| cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css | 151.101.193.229 | 200 OK | 35 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/css/bootstrap.min.css IP151.101.193.229:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65342) Hashcd822b7fd22c8a95a68470c795adea69 1f139981b9b47a766efa0a61bb78ada351f16c4b 3017df4a76db5f01c2b99b603d88b03106df13bcfe18e67b7c13c2341d3a67df
GET /npm/bootstrap@5.3.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"38df4-HxOZgbm0enZu+gphu3ito1HxbEs"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 20:34:03 GMT
age: 6494372
x-served-by: cache-fra-etou8220083-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34902
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js | 151.101.193.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js IP151.101.193.229:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash6baf57f25796c332144ed58a2a0cd9ee f7fd0f3dc84b2cf93bf81e832505a673f354e0a3 82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd
GET /npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.2
x-jsd-version-type: version
etag: W/"13b17-9/0PPchLLPk7+B6DJQWmc/NU4KM"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 20:34:03 GMT
age: 2843375
x-served-by: cache-fra-etou8220085-FRA, cache-hel1410029-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25109
X-Firefox-Spdy: h2
|
|
| yieldfifthexterminator.com/c0/50/cc/c050cc7ee3eb2898736b2ac49e2c5c70.js | 172.240.127.234 | 200 OK | 31 kB |
URL GET HTTP/1.1yieldfifthexterminator.com/c0/50/cc/c050cc7ee3eb2898736b2ac49e2c5c70.js IP172.240.127.234:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectyieldfifthexterminator.com Fingerprint7C:75:57:93:76:6C:D0:FD:6E:2F:D5:B8:27:46:10:03:25:84:DF:27 ValiditySun, 14 Apr 2024 09:17:01 GMT - Sat, 13 Jul 2024 09:17:00 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash90c579e2432abcc86ffa476c19787c4e 995d6fbb235b4265c02c9a90171daba60d7f5d9b 38f82c0d39c67a72000a72a8c8a62389b78dba928ec60c754a4484d9b25f117f
GET /c0/50/cc/c050cc7ee3eb2898736b2ac49e2c5c70.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02956698895020f46cfff08379176827
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| yieldfifthexterminator.com/a0d83c3c70ba2ec3811a43773a548852/invoke.js | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1yieldfifthexterminator.com/a0d83c3c70ba2ec3811a43773a548852/invoke.js IP172.240.127.234:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectyieldfifthexterminator.com Fingerprint7C:75:57:93:76:6C:D0:FD:6E:2F:D5:B8:27:46:10:03:25:84:DF:27 ValiditySun, 14 Apr 2024 09:17:01 GMT - Sat, 13 Jul 2024 09:17:00 GMT
File typeJavaScript source, ASCII text, with very long lines (31247), with no line terminators Hash53e21027ee3bc399454fd9df10190d7a 41383ad0f4652d7481363d088ae279e04718491a 1b870c42b546033c88308d0a9db3ffed237f235ed4f115abf82ae4461dbc2bab
GET /a0d83c3c70ba2ec3811a43773a548852/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 77f3902089c7fdfa8520198efc77b7cd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.r2m03.amazontrust.com/ | 3.164.222.26 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP3.164.222.26:0
Hashf7a3aabaedd5c95463e85c2d7682d410 715b2bd7dd959bb3423d71b22c43302b7a18a3a5 55ab8ca84eb2c090ff2a4eb9ebc48ce053c3f38261d66bded94f03719a384335
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 10 May 2024 20:34:04 GMT
Last-Modified: Fri, 10 May 2024 20:23:32 GMT
Server: ECAcc (ska/F6A0)
X-Cache: Miss from cloudfront
Via: 1.1 1cc96dfa269d8f804027fd4df8ad9ab2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: EiVh2WT7yUe8685iC-fdPiuaLVDDJEkpXoHTCW9x3zuCoGax54hZRA==
Age: 632
|
|
| proftrafficcounter.com/stats | 3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash8b5619af8554fe43f3bca113887d19ea 1c057505f32f5d583656061a025e3db2c522ebfb ae1197e22caf08c8c267b1c3247efdcdbd0f65c4eb87ef7328876d20ed3727d6
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://v1.rsoccerlink.online
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=cd65bc5d-e70a-4b08-8179-8a1774694424:1:1; expires=Mon, 08 May 2034 20:34:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 3.124.83.201 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.124.83.201:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash65ebbafa4c1cbdb9d6ab188b487e9a1c 28e3a5c204fa470a4345fd41f913340a657687fa d35a584d761e295509074b26bc51e47de070cd3bc2a2fcee15d238dd21b119f4
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://v1.rsoccerlink.online
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3775f6e5-03b1-4bf5-82d9-d1615201a41b:2:1; expires=Mon, 08 May 2034 20:34:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| yieldfifthexterminator.com/60b0089f99c8bdc427b4d83efcb4f8f5/invoke.js | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1yieldfifthexterminator.com/60b0089f99c8bdc427b4d83efcb4f8f5/invoke.js IP172.240.127.234:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectyieldfifthexterminator.com Fingerprint7C:75:57:93:76:6C:D0:FD:6E:2F:D5:B8:27:46:10:03:25:84:DF:27 ValiditySun, 14 Apr 2024 09:17:01 GMT - Sat, 13 Jul 2024 09:17:00 GMT
