| television.libre.futbol/tv2/img/logo-futbolLibre.webp | 172.67.174.131 | 200 OK | 6.5 kB |
URL GET HTTP/3television.libre.futbol/tv2/img/logo-futbolLibre.webp IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeRIFF (little-endian) data, Web/P image Hash1234d6a63266ad04d30eb5a3808f0c76 fe6675385d68e7ccf859e16ae6a445a417787530 2ac74a71cad5d52e339a61edbd2031213cfd14c5872d830656aeca9904902fbb
GET /tv2/img/logo-futbolLibre.webp HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: image/webp
content-length: 6526
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 17:32:47 GMT
last-modified: Tue, 30 Apr 2024 12:06:38 GMT
etag: "197e-6630dece-b8a438c3d89e453f;;;"
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: browsing-topics=()
cf-cache-status: HIT
age: 14634
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TKb1JNzVbeuQIUQB%2F%2FC81PwRBJVK0eMIcA2sO1jw6Khf5yec%2FzzcyRnyFgcE3IFiSyv8MH39Qus%2BEi%2FGLNiP7zl2kSdgLP%2B3MFv58IqjZgj45szFV5CKwn1fY2XHycskHiQnc9kd2GX02w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bd3cb0b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/tv2/z-7917142 | 172.67.174.131 | 200 OK | 1.8 kB |
URL GET HTTP/3television.libre.futbol/tv2/z-7917142 IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeASCII text, with very long lines (1823) Hash1ed06ef9d768a96a7d4f196bc7b67410 8ebd368bd7327071afabe3298537d226da0be952 02de2bfde71d4ab28980a4811f30c7c98e4b821e064f5adfbf9d47c4924b1a5c
GET /tv2/z-7917142 HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-length: 1825
last-modified: Mon, 08 Apr 2024 18:04:06 GMT
etag: "721-66143196-d8d3e2c894417f79;;;"
accept-ranges: bytes
vary: User-Agent
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: browsing-topics=()
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nlMxKogTEi20OxYpjKQmXZQPBiJJcOdVgZGasNayxaSJ6LX7JEgnnIpciWaJIjf6GneI8rCifKnMCaYOq3qw54e%2FPRXgwq8MAdNgBiQr1uAYhx0tNadQCqSFwWmS4LE8Us3RyYy94Iv%2Bzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bd2ca9b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| code.jquery.com/jquery-3.3.1.min.js | 151.101.2.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.3.1.min.js IP151.101.2.137:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1538f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:07 GMT
age: 20064143
x-served-by: cache-lga13622-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 121210
x-timer: S1714864747.153119,VS0,VE0
vary: Accept-Encoding
content-length: 30288
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-VTQ9GZ3587 | 142.250.74.168 | 200 OK | 102 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-VTQ9GZ3587 IP142.250.74.168:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size102 kB (101585 bytes) Hashd15ef303c45755adeb2c135a23fb6969 548b9c08b2cf3a9aec01d89ebbb5ea082aec4e48 ac55123b488f233c0417d3ee6937db37d9f034aa7c6723b85518780ab2bd90a5
GET /gtag/js?id=G-VTQ9GZ3587 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 23:19:07 GMT
expires: Sat, 04 May 2024 23:19:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101585
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| television.libre.futbol/tv2/css/portada.css | 172.67.174.131 | 200 OK | 722 B |
URL GET HTTP/3television.libre.futbol/tv2/css/portada.css IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeASCII text, with very long lines (381), with no line terminators Hashb49a9fdd6f95198b570efe324a20e7ef 7471b80e32868da22a15a461a13a2e06f769e2d3 97807c9a65b0b8a005fc258df070665409a3bee0a6a7be4b03d7e0f546c93a73
GET /tv2/css/portada.css HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=509
permissions-policy: browsing-topics=()
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
cache-control: public, max-age=604800
etag: W/"1fd-662d5b17-95258535da25358b;br"
expires: Sat, 11 May 2024 15:32:46 GMT
last-modified: Sat, 27 Apr 2024 20:07:51 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
age: 25892
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0FgNFg4yP1yWGe3aDpDzyMod8JMcE3TPLSRC%2FolEJlnTa8cbpUDSJlfSKL5jAMebRQJoU7CzHw3ulBfXrpEYWB7u3zjSEcPYYu9u7OElMiYLqlKcWkvO1NfOMZj2m59bT1%2Fxdp9pQi0ZFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bd2ca6b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.174.131 | 302 Found | 0 B |
URL GET HTTP/3television.libre.futbol/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 23:19:07 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u8zZg2GpY3kZJjq0MuQxK3tEVdTr3TlA7H1e2DeXPFh3dHwxgjMIxmPfI7LA4Y369h6fYL6v3dh3bah3seRjEaANb6HX%2FlfNtMcpJP9HwwLrfjH3%2F6lE0FkTq6%2F3XStC6OcZ3U0iEp6ILA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bf9e69b529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| micanaldeportivo.com/canal10.php | 94.242.50.135 | 200 OK | 1.7 kB |
URL GET HTTP/2micanaldeportivo.com/canal10.php IP94.242.50.135:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subject*.micanaldeportivo.com Fingerprint76:50:B6:8E:BC:5E:DE:98:0E:63:93:3F:4F:EE:15:64:E6:80:E1:66 ValidityWed, 24 Apr 2024 18:00:22 GMT - Tue, 23 Jul 2024 18:00:21 GMT
File typeHTML document, ASCII text, with very long lines (415), with CRLF line terminators Hash2fe23d2f94eb8eeec79dc731b549f57e 93548def9c19325222ce8f70a99f0114f5b5b6f9 3a39d70d54d045e45420a297505070a1264bd8ed67882fda1e9e827e9378d66b
GET /canal10.php HTTP/1.1
Host: micanaldeportivo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 1673
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 23:19:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| rprapjc.com/script/suv5.js | 172.67.136.156 | 200 OK | 50 kB |
URL GET HTTP/3rprapjc.com/script/suv5.js IP172.67.136.156:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectrprapjc.com Fingerprint61:72:87:18:2B:88:AA:DA:58:00:BD:02:F7:79:67:55:13:F7:AB:77 ValidityMon, 25 Mar 2024 16:51:54 GMT - Sun, 23 Jun 2024 16:51:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators Hash9d6eb2890d21b253ae6805e887bc3e7d 445a76360b55b73e5be624029c6a152f859532ba 46bca0d03531443972441e135afb00e7fd35bc74d0f466efe2dd782071a2d9e0
GET /script/suv5.js HTTP/1.1
Host: rprapjc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPqgzpVj1R3rULZSmsNVPV2SUtFMQsNeuz4DFrYF0Q6Khyu5jkIf4EV0xrFArdDTSlrDRoXG_GyMgA
x-goog-generation: 1714390003317461
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 74331
x-goog-hash: crc32c=uRKYDw==, md5=nW6yiQ0hslOuaAXoh7w+fQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 04 May 2024 23:21:09 GMT
cache-control: public, max-age=14400
last-modified: Mon, 29 Apr 2024 11:26:43 GMT
etag: W/"9d6eb2890d21b253ae6805e887bc3e7d"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6hrm%2BYbIHSNZNXKrfg2aGMPZRc%2FQc5aIkJxHKJUgZEzFq%2BJuMlJyesrUAoI4%2BfTfVSENU2bHUCU63VlXRClzqg9AYGoLFsJ9C9aYtE2OruZxgmU3O4HTllrtL0unsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c01f961c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/tv2/favicon/favicon-16x16.png | 172.67.174.131 | 200 OK | 1.4 kB |
URL GET HTTP/3television.libre.futbol/tv2/favicon/favicon-16x16.png IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash0cc60b9e0d9457f372d057844c0fd608 2fd78f4c2154bd6ddd024e7979b22b9f44b83e8a 0e43ec5113e7fbd03e55492ad763131a07e02094c5a89cc08da3b11fa8a2a456
GET /tv2/favicon/favicon-16x16.png HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: image/png
content-length: 1385
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 17:32:55 GMT
last-modified: Mon, 08 Apr 2024 18:04:07 GMT
etag: "569-66143197-471aa61111467e01;;;"
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: browsing-topics=()
cf-cache-status: HIT
age: 9822
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L4R5HadN9w2R47UcYMV3J2PjDV13CUslbY9szkSPyXDpYfAqUWxjU99Beac4yGexRKu9DmxvYsKttggrwKxFkE2j3M833MhHFjIgcJForCjC4KXO9r0%2FmjC6qSoZAobJ4IIyC1Rvs9wQWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36c2083fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/cdn-cgi/challenge-platform/h/g/jsd/r/87ec36babd367129 | 172.67.174.131 | 200 OK | 0 B |
URL POST HTTP/3television.libre.futbol/cdn-cgi/challenge-platform/h/g/jsd/r/87ec36babd367129 IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87ec36babd367129 HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12298
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Referer: https://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
priority: u=3,i=?0
set-cookie: cf_clearance=FP5jBJ5wrvzEAaEYT8VQW.j0Sz_5kKQCRRhf16gxH58-1714864747-1.0.1.1-jL9j9M437zDEbyIXJup8h4zqemJTjcQAVmrv4X5M7cC.IS49SJjOtU_2iQaBJmCXhs4gFoaWnkGV.PJdsMnMKA; path=/; expires=Sun, 04-May-25 23:19:07 GMT; domain=.libre.futbol; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcIVh1ZsUsCKGrUMl6%2FWn0u5LLIfx%2BH1%2F2k3VpThvnZygnUfzZ03PwLImZ%2BSxh8sSA3gAhv6Vc6ssn%2F48tJf5U7OCHDzrUF5Mb5nf13k16lcE024K5EFW1EHyNTEaU1Ygpkm%2Btjp0nEWPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36c2687fb529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| code.jquery.com/jquery-latest.min.js | 151.101.2.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-latest.min.js IP151.101.2.137:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32086) Hash8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441
GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1762a"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:07 GMT
age: 20064127
x-served-by: cache-lga21983-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 55, 42328
x-timer: S1714864748.932182,VS0,VE0
vary: Accept-Encoding
content-length: 33202
X-Firefox-Spdy: h2
|
|
| ssl.p.jwpcdn.com/player/v/8.25.1/jwplayer.js | 151.101.66.114 | 200 OK | 41 kB |
URL GET HTTP/2ssl.p.jwpcdn.com/player/v/8.25.1/jwplayer.js IP151.101.66.114:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGlobalSign nv-sa Subject*.jwplayer.com FingerprintAB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A ValidityWed, 30 Aug 2023 18:09:48 GMT - Mon, 30 Sep 2024 18:09:47 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65144) Hash7e53746c16be2dd406a6fbed7f43dfbc fc160bd98802512eaca3cc48866301050d0b9c0f 827b28fb1dd357f9246f2c5dbd495009cafeb8c439e41f67961df4eaff15e712
GET /player/v/8.25.1/jwplayer.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Mon, 25 Apr 2022 19:34:51 GMT
etag: "7e53746c16be2dd406a6fbed7f43dfbc"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:07 GMT
via: 1.1 varnish
age: 340897
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 2
x-timer: S1714864748.988918,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 40591
X-Firefox-Spdy: h2
|
|
| focus4ca.com/deportivo.js | 172.67.137.151 | 200 OK | 507 B |
URL GET HTTP/2focus4ca.com/deportivo.js IP172.67.137.151:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectfocus4ca.com FingerprintB9:F3:59:4C:7B:6E:EB:DC:65:ED:F0:DD:72:36:45:EE:3F:5A:9B:F8 ValidityWed, 20 Mar 2024 21:33:36 GMT - Tue, 18 Jun 2024 21:33:35 GMT
File typeASCII text, with very long lines (323) Hash398516f5fcf89bf0409b2443ada4ef0c 0026a5a53f4f74fac9688234a4f8b8b7dee890c0 74f51420c0000e6c00a28e3b391a73944b5a481809a42308022c9e07c6226e58
GET /deportivo.js HTTP/1.1
