNA46vF10ghQr9GHYJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e66ae325688-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&j= | 141.101.120.10 | 200 OK | 2.1 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&j= IP141.101.120.10:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2163), with no line terminators Hash8811c1da7d7cd9a89cf1c9d88cf153c1 5dd7a95e6eee435a18d261757a4aa4aeea7ae472 0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.pl%2Fen-vivo%2Fdeportes-1.php&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Fri, 10-May-2024 09:19:05 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Fri, 10-May-2024 11:55:45 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1715327745; Domain=dtscout.com; Expires=Sun, 18-Aug-2024 07:55:45 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.237
expires: Fri, 10 May 2024 07:55:44 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vs4mxiy8i%2FmWEfTyqkrbBTms8Av2nyUsHQawWgEVfjXj5wKzZ65OuLL7jSvwo1pdkw%2FaiHD4OnVFuYc%2BTvmk88tU9DdptY4957%2BJfw1Ruv7SfLshA707vseidWA4rOU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e694d4c8d71-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| hocast4.com/css/site.css | 188.114.97.1 | 200 OK | 199 B |
IP188.114.97.1:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerLet's Encrypt Subjecthocast4.com FingerprintBB:61:90:8E:3E:6C:F1:3D:E5:30:92:9F:CA:8A:DE:9B:7A:37:58:54 ValidityThu, 09 May 2024 02:51:26 GMT - Wed, 07 Aug 2024 02:51:25 GMT
File typeASCII text, with no line terminators Hash1c0354d5d809202b32e2767fd752d997 3ae81b6a2f708ebb1baa145d25dc061ebd93be57 bb217a86ff30bcaa4bb0d0dabc9809fe4da66226cb9dc7f5b3bc16fa0e781ad0
GET /css/site.css HTTP/1.1
Host: hocast4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/footy.php?player=desktop&live=ufeed67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: text/css
last-modified: Fri, 29 Oct 2021 09:54:42 GMT
etag: W/"617bc4e2-c7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3396
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aNC378f03jNhZS7Olxk90hjKRs1ynaKLQj5Q6gYgWaxs6tKtN%2FrCyBmnJsnCtnjTVfQjrs%2B0w3grLL4VBeaRYL8u%2BxmoQFrkLKdAyGa%2BZWtQloL0MLThPMZIDzTvJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e75dcb05691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/suurl5.php?r=8343450&cbur=0.20454269898924005&cbiframe=1&cbWidth=852&cbHeight=480&cbtitle=&cbpage=https%3A%2F%2Fwww.capofut.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=kzzwi.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327747149&srs=19b509b075109042a6485e330d284473&atv=48.1&abtg=1&adbv=3-swat3 | 104.21.91.188 | 200 OK | 972 B |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=8343450&cbur=0.20454269898924005&cbiframe=1&cbWidth=852&cbHeight=480&cbtitle=&cbpage=https%3A%2F%2Fwww.capofut.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=kzzwi.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327747149&srs=19b509b075109042a6485e330d284473&atv=48.1&abtg=1&adbv=3-swat3 IP104.21.91.188:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (999), with no line terminators Hash2c90a0852b483dc331e2bbf2d0501282 b572af4c98e79febb712ee00b4acf86d65f18610 edb324ec72cf25b1ff0ea3b371374b70a9adeee22f76c195b70eecbeeb1d8ba6
GET /script/suurl5.php?r=8343450&cbur=0.20454269898924005&cbiframe=1&cbWidth=852&cbHeight=480&cbtitle=&cbpage=https%3A%2F%2Fwww.capofut.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=kzzwi.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1715327747149&srs=19b509b075109042a6485e330d284473&atv=48.1&abtg=1&adbv=3-swat3 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hoyfutbol.info/
Origin: https://hoyfutbol.info