File typeJavaScript source, ASCII text, with very long lines (31250), with no line terminators Hash2a9d0df3306eb44865e3e5a04f0747c0 aef162b730ffff459fe532c54164f5fab794f842 61c45b70abf57597da99872f495b192d9a24a0abe8e7be0fa2aa8a10a487c899
GET /60b0089f99c8bdc427b4d83efcb4f8f5/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0362f2ad2532c37b0b71dce45677223d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| yieldfifthexterminator.com/7816c41629601909712436c10b7ecba9/invoke.js | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1yieldfifthexterminator.com/7816c41629601909712436c10b7ecba9/invoke.js IP172.240.127.234:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectyieldfifthexterminator.com Fingerprint7C:75:57:93:76:6C:D0:FD:6E:2F:D5:B8:27:46:10:03:25:84:DF:27 ValiditySun, 14 Apr 2024 09:17:01 GMT - Sat, 13 Jul 2024 09:17:00 GMT
File typeJavaScript source, ASCII text, with very long lines (31283), with no line terminators Hashcf89d2f933dc8a43b7bbc1eeac16bcfd 76d81977ae9ab0e2508ed8928dd9f720d25c46bc b72ba99de634af54976f9836f39d62a7cd9ea7e1ccb1f447e60efcafe52a6b2b
GET /7816c41629601909712436c10b7ecba9/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 017b1040df1f8ba10b03df07edd00e33
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.blockadsnot.com/tcookies-monster.css | 185.76.9.26 | 200 OK | 12 kB |
URL GET HTTP/2www.blockadsnot.com/tcookies-monster.css IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subject1158060716.rsc.cdn77.org Fingerprint10:08:2B:8D:3F:3E:D5:9D:80:D3:F4:CF:0A:39:67:D3:CD:2B:9C:C1 ValidityTue, 30 Apr 2024 06:35:33 GMT - Mon, 29 Jul 2024 06:35:32 GMT
File typegzip compressed data, from Unix Hashf57e733c11f27eee095686c5dcdc8bca 68d6474f146620421ce0a3f391c73b6d7d60113a 63266ac29785213abdbdda562534d7152f56e49e769d4900735d00c41a3d7e6e
GET /tcookies-monster.css HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
popads-node: wb9
expires: Wed, 15 May 2024 12:52:47 GMT
access-control-allow-origin: https://v1.rsoccerlink.online
link: <https://blockadsnot.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwwBuUwJFAH3Mb4CAAwBuUwKAQH3V04AAAwBnJIhHwH3lQIAAA
x-77-nzt-ray: af585630aa10b374bc843e66608fbb0f
x-accel-expires: @1715777567
x-accel-date: 1715193483
x-77-cache: HIT
x-77-age: 179761
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 179761
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| yieldfifthexterminator.com/8cb4b2c4074a5eb07b01e248a08cb135/invoke.js | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1yieldfifthexterminator.com/8cb4b2c4074a5eb07b01e248a08cb135/invoke.js IP172.240.127.234:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectyieldfifthexterminator.com Fingerprint7C:75:57:93:76:6C:D0:FD:6E:2F:D5:B8:27:46:10:03:25:84:DF:27 ValiditySun, 14 Apr 2024 09:17:01 GMT - Sat, 13 Jul 2024 09:17:00 GMT
File typeJavaScript source, ASCII text, with very long lines (31259), with no line terminators Hash67d6fa30e4efff0fe4bc070e5e97d293 12d26ae4d324a0c983fdb5d7a634d9ea5de42636 0ab11d951e68b0de753d7841e993fed9f3a0d55f897500814c941520da485194
GET /8cb4b2c4074a5eb07b01e248a08cb135/invoke.js HTTP/1.1
Host: yieldfifthexterminator.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebe68122cbc1490d5405773713f74432
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| shrubjessamy.com/pixel/purst?dl=0&th=0&sc=0&rs=1716&rd=1716&fd=854&bv=24.5.6485&tmpl=70 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1shrubjessamy.com/pixel/purst?dl=0&th=0&sc=0&rs=1716&rd=1716&fd=854&bv=24.5.6485&tmpl=70 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectshrubjessamy.com Fingerprint82:9A:E8:62:9F:B8:5D:3B:3D:03:A7:A3:24:34:80:46:95:3E:41:60 ValidityFri, 10 May 2024 11:49:56 GMT - Thu, 08 Aug 2024 11:49:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1716&rd=1716&fd=854&bv=24.5.6485&tmpl=70 HTTP/1.1
Host: shrubjessamy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| restlessidea.com/watch.1621379543546.js?key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 192.243.61.225 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1restlessidea.com/watch.1621379543546.js?key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectrestlessidea.com FingerprintF1:1A:4C:F2:E9:86:B0:2E:A7:9E:26:57:D2:56:53:84:4B:25:CA:CD ValidityMon, 06 May 2024 08:16:28 GMT - Sun, 04 Aug 2024 08:16:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1621379543546.js?key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: restlessidea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Location: https://restlessidea.com/watch.1621379543546.js?dev=e&key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=002f7418632538161316e770a64670531fb76a328e52574085ef81bb400a0e96c1cd1da75b7c41070521c189ea387b40e835a71aa08dd114d4b32c6c905194402c0041fe031ee00f8edefd509338e23000cbe530f3f20573f8f64fa2622d14&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1