Host: focus4ca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: application/javascript
last-modified: Wed, 20 Mar 2024 22:19:58 GMT
vary: Accept-Encoding
etag: W/"65fb610e-4e2"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bgeu6gqhwc%2FZQJKrTjbO1dv%2BkF7q63gKJGkYSHO4UTdAhqY5gKS%2F7mmL2ueKuAtctVP1WJbOCvbA5mVYWHpDPYqKJU7Gn3AgV4u8R8G2B3PKgO3kk6f5%2Fpy6r%2B5Yqx0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c2ba4756af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 1.bp.blogspot.com/-nBy-9_9zQlA/Xf4vXMP6C0I/AAAAAAAABDk/j5lzykxSqicENwlQ5ok2a1Ni613FBBzAwCNcBGAsYHQ/s1600/espere.png | 142.250.74.97 | 200 OK | 14 kB |
URL GET HTTP/21.bp.blogspot.com/-nBy-9_9zQlA/Xf4vXMP6C0I/AAAAAAAABDk/j5lzykxSqicENwlQ5ok2a1Ni613FBBzAwCNcBGAsYHQ/s1600/espere.png IP142.250.74.97:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00 ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT
File typePNG image data, 620 x 350, 8-bit/color RGBA, non-interlaced Hash342ce67814eaf4e50d726e5781612daa 8f7423e962977edeba86b58cfc690eaca8c0874d adb5fe7feb85c0d3a1461ba74960acc3795fe7cd5c67a040f4906250740e25ed
GET /-nBy-9_9zQlA/Xf4vXMP6C0I/AAAAAAAABDk/j5lzykxSqicENwlQ5ok2a1Ni613FBBzAwCNcBGAsYHQ/s1600/espere.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="espere.png"
x-content-type-options: nosniff
server: fife
content-length: 13646
x-xss-protection: 0
date: Sat, 04 May 2024 21:21:51 GMT
expires: Sun, 05 May 2024 21:21:51 GMT
cache-control: public, max-age=86400, no-transform
age: 7037
etag: "v43b"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pl14330559.highcpmgate.com/ac/58/bb/ac58bbe800329453de3d4b2f28050b55.js | 172.240.108.76 | 200 OK | 31 kB |
URL GET HTTP/1.1pl14330559.highcpmgate.com/ac/58/bb/ac58bbe800329453de3d4b2f28050b55.js IP172.240.108.76:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjecthighcpmgate.com FingerprintE7:53:32:23:DA:D6:BE:EB:98:90:05:4B:AC:AC:8C:89:F2:4D:FB:2E ValidityFri, 19 Apr 2024 10:31:16 GMT - Thu, 18 Jul 2024 10:31:15 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash6e39e42cc5c86baa9c37b29a406fefcd a8134d6739c5919d71f1ccae07adebb1ae02a4e2 37d6667bc9e3e446da8189a9e456a37c275a99ca601931d2e6d50424a96bd205
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ac/58/bb/ac58bbe800329453de3d4b2f28050b55.js HTTP/1.1
Host: pl14330559.highcpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:19:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 74a4797c095e412da48393fd2efea3c6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| code.jquery.com/jquery-latest.js | 151.101.2.137 | 200 OK | 84 kB |
URL GET HTTP/2code.jquery.com/jquery-latest.js IP151.101.2.137:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash3d93b072d14f2bd1ede58f4847f537fd 73e5d044bd153dd912930e8be433059454ce19cd 3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc
GET /jquery-latest.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4508e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 20064130
x-served-by: cache-lga21958-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 757, 208209
x-timer: S1714864749.688899,VS0,VE0
vary: Accept-Encoding
content-length: 83875
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.11.0.min.js | 151.101.2.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.11.0.min.js IP151.101.2.137:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32341) Hash8fc25e27d42774aeae6edbc0a18b72aa b66ed708717bf0b4a005a4d0113af8843ef3b8ff b294e973896f8f874e90a8eb1a8908ac790980d034c4c4bdf0fc3d37b8abf682
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1787d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 19960954
x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 55245
x-timer: S1714864749.694374,VS0,VE0
vary: Accept-Encoding
content-length: 33357
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-migrate-1.2.1.min.js | 151.101.2.137 | 200 OK | 3.1 kB |
URL GET HTTP/2code.jquery.com/jquery-migrate-1.2.1.min.js IP151.101.2.137:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7085) Hasheb05d8d73b5b13d8d84308a4751ece96 743052320809514fb788fe1d3df37fc87ce90452 1e67d8dbcca1f6fd94e077c85c2fb40fa1c2756c99238daa8da882144260a68d
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-1c1f"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 19960954
x-served-by: cache-lga21931-LGA, cache-hel1410024-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 48113
x-timer: S1714864749.695208,VS0,VE0
vary: Accept-Encoding
content-length: 3063
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js | 151.101.65.229 | 200 OK | 1.2 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (3097), with no line terminators Hash7d05b4c5566462b564acc78569c8ee5a 48b8edb405bc75c0e30038ba2754f685b8689167 a8eb7e24873bb65c9b7193534bda15761d8853b24ca4a41d7749360972504141
GET /npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.8.10
x-jsd-version-type: version
etag: W/"c19-SLjttAW8dcDjADi6J1T2hbhokWc"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 32444
x-served-by: cache-fra-etou8220118-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1198
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js | 151.101.65.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (30387) Hash1b142ebaf5f868c4c11a73ffe9175afb aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9 df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@latest/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 21231
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10804
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=television.libre.futbol&_ss=2qxjzeizk2&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1n52&_cb=_dtspv.c | 141.101.120.10 | 200 OK | 169 kB |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=television.libre.futbol&_ss=2qxjzeizk2&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1n52&_cb=_dtspv.c IP141.101.120.10:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Size169 kB (168989 bytes) Hash3935ff56c32a8da542f513697bc80084 71644d92da98922fe79b863fc52f9142a44f12d0 67adf8dcc00455484a487885576c290294e18189d1eb42d260af362ccbb414d2
GET /pv/?_a=v&_h=television.libre.futbol&_ss=2qxjzeizk2&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1n52&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Cookie: m=1; oa=1; df=1714864747
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: application/javascript
x-t: 0.143
x-c: 0
expires: Sat, 04 May 2024 23:19:07 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=evVl1r7QXX%2BzdUcuzf0OGRtilNPhv9hcW09Mo%2BA0NY%2F7X55OglP30nRc4FLvAtE1ELRa7Soxv1TznQ5bEriGpdHlcV8SbzXziQ3IOrv7g%2FTm5c9muUJw495uuSupalA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c309a04c86-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js | 142.250.74.10 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.2.0/jquery.min.js IP142.250.74.10:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32033) Hashd4162c9d7e520a5de05001be6e741899 0baf29230047c9cd896f14c59618c9948ea79451 2405bdf4c255a4904671bcc4b97938033d39b3f5f20dd068985a8d94cde273e2
GET /ajax/libs/jquery/3.2.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30281
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:44:07 GMT
expires: Fri, 02 May 2025 02:44:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 246901
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js | 151.101.65.229 | 200 OK | 58 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb918a2715e5090b0d6dbd00c85377b4e 39aeed3c73b34661b4085afcd2321e2141bbcc9e 40e0be1f17c323e84cd387c13e3191628992bc687e2046bca724ba609b92cb0b
GET /npm/swarmcloud-hls@latest/dist/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.9.16
x-jsd-version-type: version
etag: W/"2d729-Oa7tPHOzRmG0CFr80jIeIUG7zJ4"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 31724
x-served-by: cache-fra-eddf8230112-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 58381
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/suv5.js | 104.21.11.26 | 200 OK | 26 kB |
URL GET HTTP/3acscdn.com/script/suv5.js IP104.21.11.26:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators Hash9d6eb2890d21b253ae6805e887bc3e7d 445a76360b55b73e5be624029c6a152f859532ba 46bca0d03531443972441e135afb00e7fd35bc74d0f466efe2dd782071a2d9e0
GET /script/suv5.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: text/javascript
x-goog-generation: 1714390003317461
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 74331
x-goog-hash: crc32c=uRKYDw==, md5=nW6yiQ0hslOuaAXoh7w+fQ==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPoyHy5IgIuP3Mx7d8xlbGr4Ztbdj_zWMql0Ug3V060iSEYvlT2mT6rwqBt-gh0jlGuekBpqa_BYKw
expires: Sat, 04 May 2024 22:58:39 GMT
cache-control: public, max-age=3600
age: 2204
last-modified: Mon, 29 Apr 2024 11:26:43 GMT
etag: W/"9d6eb2890d21b253ae6805e887bc3e7d"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BqbQYybIcRCJAPt%2BufYDJivTCet3RDiDVTcBu79hVQIo1v6UeYiBv2CzqldHgat3h5aIpmuorzmkPr6tvaRXcwgmsuHLEGdyU1GsDHxEfYr0Fvt2p2vXvGC01kW2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c8aeabb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| acscdn.com/script/ut.js?cb=1714864748718 | 104.21.11.26 | 200 OK | 23 kB |
URL GET HTTP/3acscdn.com/script/ut.js?cb=1714864748718 IP104.21.11.26:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (62938), with no line terminators Hashbc481e345c04b4534e0a4e54a0f2c1c6 2be428035dd37b2722891c200f35449c5893df33 04d8cc0aacc3f172f638e608d3f08e8457d849290ae553090cb951d4b3f1b97b
GET /script/ut.js?cb=1714864748718 HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPq4rLQfUzIb4PXABJF3kaL6QpNC2eEDt1dZIA_AICzJwRtEzQkHmfGBvBjJTgyllcLoFfCchk7ypw
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 04 May 2024 23:27:44 GMT
cache-control: public, max-age=3600
age: 2315
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pPke%2BqJzP4Az96y%2FYWxJ2jlc80PMB8JDiWDmEHwyMXq1U2ciSJGdVDPeyyJ9ljVIU%2BigWaDvn04sOmCKOQ0pYvKcHXdTjCSAVYaXCd8vH8Mu0hfIRIpP1EBPS3Mk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c8aea0b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashb47201fbb719dcdf2cdad316015c483a 6847dde6e05f2c3a92f1c32a6ddcac382ca56d33 452fd7f4e46bf3d3d1a817da621ddcae08b277abcc51bad6460c91dab3d97ecb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://micanaldeportivo.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; expires=Tue, 02 May 2034 23:19:09 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| inconveniencemimic.com/pixel/purst?dl=0&th=0&sc=0&rs=1326&rd=1326&fd=800&bv=24.5.6485&tmpl=70 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1inconveniencemimic.com/pixel/purst?dl=0&th=0&sc=0&rs=1326&rd=1326&fd=800&bv=24.5.6485&tmpl=70 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectinconveniencemimic.com FingerprintAF:84:31:F6:C9:08:AA:86:11:4D:BF:62:E5:2A:DB:57:5B:6E:E2:36 ValidityMon, 29 Apr 2024 08:23:14 GMT - Sun, 28 Jul 2024 08:23:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=1326&rd=1326&fd=800&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: inconveniencemimic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| focus4ca.com/z-8209246 | 172.67.137.151 | 200 OK | 162 kB |