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ws%2FmPgnZFb6HRK0R%2BEC22TAO9ZzqbO8ifLMQ4Jjj6VWaj7zkKzWHe38aPPonTUBJTQSN14putk67pAVx895rAWv9tV1oKO%2BYPj7kpDWctgVXXFIoF7GXrdYxNcLzpiKwDCKvE24%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e73cf8856bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nossairt.net/?rb=Ht_yJuDCosKXHwYdk-bXC2hHC1L111EsC_jZ3MNN2PcXtgazFk_dBfWJaPs_yVpZz_3dH2FT-jkd5ABrBSzbz-j3cSQLMb8eRgDz3tPQWW6fgnOsstEeFpYpGckm6MkSZ8W0LNNH74JrvCC2VyI_qdab5LEZm717XgzskZDsUfJpim3EH36u1pNLHF2ByYFaK66VbdTxI3OF9OIhBCwl3mZ3mP38PmkorFSceiG18GdAFP2-NZWmGtn2OAA8XdFtwHkrGfcC6zk%3D&request_ab2=0&zoneid=5548992&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=480&wiw=852&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=852&wfc=2&pl=https%3A%2F%2Fhoyfutbol.info%2Fplayer%2F3%2F67&drf=https%3A%2F%2Fwww.capofut.net%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&bs=3788844a-9171-41d5-b3d6-6ffd5740ded3&wasm=1&userId=00805881d0824fc1e4c6c465cd01dfbc&m=link | 139.45.197.238 | 200 OK | 2.7 kB |
URL GET HTTP/2nossairt.net/?rb=Ht_yJuDCosKXHwYdk-bXC2hHC1L111EsC_jZ3MNN2PcXtgazFk_dBfWJaPs_yVpZz_3dH2FT-jkd5ABrBSzbz-j3cSQLMb8eRgDz3tPQWW6fgnOsstEeFpYpGckm6MkSZ8W0LNNH74JrvCC2VyI_qdab5LEZm717XgzskZDsUfJpim3EH36u1pNLHF2ByYFaK66VbdTxI3OF9OIhBCwl3mZ3mP38PmkorFSceiG18GdAFP2-NZWmGtn2OAA8XdFtwHkrGfcC6zk%3D&request_ab2=0&zoneid=5548992&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=480&wiw=852&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=852&wfc=2&pl=https%3A%2F%2Fhoyfutbol.info%2Fplayer%2F3%2F67&drf=https%3A%2F%2Fwww.capofut.net%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&bs=3788844a-9171-41d5-b3d6-6ffd5740ded3&wasm=1&userId=00805881d0824fc1e4c6c465cd01dfbc&m=link IP139.45.197.238:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjectnossairt.net Fingerprint9B:D9:3C:16:AE:3A:B3:4C:11:53:DB:A3:74:9D:97:43:AE:4B:80:83 ValidityTue, 07 May 2024 05:19:07 GMT - Mon, 05 Aug 2024 05:19:06 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2717), with no line terminators Hashf056337b7648f9b7baa20c89cc078cda d9847968d92cb8bf1c7acd88a8c724139d52e590 4fb3648c84a8a5b0df58ce9f312c3f0961625908a9ce4c8bdc6a884c763bb304
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=Ht_yJuDCosKXHwYdk-bXC2hHC1L111EsC_jZ3MNN2PcXtgazFk_dBfWJaPs_yVpZz_3dH2FT-jkd5ABrBSzbz-j3cSQLMb8eRgDz3tPQWW6fgnOsstEeFpYpGckm6MkSZ8W0LNNH74JrvCC2VyI_qdab5LEZm717XgzskZDsUfJpim3EH36u1pNLHF2ByYFaK66VbdTxI3OF9OIhBCwl3mZ3mP38PmkorFSceiG18GdAFP2-NZWmGtn2OAA8XdFtwHkrGfcC6zk%3D&request_ab2=0&zoneid=5548992&js_build=iclick-v1.792.1-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=480&wiw=852&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=852&wfc=2&pl=https%3A%2F%2Fhoyfutbol.info%2Fplayer%2F3%2F67&drf=https%3A%2F%2Fwww.capofut.net%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.792.1-auto&navlng=en-US&pnt=0&pnrc=0&bs=3788844a-9171-41d5-b3d6-6ffd5740ded3&wasm=1&userId=00805881d0824fc1e4c6c465cd01dfbc&m=link HTTP/1.1
Host: nossairt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hoyfutbol.info/
Origin: https://hoyfutbol.info
DNT: 1
Connection: keep-alive
Cookie: OAID=00805881d0824fc1e4c6c465cd01dfbc; oaidts=1715327747
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 07:55:48 GMT
content-type: application/json
x-trace-id: 24d5ec59c8bd8a1030e0b4bb99974b6c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://hoyfutbol.info
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00805881d0824fc1e4c6c465cd01dfbc; expires=Sat, 10 May 2025 07:55:47 GMT; path=/; secure; SameSite=None
oaidts=1715327747; expires=Sat, 10 May 2025 07:55:47 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 17 May 2024 07:55:47 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| hocast4.com/blast.js | 188.114.97.1 | 200 OK | 78 kB |
IP188.114.97.1:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerLet's Encrypt Subjecthocast4.com FingerprintBB:61:90:8E:3E:6C:F1:3D:E5:30:92:9F:CA:8A:DE:9B:7A:37:58:54 ValidityThu, 09 May 2024 02:51:26 GMT - Wed, 07 Aug 2024 02:51:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash091faec928970e76d37a3601c19fcf8a 6441e8eebe90eb8d4a40e7c25440ff99caba3520 eb06375118b1eb73f43b8f1851472008f84999a1b27359c075bf5da6feef9a12
GET /blast.js HTTP/1.1
Host: hocast4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/footy.php?player=desktop&live=ufeed67
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/javascript
last-modified: Sat, 08 Oct 2022 23:56:20 GMT
vary: Accept-Encoding