Set-Cookie: u_pl=22245611; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjI0NTYxMSwiayI6IjYwYjAwODlmOTljOGJkYzQyN2I0ZDgzZWZjYjRmOGY1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNTE3MTUzLCJwaWQiOjU3ODI3NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjoyNiwicHQiOjQsInBrIjoiZ256aG5rOGEzIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vdjEucnNvY2Nlcmxpbmsub25saW5lLzM0LzAvc29jY2VyLzM0IiwiYXIiOltdfX0.LAqoZCkuaVpfYfvnuAu2I5ZBlXqR0NLfh0YdxkCRw-g; expires=Fri, 10 May 2024 20:35:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91b5c73d61ce565c545dc6aa22e87d03
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| demolishforbidhonorable.com/watch.1016362530477.js?key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.253.132 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1demolishforbidhonorable.com/watch.1016362530477.js?key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.253.132:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectdemolishforbidhonorable.com Fingerprint10:F1:F8:18:53:E4:10:D7:B9:8F:B1:BC:81:D2:DA:5F:5D:AB:D8:9F ValidityMon, 06 May 2024 08:09:35 GMT - Sun, 04 Aug 2024 08:09:34 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1016362530477.js?key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: demolishforbidhonorable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Location: https://demolishforbidhonorable.com/watch.1016362530477.js?dev=e&key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=b9910eb9368d86c012547334495c47e8fd89f176368a0a22ceab4c54689e672da8a54d75a3778ed961491584ec69dbf320bfc15e1fa8cf374af17ee35951787dcbdee4278606543dc8e9073048d07e755e1648c92742cef4f814f3589eda&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1
Set-Cookie: u_pl=22245626; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.voEzQqOqYxVmPgMBBM9wsM1ToDogiWpNh0dMxWAXA1k; expires=Fri, 10 May 2024 20:35:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b373b675bda144090d490858534c9a2e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| empirepolar.com/watch.343434828765.js?key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.108.84 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1empirepolar.com/watch.343434828765.js?key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.108.84:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectempirepolar.com Fingerprint8C:55:4B:55:35:33:2C:67:D5:B5:37:E7:5C:FA:5B:97:CB:B6:EA:EE ValidityMon, 06 May 2024 08:14:53 GMT - Sun, 04 Aug 2024 08:14:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.343434828765.js?key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: empirepolar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Location: https://empirepolar.com/watch.343434828765.js?dev=e&key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=64f8ed7d5115f7cae3dc375cbc85d68fe007159c22eb732884d1f2d32405e01e3dbd475d9d2ff37737ab7d6b57f1304c31cdb3ea14c215d16c6d74f32d409b4f5153607d08ef18bf3dcb52590914128e3d2b90af8ccf19954e5ca1d3a0c2747147&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1
Set-Cookie: u_pl=22245579; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.GfsdFxbhZYqKBOmh7_KpZpz5RnfUfEuwkcoJ-ITVqV8; expires=Fri, 10 May 2024 20:35:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 332eaf16661cc3a0b3d706640f19245e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.displayvertising.com/mF/Zpg/zbootstrap.min.js | 185.76.9.21 | 200 OK | 145 kB |
URL GET HTTP/2www.displayvertising.com/mF/Zpg/zbootstrap.min.js IP185.76.9.21:443 ASN#60068 Datacamp Limited
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerLet's Encrypt Subject1503693843.rsc.cdn77.org FingerprintE0:AB:F4:B8:46:20:20:69:A4:B8:B3:D3:6A:7B:BF:68:86:D1:AB:D3 ValidityTue, 30 Apr 2024 06:35:35 GMT - Mon, 29 Jul 2024 06:35:34 GMT
File typegzip compressed data, from Unix Size145 kB (144722 bytes) Hashdbb552050e06e874dff4eea6cb8d7311 1648698d8821296ac62be4f0d3016af4cb97dcde 63225441f06fc72093d641c853ee532101fe16e016df64ac17ff09d1d39dec0e
GET /mF/Zpg/zbootstrap.min.js HTTP/1.1
Host: www.displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
popads-node: wb1
expires: Fri, 17 May 2024 19:53:38 GMT
access-control-allow-origin: https://s1.sportea.link
link: <https://displayvertising.com/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBuUwJFAFBDAG5TAoJAfd4CQAADAGckiEnAfcCAAAA
x-77-nzt-ray: af58563045044c7bbc843e663c01ce20
x-accel-expires: @1715975618
x-accel-date: 1715370820
x-77-cache: HIT
x-77-age: 2426
content-encoding: gzip
server: CDN77-Turbo
x-cache: MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@0.3.0/dist/level-selector.min.js | 151.101.193.229 | 200 OK | 11 kB |