IP172.67.137.151:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectfocus4ca.com FingerprintB9:F3:59:4C:7B:6E:EB:DC:65:ED:F0:DD:72:36:45:EE:3F:5A:9B:F8 ValidityWed, 20 Mar 2024 21:33:36 GMT - Tue, 18 Jun 2024 21:33:35 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (40958), with NEL line terminators Size162 kB (161597 bytes) Hash0eee8036798d95ebb4456ba053ddc7b3 f6cc243fdb9a4552edb2a84c29b18fb37ccba7cf 11009df9b86d1b1377c5c0f4ab1d8d36e9dee7174b9a3cd44e3c7d415ece152f
GET /z-8209246 HTTP/1.1
Host: focus4ca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/octet-stream
content-length: 161597
last-modified: Sat, 04 May 2024 23:01:04 GMT
etag: "6636be30-2773d"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lspBNMPMRA6YLFMFbOLDV2IYZQ5EIKUNfm6HWDT40YyRfoNZGpnDL6m1H2Apoh69bRz1Ls%2FWBlQvONUciixnauyVWNqB6S4sxSjIJDlV%2F5VQh7pTXujIPR61biYlWoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c88b2a56bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| youradexchange.com/script/suurl5.php?r=4681243&cbur=0.6765420309842577&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749040&srs=fb646c3546f61e42b768de1f250e5cf2&atv=48.1 | 172.67.177.214 | 200 OK | 1.3 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=4681243&cbur=0.6765420309842577&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749040&srs=fb646c3546f61e42b768de1f250e5cf2&atv=48.1 IP172.67.177.214:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
Hashcb81f8e279aef9d22804af7dfb110b5a adceab552a628bebdad6d01dc5747751e9e6b482 31c1cde2fab504e9f418456611d7e23d87a7c47258cb7caed297f6c2cd6d29a2
GET /script/suurl5.php?r=4681243&cbur=0.6765420309842577&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749040&srs=fb646c3546f61e42b768de1f250e5cf2&atv=48.1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://micanaldeportivo.com/
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RzVd3Ot4HREG7cJncW5tWupXk7aygwc51tHg5QnWp2Oa9zvQS%2F7Z41y1CQUhXJEUYFa8kOrKRQxjacM1J0s4M5X1UCMSLp1PXikvu5lZJOPVG0X4%2FmbwNXPuS9lkQKdYUCo1JH8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c9c83d568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| inconveniencemimic.com/33/a3/af/33a3af0c29be07a2460f507fcc8304c1.js | 192.243.61.227 | 200 OK | 16 kB |
URL GET HTTP/1.1inconveniencemimic.com/33/a3/af/33a3af0c29be07a2460f507fcc8304c1.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectinconveniencemimic.com FingerprintAF:84:31:F6:C9:08:AA:86:11:4D:BF:62:E5:2A:DB:57:5B:6E:E2:36 ValidityMon, 29 Apr 2024 08:23:14 GMT - Sun, 28 Jul 2024 08:23:13 GMT
File typeJavaScript source, ASCII text, with very long lines (44053), with no line terminators Hash7310834d27038c2af2f8003cd27b809f c734373c252854d0343d9e3c1236533ee4e3b701 ef597e3f2f4a99b08f52d5650938601189042424edec5a857e835d402c720f4c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /33/a3/af/33a3af0c29be07a2460f507fcc8304c1.js HTTP/1.1
Host: inconveniencemimic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=0; expires=Wed, 08 May 2024 02:19:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b682a7b66312efe55f6a173760677915
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf | 151.101.65.229 | 200 OK | 20 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeTrueType Font data, 18 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, RobotoRegularVersion 2.001101; 2014Roboto-Regularhttp://www.apache.org/licenses/LICENSE-2.0 Hash38861cba61c66739c1452c3a71e39852 4b1ef58e476b789c97521834abdf7a2fd66d6caf 967e5cecfbfbf64099c3c1232273482dd7436f05714266953c4d2c8ee9c28af5
GET /npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19464
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/ttf
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"7f8c-Sx71jkdreJyXUhg0q996L9ZtbK8"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:09 GMT
age: 32325
x-served-by: cache-fra-eddf8230027-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashb47201fbb719dcdf2cdad316015c483a 6847dde6e05f2c3a92f1c32a6ddcac382ca56d33 452fd7f4e46bf3d3d1a817da621ddcae08b277abcc51bad6460c91dab3d97ecb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://micanaldeportivo.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.76:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a63ee516b99e37e6cb8ba1a5fcaa852b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 | 172.67.137.151 | 200 OK | 0 B |
URL GET HTTP/3focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 IP172.67.137.151:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectfocus4ca.com FingerprintB9:F3:59:4C:7B:6E:EB:DC:65:ED:F0:DD:72:36:45:EE:3F:5A:9B:F8 ValidityWed, 20 Mar 2024 21:33:36 GMT - Tue, 18 Jun 2024 21:33:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /deportivo.php?player=desktop&live=mlspasshd2 HTTP/1.1
Host: focus4ca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/5.6.40
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iyaUHpu2rB4IyQDiflV4S%2FN3Alp4wFF1%2B%2BA58B5EptFRokGr0CQBEEJVCiDzXcd1OtzIvCdQQ0PpR0Gc1%2FvvTev6fzOy0Mugda4UNYMKX1xdF7q9Z%2BFMp9CL1aWh9xo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36cbccd356bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| n4.dramaticreadings.com:999/hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 | 185.190.25.23 | 200 OK | 756 B |
URL GET HTTP/1.1n4.dramaticreadings.com:999/hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 IP185.190.25.23:999
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectn4.dramaticreadings.com Fingerprint01:FB:84:C7:27:9E:2C:77:C7:2A:D9:7A:23:E5:F0:7B:C0:A1:3C:6E ValidityTue, 16 Apr 2024 10:08:43 GMT - Mon, 15 Jul 2024 10:08:42 GMT
Hashb3aefe03cde011e7942dd5da376ad0a5 73698214c1f0b7232b9b27ed076ebad8623fef7d 1721e8393178d05d9a00dc30584a880741d53c9255e9db695a8dd99dd291246d
GET /hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 HTTP/1.1
Host: n4.dramaticreadings.com:999
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 756
Last-Modified: Sat, 04 May 2024 23:19:07 GMT
Connection: keep-alive
ETag: "6636c26b-2f4"
Expires: Sat, 04 May 2024 23:19:08 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Accept-Ranges: bytes
|
|
| n4.dramaticreadings.com:999/hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 | 185.190.25.23 | 200 OK | 756 B |
URL GET HTTP/1.1n4.dramaticreadings.com:999/hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 IP185.190.25.23:999
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectn4.dramaticreadings.com Fingerprint01:FB:84:C7:27:9E:2C:77:C7:2A:D9:7A:23:E5:F0:7B:C0:A1:3C:6E ValidityTue, 16 Apr 2024 10:08:43 GMT - Mon, 15 Jul 2024 10:08:42 GMT
Hashb3aefe03cde011e7942dd5da376ad0a5 73698214c1f0b7232b9b27ed076ebad8623fef7d 1721e8393178d05d9a00dc30584a880741d53c9255e9db695a8dd99dd291246d
GET /hls/mlspasshd2.m3u8?md5=I9tsCxHiN4Bvs2a3vHIJ6g&expires=1714871945 HTTP/1.1
Host: n4.dramaticreadings.com:999
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: application/vnd.apple.mpegurl
Content-Length: 756
Last-Modified: Sat, 04 May 2024 23:19:07 GMT
Connection: keep-alive
ETag: "6636c26b-2f4"
Expires: Sat, 04 May 2024 23:19:08 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Accept-Ranges: bytes
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashb47201fbb719dcdf2cdad316015c483a 6847dde6e05f2c3a92f1c32a6ddcac382ca56d33 452fd7f4e46bf3d3d1a817da621ddcae08b277abcc51bad6460c91dab3d97ecb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://micanaldeportivo.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| television.libre.futbol/cdn-cgi/rum? | 172.67.174.131 | 204 No Content | 0 B |
URL POST HTTP/3television.libre.futbol/cdn-cgi/rum? IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
content-type: application/json
Content-Length: 1138
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Cookie: _ga_VTQ9GZ3587=GS1.1.1714864747.1.0.1714864747.0.0.0; _ga=GA1.1.675209497.1714864748; cf_clearance=FP5jBJ5wrvzEAaEYT8VQW.j0Sz_5kKQCRRhf16gxH58-1714864747-1.0.1.1-jL9j9M437zDEbyIXJup8h4zqemJTjcQAVmrv4X5M7cC.IS49SJjOtU_2iQaBJmCXhs4gFoaWnkGV.PJdsMnMKA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sat, 04 May 2024 23:19:09 GMT
access-control-allow-origin: https://television.libre.futbol
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87ec36cd3fdab529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| proftrafficcounter.com/stats | 18.185.9.67 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.9.67:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashb47201fbb719dcdf2cdad316015c483a 6847dde6e05f2c3a92f1c32a6ddcac382ca56d33 452fd7f4e46bf3d3d1a817da621ddcae08b277abcc51bad6460c91dab3d97ecb
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://micanaldeportivo.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=micanaldeportivo.com&_ss=1bs7cxatzd&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=77r9&_cb=_dtspv.c | 141.101.120.10 | 200 OK | 749 kB |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=micanaldeportivo.com&_ss=1bs7cxatzd&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=77r9&_cb=_dtspv.c IP141.101.120.10:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Size749 kB (749422 bytes) Hash9220fa19131e6ea1c3878f850fa1c7e4 2d951afa07a4bbfeb00a19db6aa9cd476a087e4c 657fc88b16a17f138cd62256c74f0370cdc27bd5b6278cda1136aa4c44852712
GET /pv/?_a=v&_h=micanaldeportivo.com&_ss=1bs7cxatzd&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=77r9&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: m=2; oa=2; df=1714864747
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/javascript
x-t: 0.149
x-c: 0
expires: Sat, 04 May 2024 23:19:08 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LaQho3McDXOZDMh5bFJHh759sVjjILKX0FjvF7rMSg3nGwDGtsTj19DnmHs9Ru1zfjefbYdD%2Bvf1F%2F79%2FBl5bCXejedEkR7eNxFCKKBJXmqtvrAfPIdXTuX4zXGyr8E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36cb7eee4c86-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho | 51.77.64.70 | 200 OK | 159 B |
URL GET HTTP/1.1pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho IP51.77.64.70:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerSectigo Limited Subject*.ip-api.com FingerprintF0:28:4B:02:B3:57:5A:73:21:4F:42:DF:04:2D:19:39:F8:5F:3D:3A ValidityThu, 21 Dec 2023 00:00:00 GMT - Mon, 20 Jan 2025 23:59:59 GMT
Hash3ece15e5de26f6b9bf50916f24e2ac38 67331553fde865e657b8ec826e9a5b2793891ac5 c1be72c715f304ff8489ee2381da4169b5358bebd51f89326b9e6b46de511eaf
GET /json?fields=2181826&key=XOpiansRgYxGTho HTTP/1.1
Host: pro.ip-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Length: 159
|
|
| n4.dramaticreadings.com:999/hls/mlspasshd2-1666.ts | 185.190.25.23 | 200 OK | 157 B |
URL GET HTTP/1.1n4.dramaticreadings.com:999/hls/mlspasshd2-1666.ts IP185.190.25.23:999
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectn4.dramaticreadings.com Fingerprint01:FB:84:C7:27:9E:2C:77:C7:2A:D9:7A:23:E5:F0:7B:C0:A1:3C:6E ValidityTue, 16 Apr 2024 10:08:43 GMT - Mon, 15 Jul 2024 10:08:42 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash9a195a70e70e9d54a539462cab45087b bee155a3e187603fe3bf676b3148d217de78daf0 a57d68810785990f171ed207811b7bd359248759135e43b2bde3020d235254d1