etag: W/"63420e24-13040"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3395
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eViKEajQpixMMx%2FtLbYTaKd5x0%2FAAeF2%2BJ8UdLO%2FG37giLOZQ%2FPb0D0yUSUieMWi85uLy5AziO6Rwk2QOLW0pC%2Fh1%2BPEO09tkbDl1CprFG%2B4BfsDQW80LKdHKq5mxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e75dcb75691-OSL
alt-svc: h3=":443"; ma=86400
|
|
| pubtrky.com/ut/hb.php?cb=0.3356760182549964&v=1 | 172.67.188.110 | 204 No Content | 0 B |
URL POST HTTP/2pubtrky.com/ut/hb.php?cb=0.3356760182549964&v=1 IP172.67.188.110:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectpubtrky.com Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30 ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.3356760182549964&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 954
Origin: https://www.rojadirectaenvivo.pl
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 10 May 2024 07:55:45 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OMDygOENn0KHj7%2FbowILNCXhtMnutppFaQR0Nu%2FEdHphC0XpG%2FA%2B0p8MUy3PPQ%2Bs%2FbBsY4AXL5Q%2BxajNEJ%2FvjaMnb8WunqBm6Vlnyh129ALC7B%2FKR6Ft2%2BJfYx8Wqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e699bfd56c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rojadirectaenvivo.pl/layout2.css | 172.67.162.198 | 200 OK | 1.3 kB |
URL GET HTTP/3www.rojadirectaenvivo.pl/layout2.css IP172.67.162.198:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.pl Fingerprint6F:FB:D9:76:2B:5B:EA:A3:39:4B:72:B0:17:FD:1C:4C:76:BC:81:7B ValidityMon, 15 Apr 2024 15:24:39 GMT - Sun, 14 Jul 2024 15:24:38 GMT
File typeASCII text, with very long lines (1306), with no line terminators Hash3e2aca5f265eb480370f4853afc485ca d3bb99718e399bfa558d284853746efa52d22dc4 020087ad05455f186a5f868c857792a3c0f3c6978aa5dd1121147595382e8a0f
GET /layout2.css HTTP/1.1
Host: www.rojadirectaenvivo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=2122
etag: W/"65d025ad-84a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sat, 17 Feb 2024 03:19:09 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 825412
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BNlZOih4ckJsV0ViEphJzKj0JSWX0KMCxq9U0UnLLvnwf6%2Fl73XYI9j3NzClRgzbv%2FigDV54WStmbJJU2g4hcMpxa5Uk6Vs4LjSZQo3iY8owBl6arGawrMwWdT2HNxihM%2BPK1bAhuxDOpAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e667b4db515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| waust.at/c.js | 172.67.71.57 | 200 OK | 13 kB |
IP172.67.71.57:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (12997), with no line terminators Hash45bfa6dedd6f7a9ce980b168e0350ad0 82c6b381da9abd8cb3db22ba4868287fe4e976f1 856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:40 GMT
etag: W/"63c0412c-32c5"
expires: Sat, 11 May 2024 07:16:59 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2326
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Db9XZZkwe7uF46ebIWXkaWLyFle1QkX42EcWBGeQ4rGAGyju%2Fqj6HNeV0Pl3YWCnH%2BZ5q9%2Bj5ixmQ2EooBs0MShmZRDUbieFNruDvuOg0n3%2Fut7SVFlRcqCf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e69d918b4f7-OSL
content-encoding: br
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://www.capofut.net/play/deportes1.php CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.capofut.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:46 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 02e85eb409bf691717c41d3193777f04
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 07:55:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gAJTSL9YbVNbGdw9rT64OHYJbR4GxWv26H%2BV7IzIzF%2BWNoGiYR4ghKpQMR2fE4z8UiaemU%2BS272Fn1dhmE%2FiJKzNqWtKwC3m8PEJkcjYkC6oVlfB1V7GI0WYRtZRXmsc1sQKSVBdakcbRQ7SgfpgPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e70d93656bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js | 151.101.1.229 | 200 OK | 3.1 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js IP151.101.1.229:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (3149), with no line terminators Hash05e1ff98b3062d29fb69643b578c6796 623851921de67a60b1b486f77cb543520919f88d 1ecf12497cc6c52eac9c47b719e08d7245c57375143494b14601baa05ecd2787