URL GET HTTP/3cdn.jsdelivr.net/gh/clappr/clappr-level-selector-plugin@0.3.0/dist/level-selector.min.js IP151.101.193.229:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (30387) Hash1b142ebaf5f868c4c11a73ffe9175afb aa8b49bab8e92ff04d17a5a2c7c0dafc426e2fe9 df86557c0f11c06f425dab021ec5a970b22b6fa8b9651af3d26f137fb30c3702
GET /gh/clappr/clappr-level-selector-plugin@0.3.0/dist/level-selector.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 10804
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.0
x-jsd-version-type: version
etag: W/"76e2-qotJurjpL/BNF6Wix8Da/EJuL+k"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 20:34:04 GMT
age: 4971902
x-served-by: cache-fra-etou8220083-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js | 151.101.193.229 | 200 OK | 58 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js IP151.101.193.229:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb918a2715e5090b0d6dbd00c85377b4e 39aeed3c73b34661b4085afcd2321e2141bbcc9e 40e0be1f17c323e84cd387c13e3191628992bc687e2046bca724ba609b92cb0b
GET /npm/swarmcloud-hls@latest/dist/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 58381
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.9.16
x-jsd-version-type: version
etag: W/"2d729-Oa7tPHOzRmG0CFr80jIeIUG7zJ4"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 20:34:04 GMT
age: 21813
x-served-by: cache-fra-eddf8230112-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js | 151.101.193.229 | 200 OK | 1.2 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js IP151.101.193.229:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (3097), with no line terminators Hash7d05b4c5566462b564acc78569c8ee5a 48b8edb405bc75c0e30038ba2754f685b8689167 a8eb7e24873bb65c9b7193534bda15761d8853b24ca4a41d7749360972504141
GET /npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1198
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.8.10
x-jsd-version-type: version
etag: W/"c19-SLjttAW8dcDjADi6J1T2hbhokWc"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 20:34:04 GMT
age: 22531
x-served-by: cache-fra-etou8220118-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| demolishforbidhonorable.com/watch.1016362530477.js?dev=e&key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=b9910eb9368d86c012547334495c47e8fd89f176368a0a22ceab4c54689e672da8a54d75a3778ed961491584ec69dbf320bfc15e1fa8cf374af17ee35951787dcbdee4278606543dc8e9073048d07e755e1648c92742cef4f814f3589eda&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.253.132 | 200 OK | 2.0 kB |
URL GET HTTP/1.1demolishforbidhonorable.com/watch.1016362530477.js?dev=e&key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=b9910eb9368d86c012547334495c47e8fd89f176368a0a22ceab4c54689e672da8a54d75a3778ed961491584ec69dbf320bfc15e1fa8cf374af17ee35951787dcbdee4278606543dc8e9073048d07e755e1648c92742cef4f814f3589eda&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.253.132:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectdemolishforbidhonorable.com Fingerprint10:F1:F8:18:53:E4:10:D7:B9:8F:B1:BC:81:D2:DA:5F:5D:AB:D8:9F ValidityMon, 06 May 2024 08:09:35 GMT - Sun, 04 Aug 2024 08:09:34 GMT
File typeJavaScript source, ASCII text, with very long lines (2526) Hash700dbd98ecd158c20eeae72f25dd9f82 2a4b25c2a2d6e4f4038e9f86e33e754b6123a7bd 4a2f12ab3a0a7df02a8a26609ea882f7a59e3d73682546fed15ffa13397cc41c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1016362530477.js?dev=e&key=7816c41629601909712436c10b7ecba9&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=b9910eb9368d86c012547334495c47e8fd89f176368a0a22ceab4c54689e672da8a54d75a3778ed961491584ec69dbf320bfc15e1fa8cf374af17ee35951787dcbdee4278606543dc8e9073048d07e755e1648c92742cef4f814f3589eda&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: demolishforbidhonorable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
Referer: https://v1.rsoccerlink.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22245626; ain=eyJhbGciOiJIUzI1NiJ9.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.voEzQqOqYxVmPgMBBM9wsM1ToDogiWpNh0dMxWAXA1k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3775f6e5-03b1-4bf5-82d9-d1615201a41b:2:1; expires=Fri, 17 May 2024 20:34:04 GMT; secure; SameSite=None
iprc274f337cba787218255b92e47f6779e2=5191640; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1dd567da3e8e88733c32135c024c3c14
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| empirepolar.com/watch.343434828765.js?dev=e&key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=64f8ed7d5115f7cae3dc375cbc85d68fe007159c22eb732884d1f2d32405e01e3dbd475d9d2ff37737ab7d6b57f1304c31cdb3ea14c215d16c6d74f32d409b4f5153607d08ef18bf3dcb52590914128e3d2b90af8ccf19954e5ca1d3a0c2747147&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.108.84 | 200 OK | 2.0 kB |