OPTIONS /hls/mlspasshd2-1666.ts HTTP/1.1
Host: n4.dramaticreadings.com:999
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: range
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 405 Not Allowed
Server: nginx/1.16.1
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: text/html
Content-Length: 157
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| hekwfdoxcvxe.com/ | 139.45.197.160 | 200 OK | 0 B |
IP139.45.197.160:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjecthekwfdoxcvxe.com Fingerprint0C:CC:A0:A8:BE:36:5C:BC:BC:4A:1A:B2:7B:91:FE:C1:3C:46:BB:5A ValidityFri, 03 May 2024 10:51:42 GMT - Thu, 01 Aug 2024 10:51:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: hekwfdoxcvxe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: HEAD
Access-Control-Request-Headers: content-type
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://focus4ca.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| n4.dramaticreadings.com:999/hls/mlspasshd2-1667.ts | 185.190.25.23 | 200 OK | 800 kB |
URL GET HTTP/1.1n4.dramaticreadings.com:999/hls/mlspasshd2-1667.ts IP185.190.25.23:999
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectn4.dramaticreadings.com Fingerprint01:FB:84:C7:27:9E:2C:77:C7:2A:D9:7A:23:E5:F0:7B:C0:A1:3C:6E ValidityTue, 16 Apr 2024 10:08:43 GMT - Mon, 15 Jul 2024 10:08:42 GMT
File typeMPEG transport stream data Size800 kB (800316 bytes) Hash5f583f1fa3a9c5efc1cfbc080acee10e d38f92f589b14b4a4aac9f144b71b18a59b9a982 fbae48bebcd8bbf59799a0c13e200976116b8639d5c41be137ac1dd06a3281d3
GET /hls/mlspasshd2-1667.ts HTTP/1.1
Host: n4.dramaticreadings.com:999
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sat, 04 May 2024 23:19:09 GMT
Content-Type: application/octet-stream
Content-Length: 800316
Last-Modified: Sat, 04 May 2024 23:18:35 GMT
Connection: keep-alive
ETag: "6636c24b-c363c"
Expires: Sat, 04 May 2024 23:19:08 GMT
Cache-Control: no-cache, no-cache
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
|
|
| hekwfdoxcvxe.com/ | 139.45.197.160 | 200 OK | 0 B |
IP139.45.197.160:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjecthekwfdoxcvxe.com Fingerprint0C:CC:A0:A8:BE:36:5C:BC:BC:4A:1A:B2:7B:91:FE:C1:3C:46:BB:5A ValidityFri, 03 May 2024 10:51:42 GMT - Thu, 01 Aug 2024 10:51:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: hekwfdoxcvxe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: text/html
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 23:19:10 GMT
content-type: text/html
x-trace-id: 014eff43723e0adfc9d34cd089ef7516
vary: Accept-Encoding, Origin
access-control-allow-origin: https://focus4ca.com
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
x-application-key: inub6kecXy1yElb9fk0injsg
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
|
|
| eu.web3-lab.com:8443/v1/channel | 172.67.135.187 | 200 OK | 3.7 kB |
URL POST HTTP/2eu.web3-lab.com:8443/v1/channel IP172.67.135.187:8443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectweb3-lab.com FingerprintC3:CC:DE:A3:32:AC:C0:73:99:89:3F:FE:99:F9:50:48:E3:5F:42:84 ValidityWed, 20 Mar 2024 15:11:28 GMT - Tue, 18 Jun 2024 15:11:27 GMT
Hash292cf5c9bc83e3c23834caf7ead6c78c c050e8687c7c856f93d5783e822c3dd444e942ca 0052e70dee500e024e0dcc898541b2b11b2f9ef954b36b2bfa7d414f44647839
POST /v1/channel HTTP/1.1
Host: eu.web3-lab.com:8443
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://focus4ca.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 380
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:10 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CQqttHwlwrjaezqQkalImCBKJ9hmTR2ynGjaoN1SinIUYMd6GVn9KBTHmibolspO4wLTo4TggeWGTxOmPBIMggcunBwcmmV6fx%2F%2FlUVsGmSV%2BTJvsxsbEu3J3sipwnhhkMbtI5n%2Fgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36cf595e7129-OSL
content-encoding: br
alt-svc: h3=":8443"; ma=86400
X-Firefox-Spdy: h2
|
|
| threeinvincible.com/sbar.json?key=33a3af0c29be07a2460f507fcc8304c1&psid=CF-3448_0&uuid=87a8ed74-339b-488c-bfa0-8b0de594003c%3A2%3A1 | 192.243.59.20 | 200 OK | 7.9 kB |
URL GET HTTP/1.1threeinvincible.com/sbar.json?key=33a3af0c29be07a2460f507fcc8304c1&psid=CF-3448_0&uuid=87a8ed74-339b-488c-bfa0-8b0de594003c%3A2%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd49e242ef04e400647e742d4a98da5a4 cb821b1f28b6e90458f0a30d0edd0e13b03acf9d 13e3b516439c1323760dd93e5797dbc39918706cdbb1f1d218d861b5b03f2483
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=33a3af0c29be07a2460f507fcc8304c1&psid=CF-3448_0&uuid=87a8ed74-339b-488c-bfa0-8b0de594003c%3A2%3A1 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:10 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://micanaldeportivo.com
Access-Control-Allow-Origin: https://micanaldeportivo.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15497083; expires=Sun, 05 May 2024 23:19:10 GMT; secure; SameSite=None
uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; expires=Sat, 11 May 2024 23:19:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 23:19:10 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 23:19:10 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 05 May 2024 23:19:10 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 05 May 2024 23:19:10 GMT; secure; SameSite=None
slec33a3af0c29be07a2460f507fcc8304c1=[5210995]; expires=Sat, 04 May 2024 23:19:15 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: be6368f425cf93bc87b22d84cc617f3b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| unseenreport.com/pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=33a3af0c29be07a2460f507fcc8304c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=33a3af0c29be07a2460f507fcc8304c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=33a3af0c29be07a2460f507fcc8304c1&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:10 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c269d713cfe64e68b1a31e3fada263d2
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| itvhdsport.peerhub.net:2096/?id=107fpNsPnYIR&p=web&v=2.9.16 | 172.67.160.39 | | 0 B |
URL itvhdsport.peerhub.net:2096/?id=107fpNsPnYIR&p=web&v=2.9.16 IP172.67.160.39:0
CertificateIssuerLet's Encrypt Subjectn4.dramaticreadings.com Fingerprint01:FB:84:C7:27:9E:2C:77:C7:2A:D9:7A:23:E5:F0:7B:C0:A1:3C:6E ValidityTue, 16 Apr 2024 10:08:43 GMT - Mon, 15 Jul 2024 10:08:42 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=107fpNsPnYIR&p=web&v=2.9.16 HTTP/1.1
Host: itvhdsport.peerhub.net:2096
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://focus4ca.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pY0Zylc+ZP4PxHL5FdDkiQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 04 May 2024 23:19:10 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tvPAQt6YbiTjPVkniIWsWd64Nq0=
uWebSockets: 20
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HQangcnZv025NrkzhmP6qOsQ0y9DPFo4dzG8y9ASBrnmMtsEsbFTLEuRI%2FAiunMxcNzh27quX4%2BkG1Ort2%2FSsb1S1z22nxlnyV5LXxpGuk8ahqxwMCoP546jTu7fVg0cN7QjslVX3P9WTpnctAw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87ec36d1af70b51b-OSL
alt-svc: h3=":2096"; ma=86400
|
|
| unseenreport.com/pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=ac58bbe800329453de3d4b2f28050b55&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=ac58bbe800329453de3d4b2f28050b55&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=87a8ed74-339b-488c-bfa0-8b0de594003c&eb=45a089584ad8b09819d75dc6bb9c1bdf&te=7b9c6871c64c0dd6bcb9b452885243b8&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=1&pk=ac58bbe800329453de3d4b2f28050b55&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=23 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:10 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c3eb8d0e70472bd3d006524467086d46
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| threeinvincible.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitHiMePIi6N1Hm4GGFzaR7ejI%2F7mExmx0JGzfLrqLgwlJdVT0pU93VVHVPTyJIMCB7c%2FCy186bZMP%2B4M%2FFm6t0FjwEhIynIAY8CB68yeYsM4YNfpfve9%2F7Gl6%2FV19sZ8ekjoweLb6nN6RSdG6%2B5lbPf%2BR5F6vLMs4G1UG7ebvZuFg1%2Fbc7zZr7VvVdwdb0XN31XNdzvWpXGhHqwdyEhEwedbxax6016jVvvoGB%2BT%2B2mQNLHfD%2BMXkFko9nnjjnIFmJOPp2Udi1VCcXrkSZoqk26PO9D%2BK1WOcxorMxNA7CeO%2F0Gtoedh9Dx7tTudD9Z4eBHBPn58cI4r1TkQj6O1OdgYKIEfAXkfdLCFVC0hJMb0HyQwIwjmsriKN717TJ6fp%2FLJ2wYzJz8g9kPiYzv59DHH29oOSgelOrLJU6thiEBeSghOyVSLJ9pBsVyHwfLP0ckv9C5k6WEUc7K1ZpSH70ZrtF24K3GrO%2B3wlmG%2B02mw1C6s62A5eL%2BU7DdX02NUjKEjIsocQQ1FaQWQeZdJCFDrLEQcSPqszzvJbLGXXbHcZ83hJBk7sebYUe9dxmGxmb%2FMMQaTIEU0Mws4nEbGJNDmGyn2BXC1juwKYEfV4gFwS5JcgpQS4J8pQg7xe7XNm6Le5xZbPAO%2B310%2B4XI532tumuTnsiJqBmCMOL7eSYvDw18O%2F8U6yJo6rvU5%2BGLqt3AuG2aL3RdMN5txUy1vbdBvNg5f3L3Vm%2F0WjfdiFtBdQ62Jik%2BkYXiRwT8vR7BHQfVu2DyVdBs9dB8wJ0tcBG%2FNBqpftC15iOwHWBJJ1Buu5sq2Py2lTJypaFYAeX%2FvjmsxfUbwdgpkBiCnwinxD01J3RDZ2TnRs6t%2BS7lSSVkdygk5hvpjQVzz%2B4KtZzbfjSoh3ef4dNiMn46H1h02Uacxn3LHm4IDkXpqsNE%2BSHJfuhCK5ndnUhM3GWLF%2B%2F3F2KEiOslTouQeXhlbtgckxe%2BvHW9P1e%2BPhPSFPCZAWi7ICcFqTeB0s2YZOzndUERp3hIHGQZ8XI1IOzpZIESpxhGhSw4uDSX0%2FLL2%2BdP0EgntkxMnTyNZXFtr2DnqmApluIowJ9U6CvClA1hM2eG6WJObj0qz8tBKoyCpSp7ATKqK%2BmJo%2FJ1bsPYOVRteX7Lm125r1Wi4pW0Ki3w6bH6ST8erNJfaR2HDbL%2BF8AAAD%2F%2FwEAAP%2F%2FlgrQOpkEAAA%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1threeinvincible.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitHiMePIi6N1Hm4GGFzaR7ejI%2F7mExmx0JGzfLrqLgwlJdVT0pU93VVHVPTyJIMCB7c%2FCy186bZMP%2B4M%2FFm6t0FjwEhIynIAY8CB68yeYsM4YNfpfve9%2F7Gl6%2FV19sZ8ekjoweLb6nN6RSdG6%2B5lbPf%2BR5F6vLMs4G1UG7ebvZuFg1%2Fbc7zZr7VvVdwdb0XN31XNdzvWpXGhHqwdyEhEwedbxax6016jVvvoGB%2BT%2B2mQNLHfD%2BMXkFko9nnjjnIFmJOPp2Udi1VCcXrkSZoqk26PO9D%2BK1WOcxorMxNA7CeO%2F0Gtoedh9Dx7tTudD9Z4eBHBPn58cI4r1TkQj6O1OdgYKIEfAXkfdLCFVC0hJMb0HyQwIwjmsriKN717TJ6fp%2FLJ2wYzJz8g9kPiYzv59DHH29oOSgelOrLJU6thiEBeSghOyVSLJ9pBsVyHwfLP0ckv9C5k6WEUc7K1ZpSH70ZrtF24K3GrO%2B3wlmG%2B02mw1C6s62A5eL%2BU7DdX02NUjKEjIsocQQ1FaQWQeZdJCFDrLEQcSPqszzvJbLGXXbHcZ83hJBk7sebYUe9dxmGxmb%2FMMQaTIEU0Mws4nEbGJNDmGyn2BXC1juwKYEfV4gFwS5JcgpQS4J8pQg7xe7XNm6Le5xZbPAO%2B310%2B4XI532tumuTnsiJqBmCMOL7eSYvDw18O%2F8U6yJo6rvU5%2BGLqt3AuG2aL3RdMN5txUy1vbdBvNg5f3L3Vm%2F0WjfdiFtBdQ62Jik%2BkYXiRwT8vR7BHQfVu2DyVdBs9dB8wJ0tcBG%2FNBqpftC15iOwHWBJJ1Buu5sq2Py2lTJypaFYAeX%2FvjmsxfUbwdgpkBiCnwinxD01J3RDZ2TnRs6t%2BS7lSSVkdygk5hvpjQVzz%2B4KtZzbfjSoh3ef4dNiMn46H1h02Uacxn3LHm4IDkXpqsNE%2BSHJfuhCK5ndnUhM3GWLF%2B%2F3F2KEiOslTouQeXhlbtgckxe%2BvHW9P1e%2BPhPSFPCZAWi7ICcFqTeB0s2YZOzndUERp3hIHGQZ8XI1IOzpZIESpxhGhSw4uDSX0%2FLL2%2BdP0EgntkxMnTyNZXFtr2DnqmApluIowJ9U6CvClA1hM2eG6WJObj0qz8tBKoyCpSp7ATKqK%2BmJo%2FJ1bsPYOVRteX7Lm125r1Wi4pW0Ki3w6bH6ST8erNJfaR2HDbL%2BF8AAAD%2F%2FwEAAP%2F%2FlgrQOpkEAAA%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRitHiMePIi6N1Hm4GGFzaR7ejI%2F7mExmx0JGzfLrqLgwlJdVT0pU93VVHVPTyJIMCB7c%2FCy186bZMP%2B4M%2FFm6t0FjwEhIynIAY8CB68yeYsM4YNfpfve9%2F7Gl6%2FV19sZ8ekjoweLb6nN6RSdG6%2B5lbPf%2BR5F6vLMs4G1UG7ebvZuFg1%2Fbc7zZr7VvVdwdb0XN31XNdzvWpXGhHqwdyEhEwedbxax6016jVvvoGB%2BT%2B2mQNLHfD%2BMXkFko9nnjjnIFmJOPp2Udi1VCcXrkSZoqk26PO9D%2BK1WOcxorMxNA7CeO%2F0Gtoedh9Dx7tTudD9Z4eBHBPn58cI4r1TkQj6O1OdgYKIEfAXkfdLCFVC0hJMb0HyQwIwjmsriKN717TJ6fp%2FLJ2wYzJz8g9kPiYzv59DHH29oOSgelOrLJU6thiEBeSghOyVSLJ9pBsVyHwfLP0ckv9C5k6WEUc7K1ZpSH70ZrtF24K3GrO%2B3wlmG%2B02mw1C6s62A5eL%2BU7DdX02NUjKEjIsocQQ1FaQWQeZdJCFDrLEQcSPqszzvJbLGXXbHcZ83hJBk7sebYUe9dxmGxmb%2FMMQaTIEU0Mws4nEbGJNDmGyn2BXC1juwKYEfV4gFwS5JcgpQS4J8pQg7xe7XNm6Le5xZbPAO%2B310%2B4XI532tumuTnsiJqBmCMOL7eSYvDw18O%2F8U6yJo6rvU5%2BGLqt3AuG2aL3RdMN5txUy1vbdBvNg5f3L3Vm%2F0WjfdiFtBdQ62Jik%2BkYXiRwT8vR7BHQfVu2DyVdBs9dB8wJ0tcBG%2FNBqpftC15iOwHWBJJ1Buu5sq2Py2lTJypaFYAeX%2FvjmsxfUbwdgpkBiCnwinxD01J3RDZ2TnRs6t%2BS7lSSVkdygk5hvpjQVzz%2B4KtZzbfjSoh3ef4dNiMn46H1h02Uacxn3LHm4IDkXpqsNE%2BSHJfuhCK5ndnUhM3GWLF%2B%2F3F2KEiOslTouQeXhlbtgckxe%2BvHW9P1e%2BPhPSFPCZAWi7ICcFqTeB0s2YZOzndUERp3hIHGQZ8XI1IOzpZIESpxhGhSw4uDSX0%2FLL2%2BdP0EgntkxMnTyNZXFtr2DnqmApluIowJ9U6CvClA1hM2eG6WJObj0qz8tBKoyCpSp7ATKqK%2BmJo%2FJ1bsPYOVRteX7Lm125r1Wi4pW0Ki3w6bH6ST8erNJfaR2HDbL%2BF8AAAD%2F%2FwEAAP%2F%2FlgrQOpkEAAA%3D HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:10 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3d473022e4077e612c99cbaa505997da