GET /npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.8.10
x-jsd-version-type: version
etag: W/"c19-SLjttAW8dcDjADi6J1T2hbhokWc"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 07:55:47 GMT
age: 20235
x-served-by: cache-fra-etou8220118-FRA, cache-hel1410026-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1198
X-Firefox-Spdy: h2
|
|
| www.rojadirectaenvivo.pl/en-vivo/deportes-1.php | 172.67.162.198 | 200 OK | 1.8 kB |
URL User Request GET HTTP/2www.rojadirectaenvivo.pl/en-vivo/deportes-1.php IP172.67.162.198:443
CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.pl Fingerprint6F:FB:D9:76:2B:5B:EA:A3:39:4B:72:B0:17:FD:1C:4C:76:BC:81:7B ValidityMon, 15 Apr 2024 15:24:39 GMT - Sun, 14 Jul 2024 15:24:38 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1904), with no line terminators Hash622357142d135520cefcf7013e3803b7 24a8666d987aa510dc6c88933259921b4d1ee301 7e823bde8634bc6b968edbcc2001c57b8568f09e62d3d5b121d21681f373612d
GET /en-vivo/deportes-1.php HTTP/1.1
Host: www.rojadirectaenvivo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e7GQMBT84JHfEnDOo%2B2xAiZyN1Ns6gRyP9%2B1RNQsotptYyYiUgd7rrUwp3V8bBK6030gqhpXyCRmVrbnfEEHrJNPXsUBPYUGtMDQpdaCUpzTfO46%2Fymo%2Bz6e8Tg%2FcrvXVu3R%2FlQpYQ1p9T4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88185e63ebc656c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 37 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://hocast4.com/footy.php?player=desktop&live=ufeed67 CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (32033) Hash5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hocast4.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 10/31/2023 19:27:53
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1a04ea32b2f4b219188fda8349c8680c
cdn-cache: HIT
cf-cache-status: HIT
age: 819830
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 88185e75fe8fb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.rojadirectaenvivo.pl/favicon.ico | 172.67.162.198 | 200 OK | 305 B |
URL GET HTTP/3www.rojadirectaenvivo.pl/favicon.ico IP172.67.162.198:443
Requested byhttps://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.pl Fingerprint6F:FB:D9:76:2B:5B:EA:A3:39:4B:72:B0:17:FD:1C:4C:76:BC:81:7B ValidityMon, 15 Apr 2024 15:24:39 GMT - Sun, 14 Jul 2024 15:24:38 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash98371d3d7edc35f4e11315c0475f4463 ff048128be66659bb4bde3fdf6a17d0f95fdb72f ea4a057839341f71cd012ac213e470ea1c98ace4dc80b3324f155c48b2efe79e
GET /favicon.ico HTTP/1.1
Host: www.rojadirectaenvivo.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.pl/en-vivo/deportes-1.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:55:45 GMT
content-type: image/x-icon
last-modified: Sat, 17 Feb 2024 03:19:15 GMT
etag: W/"65d025b3-131"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 825409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=peTp1ZuLtoNqnKgas3PoELWwtpEigR%2BmqoSRMvfr6bO%2FnPtGFs0VDAtcFXRi1pTYw51UKakYHr7bvVwI6GWBKU1KNohUJPVyO49IrpJM4I75NDn16mIqkU8lgsgi7S15MmvvsQ7HwxgrpRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88185e688e92b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| my.rtmark.net/gid.js?userId=00805881d0824fc1e4c6c465cd01dfbc | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00805881d0824fc1e4c6c465cd01dfbc IP139.45.195.8:443
Requested byhttps://hoyfutbol.info/player/3/67 CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashb6f4029c3b1cfb47780629a9c675a61b d3e449ca402ef62169d0c89759e24a84992263a9 dc8a8e7ac5677db51efcb67fdf0cfe9d0df9a04a2def687e6d32cf5806245af0
GET /gid.js?userId=00805881d0824fc1e4c6c465cd01dfbc HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hoyfutbol.info
DNT: 1
Connection: keep-alive
Referer: https://hoyfutbol.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 07:55:47 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://hoyfutbol.info
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00805881d0824fc1e4c6c465cd01dfbc; expires=Sat, 10 May 2025 07:55:47 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|