URL GET HTTP/1.1empirepolar.com/watch.343434828765.js?dev=e&key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=64f8ed7d5115f7cae3dc375cbc85d68fe007159c22eb732884d1f2d32405e01e3dbd475d9d2ff37737ab7d6b57f1304c31cdb3ea14c215d16c6d74f32d409b4f5153607d08ef18bf3dcb52590914128e3d2b90af8ccf19954e5ca1d3a0c2747147&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.108.84:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectempirepolar.com Fingerprint8C:55:4B:55:35:33:2C:67:D5:B5:37:E7:5C:FA:5B:97:CB:B6:EA:EE ValidityMon, 06 May 2024 08:14:53 GMT - Sun, 04 Aug 2024 08:14:52 GMT
File typeJavaScript source, ASCII text, with very long lines (2538) Hash3ed4eb26ba1d51480d07bf72bc5a843a 2cb317323f5414fc193c2882472c8582f2eae559 20c6efd4133a50b2ad17e351dac5763dd2c368e6b0a689003d139c9d8a818c25
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.343434828765.js?dev=e&key=a0d83c3c70ba2ec3811a43773a548852&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=64f8ed7d5115f7cae3dc375cbc85d68fe007159c22eb732884d1f2d32405e01e3dbd475d9d2ff37737ab7d6b57f1304c31cdb3ea14c215d16c6d74f32d409b4f5153607d08ef18bf3dcb52590914128e3d2b90af8ccf19954e5ca1d3a0c2747147&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: empirepolar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
Referer: https://v1.rsoccerlink.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22245579; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjI0NTU3OSwiayI6ImEwZDgzYzNjNzBiYTJlYzM4MTFhNDM3NzNhNTQ4ODUyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNTE3MTUzLCJwaWQiOjU3ODI3NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjo1LCJwdCI6NCwicGsiOiJncGh0enR6cyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3YxLnJzb2NjZXJsaW5rLm9ubGluZS8zNC8wL3NvY2Nlci8zNCIsImFyIjpbXX19.GfsdFxbhZYqKBOmh7_KpZpz5RnfUfEuwkcoJ-ITVqV8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3775f6e5-03b1-4bf5-82d9-d1615201a41b:2:1; expires=Fri, 17 May 2024 20:34:04 GMT; secure; SameSite=None
iprc76c768c2f0e4a6306f7fc1d3b6c5c0b8=5191363; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 663b8602014066727fa1439801a56472
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| restlessidea.com/watch.1621379543546.js?dev=e&key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=002f7418632538161316e770a64670531fb76a328e52574085ef81bb400a0e96c1cd1da75b7c41070521c189ea387b40e835a71aa08dd114d4b32c6c905194402c0041fe031ee00f8edefd509338e23000cbe530f3f20573f8f64fa2622d14&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 192.243.61.225 | 200 OK | 2.0 kB |
URL GET HTTP/1.1restlessidea.com/watch.1621379543546.js?dev=e&key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=002f7418632538161316e770a64670531fb76a328e52574085ef81bb400a0e96c1cd1da75b7c41070521c189ea387b40e835a71aa08dd114d4b32c6c905194402c0041fe031ee00f8edefd509338e23000cbe530f3f20573f8f64fa2622d14&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectrestlessidea.com FingerprintF1:1A:4C:F2:E9:86:B0:2E:A7:9E:26:57:D2:56:53:84:4B:25:CA:CD ValidityMon, 06 May 2024 08:16:28 GMT - Sun, 04 Aug 2024 08:16:27 GMT
File typeJavaScript source, ASCII text, with very long lines (2454) Hash99a00574b9f6b4db79945fa7605f4801 8bd320a160472ebcb4a852369200eff65942a1cb 912c864283e4c6403f6eea1c5e8cc47372002a52a3def919820d79ec3575367a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1621379543546.js?dev=e&key=60b0089f99c8bdc427b4d83efcb4f8f5&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373304&refer=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&res=14.2071&rmtc=t&shu=002f7418632538161316e770a64670531fb76a328e52574085ef81bb400a0e96c1cd1da75b7c41070521c189ea387b40e835a71aa08dd114d4b32c6c905194402c0041fe031ee00f8edefd509338e23000cbe530f3f20573f8f64fa2622d14&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: restlessidea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
Referer: https://v1.rsoccerlink.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22245611; ain=eyJhbGciOiJIUzI1NiJ9.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.LAqoZCkuaVpfYfvnuAu2I5ZBlXqR0NLfh0YdxkCRw-g
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3775f6e5-03b1-4bf5-82d9-d1615201a41b:2:1; expires=Fri, 17 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
pdhtkv26=true; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
uncs26=1; expires=Sat, 11 May 2024 20:34:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5edc979fa2cf76b1fa0b83392d4dbe58
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| harassmentgrowl.com/watch.1431006101833.js?key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.108.84 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1harassmentgrowl.com/watch.1431006101833.js?key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.108.84:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1431006101833.js?key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&refer=&tz=0&dev=e&res=14.2071&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Location: https://harassmentgrowl.com/watch.1431006101833.js?dev=e&key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373305&refer=&res=14.2071&rmtc=t&shu=774adf93288248f7bffbfaa883775810c3c1d7349dff92be3bb98b6426b7676167adbd21f64422db207c73cb397b636a8f6bda1f21b36d76664c2a1c1777ce0480a58c1b3a0f30d822b545edeb47cf945b6ae1bad5bdae67547c4f6628c804&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1