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| my.rtmark.net/gid.js?userId=008052279af94dcae517a4b707b84e4b | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=008052279af94dcae517a4b707b84e4b IP139.45.195.8:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hash98d2df9f3de329715b27826d0725eb18 196341c2a920f3273dedaca973823071c8cae61c c2160f386287ec3226a9cf119d14fcaf80d1581fd9feccde7968b2a606690195
GET /gid.js?userId=008052279af94dcae517a4b707b84e4b HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 23:19:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://focus4ca.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=008052279af94dcae517a4b707b84e4b; expires=Sun, 04 May 2025 23:19:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| eu.web3-lab.com:8443/v1/channel/JTJGJTJGbjQuZHJhbWF0aWNyZWFkaW5ncy5jb20lM0E5OTklMkZobHMlMkZtbHNwYXNzaGQyJTdDJTVCOCU1RA==/node/107fpNsPnYIR/stats | 172.67.135.187 | 200 OK | 0 B |
URL POST HTTP/3eu.web3-lab.com:8443/v1/channel/JTJGJTJGbjQuZHJhbWF0aWNyZWFkaW5ncy5jb20lM0E5OTklMkZobHMlMkZtbHNwYXNzaGQyJTdDJTVCOCU1RA==/node/107fpNsPnYIR/stats IP172.67.135.187:8443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectweb3-lab.com FingerprintC3:CC:DE:A3:32:AC:C0:73:99:89:3F:FE:99:F9:50:48:E3:5F:42:84 ValidityWed, 20 Mar 2024 15:11:28 GMT - Tue, 18 Jun 2024 15:11:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/channel/JTJGJTJGbjQuZHJhbWF0aWNyZWFkaW5ncy5jb20lM0E5OTklMkZobHMlMkZtbHNwYXNzaGQyJTdDJTVCOCU1RA==/node/107fpNsPnYIR/stats HTTP/1.1
Host: eu.web3-lab.com:8443
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 80
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:10 GMT
content-length: 0
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OKcLzzEKN259nEfQMp9VE0aFCjNS1t9FD6MOlSAOroWNlxLmHSIGIgZqNz3hlB4mq0iYSBXb5NtP42heUxK%2BeL4b2uVA0g%2FaqxLiEe4cb8%2BX93miA7DLG1kofeq0IeaymPSQB%2BBgDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36d5494a568e-OSL
alt-svc: h3=":8443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf | 151.101.65.229 | 200 OK | 20 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeTrueType Font data, 18 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, RobotoRegularVersion 2.001101; 2014Roboto-Regularhttp://www.apache.org/licenses/LICENSE-2.0 Hash38861cba61c66739c1452c3a71e39852 4b1ef58e476b789c97521834abdf7a2fd66d6caf 967e5cecfbfbf64099c3c1232273482dd7436f05714266953c4d2c8ee9c28af5
GET /npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 19464
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/ttf
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"7f8c-Sx71jkdreJyXUhg0q996L9ZtbK8"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:10 GMT
age: 32327
x-served-by: cache-fra-eddf8230027-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=676 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=676 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=676 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html | 172.67.74.218 | 200 OK | 207 kB |
URL GET HTTP/2cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html IP172.67.74.218:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49 ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Size207 kB (206771 bytes) Hash988cd00695890a395de736ef1f43180a fc35045adb5a0bb89e9150574db517cffb44b0c9 100f83963832c14a85c4d7095f0279b0962b83ee6323481ece9b1b2b39515036
GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QqJBzWVNFYsowprZB%2FlnlT3R98vj%2FZl94ZNX0cBKl988EVWzv0IliKXhwqNlYzVyvlT6gkzcoZRvW6uVGMr7O3AeDq%2BBpu4Nb5vznjOJqTTRWLFfvHA3Nv9vRY9pdjvZVhmIs1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d35d6d56be-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 | 188.114.96.1 | 206 Partial Content | 34 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Hash69e52ff16a779d8ab66a1156cc50ab23 27f8897a2acc3bcfd319c267d137aaa4650fb3c5 2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61
GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Sat, 04 May 2024 23:19:11 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 362369
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FZR56wDKfw4KU4e6BvnevYmmTAyMJkkzgpAod4qfu%2Fm9BZs9MJEJbsFIvEnmCvROSCaMSdZPCHUj%2FaPpI9FlAEoZ9RJHBBjTslGxQ8lnC0dpXmL8PzvXDC3kytAeNUSkHL5MjQ45EN68"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d879357128-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg | 188.114.96.1 | 200 OK | 575 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeSVG Scalable Vector Graphics image Hashb3011bde2653e373d1150594a8bbd06d e47948cdb4d6ecf6257106805e690e3bf0211317 6499ec40e3f2ac55bf1b5c9a2dbbc212adb74114645bccac0373074f98ef8a01
GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 366735
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5xTYlbNRoH2scUAv%2FRRFdJBdb0rGgLsp%2FWqPegO19nZTOdnKyznwi7yIl3825ootpWh6zpc2dxNvIhnYN%2FxTafGAQOjmmSmfacND2lxsJA833sonC0IMGmERQGG9PxsvPrbt3aMOVTwC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d7f87156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=368 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=368 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=368 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 49834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 249851
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| threeinvincible.com/pixel/sbs?c=1 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/pixel/sbs?c=1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js | 188.114.96.1 | 200 OK | 3.7 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashd943b190d575fbacd2190a6c68ac5414 612abd865a7368e2af9f36be39ea79d3fac0bd15 78dfd0ad0dde93524dbca9e6e500bac9027b762e1d8d0b94574b75a654704ff8
GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uKC0TU57FqovqlmQPIkyDK4mbZqziW0JRNC6MhLhU%2FSl%2BUUkkWzVQ5G1VKOuafrlkXidlo0y1APlgaGQ4d7ZpeY6ravviNDstf%2BVcmzUbITbmG8hiJ%2BYGgTnOws26OfxPRbo8KuDUccw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d7a85356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css | 188.114.96.1 | 200 OK | 1.0 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashaf19abbabe1a862a20cb0e0a3ef31c7e efcc04c4011905e4f013adae56ea928dc47ac7ef 8a72b4d48ce36805c492e3927213e1327c8d924544a595527da9955fd8916e19
GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ELl%2BGvCrr8uMC4VoF63sebROP3BdIMULEWBnHKmxXa19rIWAkyvYf9VHnouY6nwgRtm2DGAnSgkRaCgiGiKWGonw%2FMuCZ27S3YFLvj9wblFp48SMj9m1X6Pj7alP3vx1z1T44yY74bnz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d7a84d56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css | 188.114.96.1 | 200 OK | 12 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash49a38187f94418e173e4bcc50c96dc4b b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293 92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0
GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://micanaldeportivo.com
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WT3JAyN8PM8411rq9ri80Eh6TUKXb6DkymCNNAhzmhY9A2QzjP6GAZJepOsOMmDmp1YhVx3nZmA5InPMxS83B8hc1xcPa4lIZUAJHW%2BfGK794O5aRed6X9RARe8MNKLeKon5dWgcNTrX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d7984556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| television.libre.futbol/cdn-cgi/rum? | 172.67.174.131 | 204 No Content | 0 B |
URL POST HTTP/3television.libre.futbol/cdn-cgi/rum? IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
Content-Type: application/json
Content-Length: 534
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Cookie: _ga_VTQ9GZ3587=GS1.1.1714864747.1.0.1714864747.0.0.0; _ga=GA1.1.675209497.1714864748; cf_clearance=FP5jBJ5wrvzEAaEYT8VQW.j0Sz_5kKQCRRhf16gxH58-1714864747-1.0.1.1-jL9j9M437zDEbyIXJup8h4zqemJTjcQAVmrv4X5M7cC.IS49SJjOtU_2iQaBJmCXhs4gFoaWnkGV.PJdsMnMKA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Sat, 04 May 2024 23:19:33 GMT
access-control-allow-origin: https://television.libre.futbol
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 87ec3764ddb8b529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| pubtrky.com/ut/hb.php?cb=0.41840301569834426&v=1 | 104.21.8.108 | | 0 B |
URL pubtrky.com/ut/hb.php?cb=0.41840301569834426&v=1 IP104.21.8.108:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.41840301569834426&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
Content-Type: text/plain; charset=utf-8
Content-Length: 921
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
date: Sat, 04 May 2024 23:19:33 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Few3YXRFW%2FbS1yj21mX%2FJnM6u9IB2MWPiYxK5aEHoNAGYiNJj8lKTnEqt0TDH%2BW1sTIlhXJYnd64tq%2Faid23P4510Sby8IUZEWpr0GwA0ffk1rt%2Brhg98sJPo74miQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec37642e11568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| waust.at/t.js | 172.67.71.57 | 200 OK | 29 kB |
IP172.67.71.57:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (29322), with no line terminators Hash8fe8954e18b3eafdb2dcf03b218e88f3 17bd6b26816b4c9c7fb9b7552ccdca95c2443c9a ff4c07f1e5cbcfdcfeabb37e8c1dc21d3edc5e3e20edd2d3da16ab5aa22bc600
GET /t.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:17 GMT
etag: W/"63c04115-728a"
expires: Sun, 05 May 2024 23:16:44 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 143
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DfQb%2BNacEzfgm%2BeT651sYJu%2BWh2vKRlhZeXCqKPY3t3Zn5ucQiuOg%2Bo4z8uCAQ2riVjk6IjlvzjmqSBUVmhpBpDTeav8s%2BxkPprOhLlPMLZKSdl1r94Wl4PQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c27f4956b9-OSL
content-encoding: br
|
|
| downstairsnegotiatebarren.com/sfp.js | 104.21.35.227 | 200 OK | 86 kB |
URL GET HTTP/3downstairsnegotiatebarren.com/sfp.js IP104.21.35.227:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 57ee7c495bef7ff8041182e569cd6df8
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 23:19:09 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MqTk1zHszsqsjPvaW0j9lWlH%2FznWzfnvyttZVqP%2FRvaFZ50pJ8zH2HgI%2Bb0UT5HEfziG3Q8dteqTBgvKgHAuNVdEWEHMES%2B3j3mhWpDQE2SRElXtuvk15Cf%2BU%2BTbZRPcrXYcrk88Wxta9g84yU4msQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36cba8b15689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| focus4ca.com/css/embed.css?ver=1.4.4 | 172.67.137.151 | 200 OK | 537 B |
URL GET HTTP/3focus4ca.com/css/embed.css?ver=1.4.4 IP172.67.137.151:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectfocus4ca.com FingerprintB9:F3:59:4C:7B:6E:EB:DC:65:ED:F0:DD:72:36:45:EE:3F:5A:9B:F8 ValidityWed, 20 Mar 2024 21:33:36 GMT - Tue, 18 Jun 2024 21:33:35 GMT
File typeASCII text, with very long lines (621), with no line terminators Hashde49beed17d930d6791cb4a9baa192d6 94f2019b48859afa1f1db4d4406c5db18c9b2072 92162c0c70fd45b51166adea046978d8fe827db144946385d2c5cf6dc2603462
GET /css/embed.css?ver=1.4.4 HTTP/1.1
Host: focus4ca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: text/css
last-modified: Fri, 29 Oct 2021 09:08:53 GMT
vary: Accept-Encoding
etag: W/"617bba25-219"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1331
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2YQyL%2BxkO3SQqr%2BG%2F1D%2BVFcPjsDAc%2BTUfmWfvpgy6hX5WgVfaqzRpOZu%2B5gsF15vgbmLFqUVmRQlh8cMS9d2rP9qNkzQk%2FF7vJl3NrBJTVxSXvacM9g7I7SpVti0jnE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c73a7056bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 | 104.16.80.73 | 200 OK | 19 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP104.16.80.73:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00 ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT
File typeJavaScript source, ASCII text, with very long lines (19189), with no line terminators Hash4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192
GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Tue, 23 Apr 2024 12:12:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36bd5c9e1c12-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/suurl5.php?r=7917142&cbur=0.2814893650199559&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&cbref=&cbdescription=&cbkeywords=&cbcdn=rprapjc.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864747934&srs=72435371fde78440c9baa45d7f1980e2&atv=48.1-sw-adbl-suv5&abtg=1 | 172.67.177.214 | 200 OK | 1.1 kB |
URL GET HTTP/2youradexchange.com/script/suurl5.php?r=7917142&cbur=0.2814893650199559&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&cbref=&cbdescription=&cbkeywords=&cbcdn=rprapjc.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864747934&srs=72435371fde78440c9baa45d7f1980e2&atv=48.1-sw-adbl-suv5&abtg=1 IP172.67.177.214:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1094), with no line terminators Hashc3e3dea273f0ec61c3a21df7da613667 7e8f9854eb4e0f346fb22351908cde3e64fe4e7d 7ad74d40f0ec6485bf8b0955fbdb6f3182cedc9a994caba7b1c561125dd00e9b
GET /script/suurl5.php?r=7917142&cbur=0.2814893650199559&cbiframe=0&cbWidth=1280&cbHeight=1024&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&cbref=&cbdescription=&cbkeywords=&cbcdn=rprapjc.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864747934&srs=72435371fde78440c9baa45d7f1980e2&atv=48.1-sw-adbl-suv5&abtg=1 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7pPTxTGg8By8jCf0TqbZRw70YGzKOJGCuYESeeb3ebfZJekLR5T2ZTKZRTEjVVUYESLpDZQsVcCDpGencHuq4jSYq3OIedXANVVL2TWINJwJULkdpao3DqPmWywxV%2FwvbR%2Fs5ps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c36c7f568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| acscdn.com/script/aclib.js | 104.21.11.26 | 200 OK | 126 kB |
URL GET HTTP/2acscdn.com/script/aclib.js IP104.21.11.26:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectacscdn.com Fingerprint55:5D:7F:12:65:2B:04:EA:49:29:92:63:3B:D1:C2:DF:C7:F6:4B:9E ValiditySat, 27 Apr 2024 13:56:54 GMT - Fri, 26 Jul 2024 13:56:53 GMT
Size126 kB (125606 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/aclib.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/javascript
x-goog-generation: 1714389616107910
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125606
x-goog-hash: crc32c=xTw75w==, md5=TCF5phnDVdTC7KGmT28/Bw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPq3WDRiywUXy1I9epsgjBrZr10_kxsxD8tygBTr-xkVVMzaGeOnPwLfQ_UPT0AwhViwE90
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 04 May 2024 22:56:52 GMT
cache-control: public, max-age=3600
age: 2975
last-modified: Mon, 29 Apr 2024 11:20:16 GMT
etag: W/"4c2179a619c355d4c2eca1a64f6f3f07"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9xHs7puc%2B3aL4RMJjGWHMCQCq7KiXFWo%2Bqklbaq99Fsvf%2FkxiWD5cRBM%2FWR5oGThVxXKUg57gYIDSY9C5phhohV5cYySnALLd0FChrvzlh3W%2Bh%2Ffo%2B5j7huBbD8F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c2ec1c569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| jnhjpdayvpzj.com/script/ut.js?cb=1714864749472 | 172.67.184.41 | 200 OK | 63 kB |
URL GET HTTP/2jnhjpdayvpzj.com/script/ut.js?cb=1714864749472 IP172.67.184.41:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectjnhjpdayvpzj.com Fingerprint5F:5C:CE:55:06:48:DF:2A:B4:EF:47:FA:03:62:7F:31:12:EE:49:2F ValidityTue, 30 Apr 2024 15:32:39 GMT - Mon, 29 Jul 2024 15:32:38 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1714864749472 HTTP/1.1
Host: jnhjpdayvpzj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPrW83xwB4W8mzzRZJ09Xlc2CpXXkbQ03UfLiQzyROfKug36lcvO2cSft2dJ4tgb3ugAlD6A0Esqeg
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Sat, 04 May 2024 23:27:44 GMT
cache-control: public, max-age=14400
age: 234
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vJvzrM%2FCpVVUUHhtkaZO7tyVNUF9Zb1Q%2BSA4lSOj937ooxpVrWevoF8p6pi3NuUjOObUvp%2BAYYk2RqSY6WBpQ9bvPsZqTSiU%2BwR19ekhCXSpmwEaoOO7ZTFIi%2FNB87oL7hpq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36cc68b256be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Fmicanaldeportivo.com%2Fcanal10.php&j=https%3A%2F%2Ftelevision.libre.futbol%2F | 141.101.120.10 | 200 OK | 2.1 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Fmicanaldeportivo.com%2Fcanal10.php&j=https%3A%2F%2Ftelevision.libre.futbol%2F IP141.101.120.10:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2163), with no line terminators Hash8811c1da7d7cd9a89cf1c9d88cf153c1 5dd7a95e6eee435a18d261757a4aa4aeea7ae472 0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Fmicanaldeportivo.com%2Fcanal10.php&j=https%3A%2F%2Ftelevision.libre.futbol%2F HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: m=1; oa=1; df=1714864747
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=2; Domain=dtscout.com; Expires=Sun, 05-May-2024 00:42:29 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=2; Domain=dtscout.com; Expires=Sun, 05-May-2024 03:19:09 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
x-t: 0.3
expires: Sat, 04 May 2024 23:19:08 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7wh2LraufGClQqX7CDYA8YqNFCts%2BTwVGvEg4Jx9e6xXGw78pzDPdJY3Q3XaK1DGlIPP0V1OzrIcIJ1MnVRFZdlfrdsoBKkonCWUHYJl3dLg8cf7ugSTI%2FZnguDswYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c96da74c86-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| threeinvincible.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSuXlc8eBA1N1Hm4CFCdrd7umemxxyC%2BVkJWbMhURQMhPrrTbnVXU1V9%2FRkBQkGJDcHL7n2frNJyA%2F%2BXLwZpTfgYUHIeFrEBQ%2BCB2%2BSPcuMSxbf5b3vfa%2Fgq%2B%2B9LzbLPdJGSXdPv2c2lNZ0qbPot45%2BFATHWysqK4etYdy90o2Ot%2Bzg7X530X%2Br9a7k62ap7Qe%2BH%2FhBa1lZmZjh0pSEyh%2F2g8W%2Bvxi1F4NOhKH9P3alB0c9iMEeeQVKTOYfe0egeIMs%2Ffa0dOuFyY%2BdSUtNC2MxEHc%2FyNYzU2VID8vEekiyuwfTMO7J8iOY7PZMLszg2SBTE%2BL9%2FAgsu3sgEmywNdPJNGQGJl5ENWggdQNFG3BzA0o8IQAXOL%2BKLL1z3tiKXvuPpVN2Qub3%2F4GqJmT%2B9yPI0q9PajVsXTK6LJTJHIZJDTVsoNYa5OU2io05qGobvPgcSvxClvZXkKVbq04bKLH7ZtyjsRS9aCEM%2B2whimO%2BwBLqL8TMF7LTj3w%2F5DODlGqgkgZajkDdHErnoVQeysRDmXtIxW6LB0HQ8wWnftznPBQ9ybrCD2gvCWjgd2OUfPqHEYp8BK5H4PY6cnsd62oEW%2F4Ed7WGEx5cQTAQNSpJUDmCihJUiqAqCKpBfVto13b1HaFdyYKD3D7IYT02xdomvW2KNZkRUDuCFfVmvkdenhn4d%2FUp1uVuKwxpSBOft%2FtM%2Bj3ajrp%2B0vF7Cedx6Ec8gFP3Ti0vhFEUX%2FGh3Byo87Ax3eoby8jVhJCn34PRbTi9Da5eBS1fB61q0Ks1NrIHzmgzkGaRmxTC1MiLeRTXvE29R16bKVm94SD5zok%2FvvnsBf3bDritkdsan6jHBGv65viiqcjWRVM58t1qXqhUbdDpmi8VtJDP3z8nr1XGirOn3ejeO3xKTMuH70tXrNBMqGzNkQcnlRDSLhvLJfnhrPtQsgulu3qytFmZr1w4tXw2za10TpmsAVVPztwCVxPy0o%2BXZ%2Fd77OM%2FoWwDW9ZIyx1yEFBmGzy%2FDpcf9pwhsPoQs9xDVdZj22aHTa0ItDzElNVwcufEX0%2BbLy8f3QeTz%2BwYWzp9TVW96W5izc6BFjeQpTUGtsZA16B6BFc%2BNy5yu3Pi13AWYHpuzLSd22La6q9mJk%2FIuVv34dRuK%2FRFj8lE9piMOlEiuWCdDvN5wlko4pijcJOk22T%2FAgAA%2F%2F8BAAD%2F%2FxbeBdKZBAAA | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSuXlc8eBA1N1Hm4CFCdrd7umemxxyC%2BVkJWbMhURQMhPrrTbnVXU1V9%2FRkBQkGJDcHL7n2frNJyA%2F%2BXLwZpTfgYUHIeFrEBQ%2BCB2%2BSPcuMSxbf5b3vfa%2Fgq%2B%2B9LzbLPdJGSXdPv2c2lNZ0qbPot45%2BFATHWysqK4etYdy90o2Ot%2Bzg7X530X%2Br9a7k62ap7Qe%2BH%2FhBa1lZmZjh0pSEyh%2F2g8W%2Bvxi1F4NOhKH9P3alB0c9iMEeeQVKTOYfe0egeIMs%2Ffa0dOuFyY%2BdSUtNC2MxEHc%2FyNYzU2VID8vEekiyuwfTMO7J8iOY7PZMLszg2SBTE%2BL9%2FAgsu3sgEmywNdPJNGQGJl5ENWggdQNFG3BzA0o8IQAXOL%2BKLL1z3tiKXvuPpVN2Qub3%2F4GqJmT%2B9yPI0q9PajVsXTK6LJTJHIZJDTVsoNYa5OU2io05qGobvPgcSvxClvZXkKVbq04bKLH7ZtyjsRS9aCEM%2B2whimO%2BwBLqL8TMF7LTj3w%2F5DODlGqgkgZajkDdHErnoVQeysRDmXtIxW6LB0HQ8wWnftznPBQ9ybrCD2gvCWjgd2OUfPqHEYp8BK5H4PY6cnsd62oEW%2F4Ed7WGEx5cQTAQNSpJUDmCihJUiqAqCKpBfVto13b1HaFdyYKD3D7IYT02xdomvW2KNZkRUDuCFfVmvkdenhn4d%2FUp1uVuKwxpSBOft%2FtM%2Bj3ajrp%2B0vF7Cedx6Ec8gFP3Ti0vhFEUX%2FGh3Byo87Ax3eoby8jVhJCn34PRbTi9Da5eBS1fB61q0Ks1NrIHzmgzkGaRmxTC1MiLeRTXvE29R16bKVm94SD5zok%2FvvnsBf3bDritkdsan6jHBGv65viiqcjWRVM58t1qXqhUbdDpmi8VtJDP3z8nr1XGirOn3ejeO3xKTMuH70tXrNBMqGzNkQcnlRDSLhvLJfnhrPtQsgulu3qytFmZr1w4tXw2za10TpmsAVVPztwCVxPy0o%2BXZ%2Fd77OM%2FoWwDW9ZIyx1yEFBmGzy%2FDpcf9pwhsPoQs9xDVdZj22aHTa0ItDzElNVwcufEX0%2BbLy8f3QeTz%2BwYWzp9TVW96W5izc6BFjeQpTUGtsZA16B6BFc%2BNy5yu3Pi13AWYHpuzLSd22La6q9mJk%2FIuVv34dRuK%2FRFj8lE9piMOlEiuWCdDvN5wlko4pijcJOk22T%2FAgAA%2F%2F8BAAD%2F%2FxbeBdKZBAAA IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSuXlc8eBA1N1Hm4CFCdrd7umemxxyC%2BVkJWbMhURQMhPrrTbnVXU1V9%2FRkBQkGJDcHL7n2frNJyA%2F%2BXLwZpTfgYUHIeFrEBQ%2BCB2%2BSPcuMSxbf5b3vfa%2Fgq%2B%2B9LzbLPdJGSXdPv2c2lNZ0qbPot45%2BFATHWysqK4etYdy90o2Ot%2Bzg7X530X%2Br9a7k62ap7Qe%2BH%2FhBa1lZmZjh0pSEyh%2F2g8W%2Bvxi1F4NOhKH9P3alB0c9iMEeeQVKTOYfe0egeIMs%2Ffa0dOuFyY%2BdSUtNC2MxEHc%2FyNYzU2VID8vEekiyuwfTMO7J8iOY7PZMLszg2SBTE%2BL9%2FAgsu3sgEmywNdPJNGQGJl5ENWggdQNFG3BzA0o8IQAXOL%2BKLL1z3tiKXvuPpVN2Qub3%2F4GqJmT%2B9yPI0q9PajVsXTK6LJTJHIZJDTVsoNYa5OU2io05qGobvPgcSvxClvZXkKVbq04bKLH7ZtyjsRS9aCEM%2B2whimO%2BwBLqL8TMF7LTj3w%2F5DODlGqgkgZajkDdHErnoVQeysRDmXtIxW6LB0HQ8wWnftznPBQ9ybrCD2gvCWjgd2OUfPqHEYp8BK5H4PY6cnsd62oEW%2F4Ed7WGEx5cQTAQNSpJUDmCihJUiqAqCKpBfVto13b1HaFdyYKD3D7IYT02xdomvW2KNZkRUDuCFfVmvkdenhn4d%2FUp1uVuKwxpSBOft%2FtM%2Bj3ajrp%2B0vF7Cedx6Ec8gFP3Ti0vhFEUX%2FGh3Byo87Ax3eoby8jVhJCn34PRbTi9Da5eBS1fB61q0Ks1NrIHzmgzkGaRmxTC1MiLeRTXvE29R16bKVm94SD5zok%2FvvnsBf3bDritkdsan6jHBGv65viiqcjWRVM58t1qXqhUbdDpmi8VtJDP3z8nr1XGirOn3ejeO3xKTMuH70tXrNBMqGzNkQcnlRDSLhvLJfnhrPtQsgulu3qytFmZr1w4tXw2za10TpmsAVVPztwCVxPy0o%2BXZ%2Fd77OM%2FoWwDW9ZIyx1yEFBmGzy%2FDpcf9pwhsPoQs9xDVdZj22aHTa0ItDzElNVwcufEX0%2BbLy8f3QeTz%2BwYWzp9TVW96W5izc6BFjeQpTUGtsZA16B6BFc%2BNy5yu3Pi13AWYHpuzLSd22La6q9mJk%2FIuVv34dRuK%2FRFj8lE9piMOlEiuWCdDvN5wlko4pijcJOk22T%2FAgAA%2F%2F8BAAD%2F%2FxbeBdKZBAAA HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:12 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a540b360987615db8b6005991b8fc2af