Set-Cookie: u_pl=22612271; expires=Sat, 11 May 2024 20:34:05 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMjYxMjI3MSwiayI6IjhjYjRiMmM0MDc0YTVlYjA3YjAxZTI0OGEwOGNiMTM1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjozNTE3MTUzLCJwaWQiOjU3ODI3NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjozMiwicHQiOjQsInBrIjoiYm5lN3NyZGciLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly92MS5yc29jY2VybGluay5vbmxpbmUvIiwiYXIiOltdfX0.cZJILNggYoUmYjLV_zWE21lLtHE4b6yHr1_VoCy5l7w; expires=Fri, 10 May 2024 20:35:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1ce8650d8a0f87573ea0081153e36a2
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| 6.adsco.re/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://s1.sportea.link
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb5403cd1b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 6.adsco.re:2087/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:2087
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://s1.sportea.link
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb5405ab6b4ff-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4.adsco.re:2087/ | 162.252.214.5 | 200 OK | 62 B |
IP162.252.214.5:2087
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b41cb22f84f645a103acc7bfbf084ff bac3967b26d5ec4a0d09a580714e8219796816bd 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://s1.sportea.link
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| 4.adsco.re/ | 162.252.214.5 | 200 OK | 62 B |
IP162.252.214.5:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b41cb22f84f645a103acc7bfbf084ff bac3967b26d5ec4a0d09a580714e8219796816bd 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://s1.sportea.link
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 812 B |
IP162.252.214.5:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hashc0aecfa5bd8077858379dcfdef5da66b ec7e7e1406469cc7dd4aea4814f12dda79e32cd0 94599e065b572617c44a63f2195486983b892470fdc98e3859cc41f5b215ce4f
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1486
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| vppu0b2tqyxb.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2vppu0b2tqyxb.l4.adsco.re/ IP185.200.118.51:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: vppu0b2tqyxb.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| harassmentgrowl.com/watch.1431006101833.js?dev=e&key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373305&refer=&res=14.2071&rmtc=t&shu=774adf93288248f7bffbfaa883775810c3c1d7349dff92be3bb98b6426b7676167adbd21f64422db207c73cb397b636a8f6bda1f21b36d76664c2a1c1777ce0480a58c1b3a0f30d822b545edeb47cf945b6ae1bad5bdae67547c4f6628c804&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 | 172.240.108.84 | 200 OK | 2.1 kB |
URL GET HTTP/1.1harassmentgrowl.com/watch.1431006101833.js?dev=e&key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373305&refer=&res=14.2071&rmtc=t&shu=774adf93288248f7bffbfaa883775810c3c1d7349dff92be3bb98b6426b7676167adbd21f64422db207c73cb397b636a8f6bda1f21b36d76664c2a1c1777ce0480a58c1b3a0f30d822b545edeb47cf945b6ae1bad5bdae67547c4f6628c804&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 IP172.240.108.84:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectharassmentgrowl.com FingerprintEF:3A:DF:32:71:10:91:85:74:56:59:09:21:58:8E:10:A1:16:D1:8A ValidityMon, 06 May 2024 12:54:15 GMT - Sun, 04 Aug 2024 12:54:14 GMT
File typeJavaScript source, ASCII text, with very long lines (2672) Hash3ca27dd28b644419383ec662e0d8b9e4 cfc94b6edba731fc86c8ec92c0708fbbbd9ff2c9 c144531aa9c30dba09a0b4d8268db9779401aee846cab1bf5b9f2351c782bd9e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1431006101833.js?dev=e&key=8cb4b2c4074a5eb07b01e248a08cb135&kw=%5B%22soccer%22%2C%2234%22%2C%22deportivo%22%2C%22alav%C3%A9s%22%2C%22vs%22%2C%22girona%22%2C%22fc%22%5D&pst=1715373305&refer=&res=14.2071&rmtc=t&shu=774adf93288248f7bffbfaa883775810c3c1d7349dff92be3bb98b6426b7676167adbd21f64422db207c73cb397b636a8f6bda1f21b36d76664c2a1c1777ce0480a58c1b3a0f30d822b545edeb47cf945b6ae1bad5bdae67547c4f6628c804&tz=0&uuid=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1 HTTP/1.1
Host: harassmentgrowl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v1.rsoccerlink.online
Referer: https://v1.rsoccerlink.online/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22612271; ain=eyJhbGciOiJIUzI1NiJ9.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.cZJILNggYoUmYjLV_zWE21lLtHE4b6yHr1_VoCy5l7w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://v1.rsoccerlink.online