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| focus4ca.com/css/site.css | 172.67.137.151 | 200 OK | 199 B |
URL GET HTTP/3focus4ca.com/css/site.css IP172.67.137.151:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectfocus4ca.com FingerprintB9:F3:59:4C:7B:6E:EB:DC:65:ED:F0:DD:72:36:45:EE:3F:5A:9B:F8 ValidityWed, 20 Mar 2024 21:33:36 GMT - Tue, 18 Jun 2024 21:33:35 GMT
File typeASCII text, with no line terminators Hash1c0354d5d809202b32e2767fd752d997 3ae81b6a2f708ebb1baa145d25dc061ebd93be57 bb217a86ff30bcaa4bb0d0dabc9809fe4da66226cb9dc7f5b3bc16fa0e781ad0
GET /css/site.css HTTP/1.1
Host: focus4ca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: text/css
last-modified: Fri, 29 Oct 2021 09:54:42 GMT
etag: W/"617bc4e2-c7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b7RCo%2F7ir8YCNyIzybzV9ck9nUM5P1ZjC%2FGXJ4EA5r4K9lSLERZrK0vIYbBHlEoE0T%2FzAl%2Fl2hRZ62S%2B4b8izUeIpA4mEbaKuYLnZHPHlFmT6pBMTjn5cWttXw0pMcw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c77a9256bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/tv2/favicon/android-icon-192x192.png | 172.67.174.131 | 200 OK | 24 kB |
URL GET HTTP/3television.libre.futbol/tv2/favicon/android-icon-192x192.png IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash234463aa948ffa09a305cb1cbdcba713 01a6c6298c9f8023fe773ef98c927f0a170cadfc 1791b0ffd5ca3deed177e780f1e3657e5d70cc553cf0f3cdaaa3a1762bd4904a
GET /tv2/favicon/android-icon-192x192.png HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: image/png
content-length: 24429
cache-control: public, max-age=604800
expires: Sat, 11 May 2024 15:32:46 GMT
last-modified: Mon, 08 Apr 2024 18:04:07 GMT
etag: "5f6d-66143197-4c102c967b6a7fed;;;"
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: browsing-topics=()
cf-cache-status: HIT
age: 24510
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Wz4VITI4wrpTk0L8hb6Kbfr1qsVUpf%2FXt2JfjuZMQv4czuopVojU1QUn6N0Wl61rJI5nrpMY6Se1GeF3L0iOs3LxKSqp4M0NEEMQeo9c34e5GGB%2FfQrYv8VvCDEeQGRHuuKX3dl6DXSDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36c2083db529-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js | 151.101.65.229 | 200 OK | 525 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js IP151.101.65.229:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size525 kB (525081 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 23:19:08 GMT
age: 36390
x-served-by: cache-fra-etou8220029-FRA, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 145133
X-Firefox-Spdy: h2
|
|
| television.libre.futbol/tv2/css/bootstrap.css | 172.67.174.131 | 200 OK | 128 kB |
URL GET HTTP/3television.libre.futbol/tv2/css/bootstrap.css IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size128 kB (128180 bytes) Hashdd86ed33fcb72d818d81c492d19a4e1a b6ea02c72fd98fabcc2a3ba1d5d10348241817b9 134d507fe965f795242c4d359ae957c6a1999b47571ebc12837163df969571e4
GET /tv2/css/bootstrap.css HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=175073
permissions-policy: browsing-topics=()
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
cache-control: public, max-age=604800
etag: W/"2abe1-6615797c-e2a82fb2fca7462b;br"
expires: Sat, 11 May 2024 21:32:51 GMT
last-modified: Tue, 09 Apr 2024 17:23:08 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2FU9qkJdU4aDU3fP5bKDazfw4Q1PcMsIpIWP%2Ft2vOWyiXCSiS94q8kPL0GgQNmYtkCvmAZc8bo8jmh0Onwy%2FjnCKSkWxQAaxCPSWbqjhLjIS%2F5Bu270Jf6JqbtTAJvKJGhIHHFHLasEJEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bd1ca5b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 104.21.35.227 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP104.21.35.227:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b692b5f12d095f2348bf9f79f613ab2c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 04 May 2024 23:19:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TtqdA9aMmBfXYn2EoCnizG4rSSz4cUKH5U6EyMo98Yf2l3EtphHvlD5l%2B1ZXUCW2kC24dhffJKK%2FYqp%2FMDe4o%2BxLZbSPRFpbJbQwSjJaF46jMwGNXD%2BqW4QxSTbcHAK1Ykpty93UlpdOyRNsSZB9Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c88a6656ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rprapjc.com/script/utils.js | 172.67.136.156 | 200 OK | 126 kB |
URL GET HTTP/2rprapjc.com/script/utils.js IP172.67.136.156:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectrprapjc.com Fingerprint61:72:87:18:2B:88:AA:DA:58:00:BD:02:F7:79:67:55:13:F7:AB:77 ValidityMon, 25 Mar 2024 16:51:54 GMT - Sun, 23 Jun 2024 16:51:53 GMT
Size126 kB (125606 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/utils.js HTTP/1.1
Host: rprapjc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPqox9LQF99a8MXtPqRdBbe3JZRxsMmu0m6yzQYsFUliaKMgPqbxfwGcWmslHwi_3LMLZCmNkXTyHA
x-goog-generation: 1714390049958094
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 125606
x-goog-hash: crc32c=xTw75w==, md5=TCF5phnDVdTC7KGmT28/Bw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 04 May 2024 23:56:06 GMT
cache-control: public, max-age=14400
last-modified: Mon, 29 Apr 2024 11:27:30 GMT
etag: W/"4c2179a619c355d4c2eca1a64f6f3f07"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fc%2F53nZJMhZsemFMWr8ZdiA84h%2FzbgZSmgjC8lYn4hXyxlduiTD3kjEqSWevBisCDsg9FjjP9MEwbZRMPH%2BF8Oxbris0wETlF0rmlLdGNIhlojNw%2BIriCJ5sQDOXkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36beeb06568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| rprapjc.com/script/ut.js?cb=1714864747503 | 172.67.136.156 | 200 OK | 63 kB |
URL GET HTTP/3rprapjc.com/script/ut.js?cb=1714864747503 IP172.67.136.156:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectrprapjc.com Fingerprint61:72:87:18:2B:88:AA:DA:58:00:BD:02:F7:79:67:55:13:F7:AB:77 ValidityMon, 25 Mar 2024 16:51:54 GMT - Sun, 23 Jun 2024 16:51:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script/ut.js?cb=1714864747503 HTTP/1.1
Host: rprapjc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: text/javascript
x-guploader-uploadid: ABPtcPoeFqlI1frW-CvsWX2Yb8XTNWFMg2prlyt9X8KNM6M3Eab7-hOyrUpoZ4HPuMiEeFFQGbsOwxW2pw
x-goog-generation: 1714053300452258
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 62975
x-goog-hash: crc32c=f8d0YQ==, md5=vEgeNFwEtFNOCk5UoPLBxg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sat, 04 May 2024 23:27:44 GMT
cache-control: public, max-age=14400
last-modified: Thu, 25 Apr 2024 13:55:00 GMT
etag: W/"bc481e345c04b4534e0a4e54a0f2c1c6"
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F17kcCsYmrF0olycCfDeCiLYRwZlFSKmjXLjBwvjVXpmtDo4OHc8jdR0QNugZ%2BGalC7jtbU9nYO7OpetKN%2Fhp9hyD%2BzkFsSVX2jKuD%2FNdjF4xc%2FRdYbHh%2BQnrt6mxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36c01f951c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| itvhdsport.peerhub.net:2096/?id=107fpNsPnYIR&p=web&v=2.9.16 | 172.67.160.39 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1itvhdsport.peerhub.net:2096/?id=107fpNsPnYIR&p=web&v=2.9.16 IP172.67.160.39:2096
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerCloudflare, Inc. Subjectpeerhub.net Fingerprint2B:FC:7D:99:28:49:55:41:8A:0E:A1:D1:84:1E:43:FD:F0:D2:42:B3 ValiditySat, 13 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?id=107fpNsPnYIR&p=web&v=2.9.16 HTTP/1.1
Host: itvhdsport.peerhub.net:2096
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://focus4ca.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pY0Zylc+ZP4PxHL5FdDkiQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 04 May 2024 23:19:10 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tvPAQt6YbiTjPVkniIWsWd64Nq0=
uWebSockets: 20
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HQangcnZv025NrkzhmP6qOsQ0y9DPFo4dzG8y9ASBrnmMtsEsbFTLEuRI%2FAiunMxcNzh27quX4%2BkG1Ort2%2FSsb1S1z22nxlnyV5LXxpGuk8ahqxwMCoP546jTu7fVg0cN7QjslVX3P9WTpnctAw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 87ec36d1af70b51b-OSL
alt-svc: h3=":2096"; ma=86400
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&j= | 141.101.120.10 | 200 OK | 2.1 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&j= IP141.101.120.10:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2163), with no line terminators Hash8811c1da7d7cd9a89cf1c9d88cf153c1 5dd7a95e6eee435a18d261757a4aa4aeea7ae472 0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Ftelevision.libre.futbol%2Ftv2%2Fembed%2Feventos%2F%3Fr%3DaHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Sun, 05-May-2024 00:42:27 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 05-May-2024 03:19:07 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1714864747; Domain=dtscout.com; Expires=Mon, 12-Aug-2024 23:19:07 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.246
expires: Sat, 04 May 2024 23:19:06 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hbDRqhCc%2FdIrcn%2Bnn8Gq06aSWAF14UDoE5%2BUVi8uj5fluk%2FDnlssryK93TRRZVPjAqOlcV4t8gWkmRdrbL8mJW9Q3bm9ejtJFTzYob%2FzWjHjO8ImjZw40yeWlBSWL3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c038534c86-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| waisheph.com/?rb=K36VmR5YbpTqO86h_K3iMZjgCN_o5oUkKnW2prOL1jVwyfWrDbuK64Q13OuQ0MjcgbpGNFIlyBTpgWCq9_YoyY913cDenjv7k0U1Ol9XT2HOKgnVdzWvOKXS5SX5zjfnzcoqopKjMFZpxh9iuLXgFAK9rOl31IhymTMqdMR9h30gl-HRA00exAQ4jiXZ1uSSkLNUbcvPjppnaS5iWIfC3jjL4cHJ-Rz1tw8ka_2vNEUUGnlFiFK0nkR2rsffvfDU9e3C_pdCs1g%3D&request_ab2=0&zoneid=6870788&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=486&wiw=864&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=864&wfc=3&pl=https%3A%2F%2Ffocus4ca.com%2Fdeportivo.php%3Fplayer%3Ddesktop%26live%3Dmlspasshd2&drf=https%3A%2F%2Fmicanaldeportivo.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=405531b2-e5cb-4052-b0b2-e7667af8fc03&wasm=1&userId=008052279af94dcae517a4b707b84e4b&m=link | 139.45.197.245 | 200 OK | 2.4 kB |
URL GET HTTP/2waisheph.com/?rb=K36VmR5YbpTqO86h_K3iMZjgCN_o5oUkKnW2prOL1jVwyfWrDbuK64Q13OuQ0MjcgbpGNFIlyBTpgWCq9_YoyY913cDenjv7k0U1Ol9XT2HOKgnVdzWvOKXS5SX5zjfnzcoqopKjMFZpxh9iuLXgFAK9rOl31IhymTMqdMR9h30gl-HRA00exAQ4jiXZ1uSSkLNUbcvPjppnaS5iWIfC3jjL4cHJ-Rz1tw8ka_2vNEUUGnlFiFK0nkR2rsffvfDU9e3C_pdCs1g%3D&request_ab2=0&zoneid=6870788&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=486&wiw=864&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=864&wfc=3&pl=https%3A%2F%2Ffocus4ca.com%2Fdeportivo.php%3Fplayer%3Ddesktop%26live%3Dmlspasshd2&drf=https%3A%2F%2Fmicanaldeportivo.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=405531b2-e5cb-4052-b0b2-e7667af8fc03&wasm=1&userId=008052279af94dcae517a4b707b84e4b&m=link IP139.45.197.245:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectwaisheph.com FingerprintA9:8B:DF:A0:A2:80:A9:70:4A:F5:46:4A:EB:8E:00:E7:82:98:AC:8E ValidityTue, 19 Mar 2024 01:27:24 GMT - Mon, 17 Jun 2024 01:27:23 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2424), with no line terminators Hashe93f25e9871defb042bda00cfe5a0aeb b26cfdcf9f1d8d00bf55f921d7dffbb9b19e1079 e7fa8031880f82addab73a749ec5ba102d56a2691b1c9cfa6a74a2d4b2d155b5
GET /?rb=K36VmR5YbpTqO86h_K3iMZjgCN_o5oUkKnW2prOL1jVwyfWrDbuK64Q13OuQ0MjcgbpGNFIlyBTpgWCq9_YoyY913cDenjv7k0U1Ol9XT2HOKgnVdzWvOKXS5SX5zjfnzcoqopKjMFZpxh9iuLXgFAK9rOl31IhymTMqdMR9h30gl-HRA00exAQ4jiXZ1uSSkLNUbcvPjppnaS5iWIfC3jjL4cHJ-Rz1tw8ka_2vNEUUGnlFiFK0nkR2rsffvfDU9e3C_pdCs1g%3D&request_ab2=0&zoneid=6870788&js_build=iclick-v1.788.7-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=486&wiw=864&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=864&wfc=3&pl=https%3A%2F%2Ffocus4ca.com%2Fdeportivo.php%3Fplayer%3Ddesktop%26live%3Dmlspasshd2&drf=https%3A%2F%2Fmicanaldeportivo.com%2F&np=1&pt=0&nb=1&ng=0&ix=1&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.7-auto&navlng=en-US&pnt=0&pnrc=0&bs=405531b2-e5cb-4052-b0b2-e7667af8fc03&wasm=1&userId=008052279af94dcae517a4b707b84e4b&m=link HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Cookie: OAID=008052279af94dcae517a4b707b84e4b; oaidts=1714864750
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 23:19:10 GMT
content-type: application/json
x-trace-id: 33bb5e310d0f12a50a2c4a86a23dbd4e
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://focus4ca.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=008052279af94dcae517a4b707b84e4b; expires=Sun, 04 May 2025 23:19:10 GMT; path=/; secure; SameSite=None
oaidts=1714864750; expires=Sun, 04 May 2025 23:19:10 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 11 May 2024 23:19:10 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| pubtrky.com/ut/hb.php?cb=0.8786580484827085&v=1 | 104.21.8.108 | 204 No Content | 0 B |
URL POST HTTP/2pubtrky.com/ut/hb.php?cb=0.8786580484827085&v=1 IP104.21.8.108:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectpubtrky.com Fingerprint1F:C3:3C:5C:C7:6F:56:DF:E4:18:22:98:6F:C2:B3:96:B2:B4:A6:30 ValidityMon, 18 Mar 2024 09:15:33 GMT - Sun, 16 Jun 2024 09:15:32 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.8786580484827085&v=1 HTTP/1.1
Host: pubtrky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
Content-Type: text/plain; charset=utf-8
Content-Length: 911
Origin: https://television.libre.futbol
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 May 2024 23:19:08 GMT
access-control-allow-origin: *
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kAwR8i3hTCHc8XhLfQcXAO9UInNYDtQjozIZiqROeHq4MQ8eIF0EQRUP4RITN%2FhUGyw8X7kYtP3jDCQ82kE5%2Fd5kV0%2BbptM4oORSWRhP6tVHX%2BXutx%2FDuliOdCPldQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36c3591cb50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| waust.at/c.js | 172.67.71.57 | 200 OK | 13 kB |
IP172.67.71.57:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (12997), with no line terminators Hash45bfa6dedd6f7a9ce980b168e0350ad0 82c6b381da9abd8cb3db22ba4868287fe4e976f1 856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://television.libre.futbol/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:17 GMT
etag: W/"63c04115-32c5"
expires: Sun, 05 May 2024 23:03:02 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 965
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KBw%2B33IGpyk23WGO62lt9zpIKj7dR9N3uAZaNy8XR2xrTYGjPGyJnLo9%2BY2aXAnJO7rp1OMMLXTdRVR9vOsqxSiwrNonLll%2FJ0DLsxcvDZIJ81yN%2FImItoxg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36bd6b4956b9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 23:19:11 GMT
date: Sat, 04 May 2024 23:19:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| youradexchange.com/script/suurl5.php?r=8209246&cbur=0.09829420260272637&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Fmicanaldeportivo.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=jnhjpdayvpzj.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749480&srs=f7fb874ff78ee84e7fd85862788a685f&atv=48.1&abtg=1&adbv=3-swat3-swf2 | 172.67.177.214 | 200 OK | 955 B |
URL GET HTTP/3youradexchange.com/script/suurl5.php?r=8209246&cbur=0.09829420260272637&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Fmicanaldeportivo.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=jnhjpdayvpzj.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749480&srs=f7fb874ff78ee84e7fd85862788a685f&atv=48.1&abtg=1&adbv=3-swat3-swf2 IP172.67.177.214:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectyouradexchange.com FingerprintD5:0B:42:43:E8:69:FA:76:AA:C8:B3:28:9A:EB:33:C4:6F:62:7A:2B ValiditySun, 14 Apr 2024 01:48:20 GMT - Sat, 13 Jul 2024 01:48:19 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (982), with no line terminators Hashfa9e1f9865b0f64778d62d77f7faa008 9dfa3981e33fa338b5550052f3cf82088c65cd41 e423d6356c2660a4feda3201cfd47aa13d84e049b0f7d457bcf0537f3ea72382
GET /script/suurl5.php?r=8209246&cbur=0.09829420260272637&cbiframe=1&cbWidth=864&cbHeight=486&cbtitle=&cbpage=https%3A%2F%2Fmicanaldeportivo.com%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=jnhjpdayvpzj.com&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse1280x10240en-USunknown4824%20bits&ts=1714864749480&srs=f7fb874ff78ee84e7fd85862788a685f&atv=48.1&abtg=1&adbv=3-swat3-swf2 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://focus4ca.com/
Origin: https://focus4ca.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:09 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, POST, OPTIONS
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OGfO4JaijWCCaxtsuN0yMMqbwDAc1SSmTTbT4gFeAt6DWdFWilKUvAgusqJLUSAVIjpKxQ3MT5BON6hJi7qyoSiEdj%2F2z402igPQub3tlquTRjOacTkuFaqEdwZm7qopYLqfNN4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ec36cc68420b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA | 172.67.174.131 | 200 OK | 9.1 kB |
URL User Request GET HTTP/2television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA IP172.67.174.131:443
CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9648), with no line terminators Hashbaeb4a4a2b12d3a8dfd0c55aee90d71c b4c3a26d048e5642c0e3a410e092a77d37a59c1a b00f58652d3b91ce5ebe7d99de93817d1e85dc02d15270266d0a6c31ea4007c0
GET /tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:06 GMT
content-type: text/html
last-modified: Sun, 21 Apr 2024 01:37:39 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin
permissions-policy: browsing-topics=()
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lYGHrXNlqa%2B2OkSzrM0DadSSUjQYrfwhJTNQcPr%2BKvfC5E3Uq97V1flMkJdiyWmvqdVur3ZeVx7f5oae9JYy75PKo2IqJM7OhNVcjuqzJZqMDizTm8WuzBUMRQMnaroPgs7hNsM4QZXW7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36babd367129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=357 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=357 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=357 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=368 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1threeinvincible.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=368 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerLet's Encrypt Subjectthreeinvincible.com Fingerprint80:A7:5B:F8:68:36:7B:02:02:07:18:D1:59:E5:E8:BF:94:77:25:84 ValidityTue, 30 Apr 2024 15:27:42 GMT - Mon, 29 Jul 2024 15:27:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=368 HTTP/1.1
Host: threeinvincible.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://micanaldeportivo.com/
Cookie: u_pl=15497083; uid_id2=87a8ed74-339b-488c-bfa0-8b0de594003c:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec33a3af0c29be07a2460f507fcc8304c1=[5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 23:19:12 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 37 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (32033) Hash5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:08 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 10/31/2023 19:27:53
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1a04ea32b2f4b219188fda8349c8680c
cdn-cache: HIT
cf-cache-status: HIT
age: 356831
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36c78eaeb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| waisheph.com/5/6870788 | 139.45.197.245 | 200 OK | 94 kB |
IP139.45.197.245:443
Requested byhttps://focus4ca.com/deportivo.php?player=desktop&live=mlspasshd2 CertificateIssuerLet's Encrypt Subjectwaisheph.com FingerprintA9:8B:DF:A0:A2:80:A9:70:4A:F5:46:4A:EB:8E:00:E7:82:98:AC:8E ValidityTue, 19 Mar 2024 01:27:24 GMT - Mon, 17 Jun 2024 01:27:23 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashce195e4ef221dbb97d3f89519f7ea876 ced9c5c26ccd890af949591869c260206ece93d4 34cc252cd80ff911ce79d1ebb0e08afe10a606db613abaa83c57f7f10285cbcd
GET /5/6870788 HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://focus4ca.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 23:19:10 GMT
content-type: application/javascript
x-trace-id: afeac4b676e49a36cfb2f5101635d799
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=008052279af94dcae517a4b707b84e4b; expires=Sun, 04 May 2025 23:19:10 GMT; path=/; secure; SameSite=None
oaidts=1714864750; expires=Sun, 04 May 2025 23:19:10 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif | 188.114.96.1 | 200 OK | 206 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif IP188.114.96.1:443
Requested byhttps://micanaldeportivo.com/canal10.php CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeGIF image data, version 89a, 480 x 360 Size206 kB (206291 bytes) Hash0b33face774f2203446507ce5f075538 1dd3522529bce7739df0687f47f5bc84356698a0 ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2
GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 23:19:11 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 362378
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0QlpOtL%2FmCRP5Hf6PS0GcTGYGh3R2R2CQwT5TtVTNYcivZAwrU2igz79RbgMa45M%2B0iB3dn61CyzCKi4X0HkVgJoriRVTxLfxUdtcAdAABfhXc4d43nC2gUHsvzj9wJopcX2mHOX05g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ec36d8087956c6-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| television.libre.futbol/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 172.67.174.131 | 200 OK | 7.8 kB |
URL GET HTTP/3television.libre.futbol/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP172.67.174.131:443
Requested byhttps://television.libre.futbol/tv2/embed/eventos/?r=aHR0cHM6Ly9taWNhbmFsZGVwb3J0aXZvLmNvbS9jYW5hbDEwLnBocA CertificateIssuerLet's Encrypt Subjectlibre.futbol FingerprintA7:39:C0:2A:05:72:B2:E0:B6:6B:82:31:B4:58:5B:22:0A:C1:5C:5A ValiditySun, 07 Apr 2024 04:23:58 GMT - Sat, 06 Jul 2024 04:23:57 GMT
File typeJavaScript source, ASCII text, with very long lines (7827), with no line terminators Hash1d056e6ee5c873141a155d2f4668a2f2 dbe534765f5cf67c8e30a6b0e438424645a3b521 9a2b2048306ee3eb36498784dbb95c38d530301bcaa080150c4bf73ad231e541
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: television.libre.futbol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 23:19:07 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
content-encoding: br
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NaTrjDgz3Tef%2BZinHyxH%2B1iZnAhb3l8hSoM0WPhGk6Twmd7WSnNxAsufucK8C5A6Fi7FUeP8D4eQoxojX5lWvH17iZEyb3YZXOG067CHzDLOqahfJce%2BJh7PxwBY%2FgMoGH%2BeNACGvvitTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87ec36bfde99b529-OSL
alt-svc: h3=":443"; ma=86400
|
|