Access-Control-Allow-Origin: https://v1.rsoccerlink.online
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3775f6e5-03b1-4bf5-82d9-d1615201a41b:2:1; expires=Fri, 17 May 2024 20:34:05 GMT; secure; SameSite=None
iprc8a0fc932eb25fca30760635673289601=3570421; expires=Sat, 11 May 2024 00:34:05 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 11 May 2024 20:34:05 GMT; secure; SameSite=None
uncs=1; expires=Sat, 11 May 2024 20:34:05 GMT; secure; SameSite=None
pdhtkv32=true; expires=Sat, 11 May 2024 20:34:05 GMT; secure; SameSite=None
uncs32=1; expires=Sat, 11 May 2024 20:34:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 39bcb37a3d5c8e08569dfa0b38d17e60
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| c.adsco.re/ | 104.17.167.186 | | 28 kB |
IP104.17.167.186:0
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 10 Jun 2024 20:34:05 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 440243
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb53f6add56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| waust.at/d.js | 104.26.4.7 | 200 OK | 6.9 kB |
IP104.26.4.7:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (14706), with no line terminators Hash38cdedd658fa41770f607c0b117c1f82 3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4 951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:36 GMT
etag: W/"63c04128-3972"
expires: Sat, 11 May 2024 20:26:53 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 431
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F8xbA6oWnudiSv2XbCeLTHz%2FM3CHOfatiuZ%2FyjiZvRs%2FkLQQorSdgSW3ZdsOKHNu50X8oqNoDD4jPgQip%2Fz%2FY0BEPqmY0EpL0Sv5jmMGRfZK8EA%2Bd35pPxz8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb53bb89d5685-OSL
content-encoding: br
|
|
| 6.adsco.re/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb5420e5e56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg | 45.133.44.10 | 200 OK | 64 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 728x90, components 3 Hashc416d00adf54f22a0a7059110288f1ba 041feade34f9021e60d153b9d82d3d2c5ac8c945 3d5e90fa0e3b161d4b31e354eefebe2e01913b4510ef7975a88be2a39a711d93
GET /cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: image/jpeg
content-length: 63639
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:26:28 GMT
etag: "660545d4-f897"
expires: Sun, 12 May 2024 20:34:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 810 B |
IP162.252.214.5:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hash10ff678c76ecb2ffee8173474eb9e907 b19542c4a3c99f54fb6334b3d9e71d8450ad8e91 85a646eee4a6a637a84c580b431b4d91e75f65b61f733631b1291093ea8753c2
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1625
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://s1.sportea.link
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.68:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintBB:9C:12:88:24:43:D4:47:71:3F:F0:A4:BB:E1:85:65:CE:E7:92:E4 ValidityMon, 06 May 2024 02:35:23 GMT - Sun, 04 Aug 2024 02:35:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 10 May 2024 20:34:05 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fa7d67ee7ed8dce1df075993e6b6736b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| vppu0b2tqyxb.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2vppu0b2tqyxb.n4.adsco.re/ IP38.132.109.115:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: vppu0b2tqyxb.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| v1.rsoccerlink.online/favicon.ico | 188.114.97.1 | 200 OK | 0 B |
URL GET HTTP/3v1.rsoccerlink.online/favicon.ico IP188.114.97.1:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGoogle Trust Services LLC Subjectrsoccerlink.online FingerprintB5:FC:73:5E:46:A1:FB:7B:0A:66:87:B1:A3:37:E3:E2:A3:03:53:86 ValidityWed, 01 May 2024 09:40:19 GMT - Tue, 30 Jul 2024 09:40:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: v1.rsoccerlink.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/34/0/soccer/34
Cookie: XSRF-TOKEN=eyJpdiI6ImkwU1dGa1ZsOGNoZWZwSEw1VVQxOUE9PSIsInZhbHVlIjoiUkJaa2ZITXc4ME41RDFHejFyUDF6THZSV0o2ZXlGY0ZVRThsOWtMSVhMUEtZbE9BTUJ1UmRWem01SEwrSFZqZkg2T00xRGNPeGcxb1dCdFQ0b0xzMk1QOTlGMkFMS083NWU0V0lzemlGRzV6NjRXYjJsR2dNdUFVMUNUeituSEkiLCJtYWMiOiI4NGY4MzEyN2Q3MzE1ZGFlMDVkMTNlNWVmMmYxYzE0ODQ1MDExMmUyMjNiM2FmOTM3ODY0MWQzMmFhNWI3Y2IyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkI0UVhVMWQ4dDltL0VySW80eUVsSVE9PSIsInZhbHVlIjoia3F3R29YZmc3dmZxYXNtZkRETlQ2Y0NNcVhCSUZNUEVvWnZoaVA1TStPOUVOZ1pieEpMaXNMa1F6TkwxWDRQZCt6NGRGVWEyZjZZbHZJQ1N5N1JFeHpZRnBNU2JDNVhYQytTWGdlemhCazV0UjVOOGVlOUdTK052OFpOamIrNU0iLCJtYWMiOiJjOWE1NDQ5MGZlZGNjODdkMWM1OGYxNzhiOWVmY2E4ZWM0YjFiMzYxMmUxMTlhZTRlZTJiZDEwYmVmOTlhOWRhIiwidGFnIjoiIn0%3D; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3775f6e5-03b1-4bf5-82d9-d1615201a41b%3A2%3A1; pp_main_c050cc7ee3eb2898736b2ac49e2c5c70=1; a=nwecXS02UXZtZOuqQTWxEbZ0CuJbR1Mm
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: image/x-icon
content-length: 0
last-modified: Tue, 08 Feb 2022 06:52:58 GMT
etag: "6202134a-0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6691
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w6JFeDlGx226cByDwz6HbikB2LmRib8Y%2FpG%2FuKz84JHQh7IhGtGG%2FIlc66j20BzQTScULOGq9I1m1DUd4wV4ndzw27BBW7g3oliL4j3z9Y9ZQKY3V3nL935ULX6XDD9GzNawENv%2FgCU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb543290db51d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4 | 45.133.44.10 | 200 OK | 655 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4 IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size655 kB (655007 bytes) Hash64511630475425ab2642b11927e3c174 8d74f2ca858ccf2c95fec517a670e62731d60880 95825df13f6eb19c869bd3b4ba602087fdca795b459f71ee59ca3347029f7594
GET /cti/7b/eb/7d/7beb7d5e82c0d2fbfd71d9cbf5b969b7/1711620618.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: video/mp4
content-length: 655007
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:10:26 GMT
etag: "66054212-9fe9f"
expires: Sun, 12 May 2024 20:34:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/8b/e2/73/8be2734de21d388b73a1f3ebac419869/1708070916.png | 45.133.44.10 | 200 OK | 9.6 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/8b/e2/73/8be2734de21d388b73a1f3ebac419869/1708070916.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 160 x 300, 8-bit/color RGB, non-interlaced Hashf4b4ca3c12e071e2ed34c45b115a596d 1d0ceb3795a94498dbe1c0d9901acaab4e5d9620 63ae1ee42758420be334adea66b12ade084577e7605a617b699bd40c34529dd5
GET /cti/8b/e2/73/8be2734de21d388b73a1f3ebac419869/1708070916.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: image/png
content-length: 9629
server: nginx/1.21.6
last-modified: Fri, 16 Feb 2024 08:08:45 GMT
etag: "65cf180d-259d"
expires: Sun, 12 May 2024 20:34:05 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| umwv2qvvoti5.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2umwv2qvvoti5.n4.adsco.re/ IP38.132.109.115:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: umwv2qvvoti5.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:06 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg | 45.133.44.10 | 200 OK | 25 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 320x50, components 3 Hashd465d02b90e928dfd9d9846e102a9dac 22f7333777bec813bd9a7b870913a2b79b6d2fe4 e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:06 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Sun, 12 May 2024 20:34:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| blockadsnot.com/szaxytuonmgrfadqp?npSRacuF=BQLyAAAAAAAACZUAAk_ZWKxNrZa0uZx3pw0SPPGqOhGU3bYNWSBSXy8s14Itrfa2K-lXVarzOFO45Jq0vNFtqyuwRd2MepnpT7iv6Xj3TxDzW_xq2Bno9oCu9b4_NWp6r7_fzDJ5RkCNVIYvViDNN4ZNDcyctJ5rPvqkMmK3DQj-a6NVXvePAXcIa2sunII7pPiJsNsTZFpfV4FrwezvfK6S6Dstf6Zu9QASGXKw8Lis5aOvH-3kJVnDSHgyAm9SAy8hfdtzwFo_DJpZ1354hnQkwP2C1RBsG1y0VEgniJwbnD_uVoYfAeY9xYdkxb_xDXJcAT-dqm711aoNQMykXG5UJ6hn78P1owdq5Rq13SngiJ22jCvcaIQ8Xl6eWR0y42wDTQmvtI0YAbVtnLH0SKlkQ2I_SKGBvyCN9E-HMkzCmTAjPvNcxXZUPtgxAA_tk7sndyTHFol1sz4FVAlZMrTBYaGUg1OEQ5Hz3gIPnQMvCgR0BPnupp1wZiZVnT8mTkuwaDFqHUhDYIKS6Ebgxv0mMPJkFV4OCtoF_0JjdsltDU_127ORGXOayO87IBMK3Z9IQ4u1VzkT0R6F8_VJ-mNZMv6HtaOLltnQLv13RjfOXxi96DviYY7PSXl3g97YgqmYOSwdk7yWVw0GuwqgHKWqz5tDsaOOvtGUsoFLCcALeJAkTr4e8hnopz1C8IdOUFG_IRh8VMT8poDRd37ugiY5vXTy5uJ3j_ax-0L0zuPGk35Ho4KHmpPXs7ea0PVJcjCLytFyE4bRdoRusRxQM2RJPj4hojj5v6jX7fyI6QcrIW_gSH3hylAdFoMPhbhOsDA-MCj3rrzu4_xWgw7FvMmw7Aqi3zNEogDnowmVjzc9I_niJ7YKSp3YInEp5bn0Ne_XbRm6baU2n7DiZZUbSN521Dht9WDtukZCWdZf2739Zbg-hu74Ma0j14v14N8dDULzvRJ0k7SoILAqLe35ewUZwnB59-ifUzR3vOdR4FyCb2HqK7bMsAvLmxd8&eREmkPdU=4&MkwIGAie=5096687&fDHAmjSh=&yQINmDhq=0,0&nHrpuySt=&wWzFAJoe=&s=1280,1024,1,1280,1024,0 | 208.95.112.254 | 200 OK | 44 B |
URL GET HTTP/2blockadsnot.com/szaxytuonmgrfadqp?npSRacuF=BQLyAAAAAAAACZUAAk_ZWKxNrZa0uZx3pw0SPPGqOhGU3bYNWSBSXy8s14Itrfa2K-lXVarzOFO45Jq0vNFtqyuwRd2MepnpT7iv6Xj3TxDzW_xq2Bno9oCu9b4_NWp6r7_fzDJ5RkCNVIYvViDNN4ZNDcyctJ5rPvqkMmK3DQj-a6NVXvePAXcIa2sunII7pPiJsNsTZFpfV4FrwezvfK6S6Dstf6Zu9QASGXKw8Lis5aOvH-3kJVnDSHgyAm9SAy8hfdtzwFo_DJpZ1354hnQkwP2C1RBsG1y0VEgniJwbnD_uVoYfAeY9xYdkxb_xDXJcAT-dqm711aoNQMykXG5UJ6hn78P1owdq5Rq13SngiJ22jCvcaIQ8Xl6eWR0y42wDTQmvtI0YAbVtnLH0SKlkQ2I_SKGBvyCN9E-HMkzCmTAjPvNcxXZUPtgxAA_tk7sndyTHFol1sz4FVAlZMrTBYaGUg1OEQ5Hz3gIPnQMvCgR0BPnupp1wZiZVnT8mTkuwaDFqHUhDYIKS6Ebgxv0mMPJkFV4OCtoF_0JjdsltDU_127ORGXOayO87IBMK3Z9IQ4u1VzkT0R6F8_VJ-mNZMv6HtaOLltnQLv13RjfOXxi96DviYY7PSXl3g97YgqmYOSwdk7yWVw0GuwqgHKWqz5tDsaOOvtGUsoFLCcALeJAkTr4e8hnopz1C8IdOUFG_IRh8VMT8poDRd37ugiY5vXTy5uJ3j_ax-0L0zuPGk35Ho4KHmpPXs7ea0PVJcjCLytFyE4bRdoRusRxQM2RJPj4hojj5v6jX7fyI6QcrIW_gSH3hylAdFoMPhbhOsDA-MCj3rrzu4_xWgw7FvMmw7Aqi3zNEogDnowmVjzc9I_niJ7YKSp3YInEp5bn0Ne_XbRm6baU2n7DiZZUbSN521Dht9WDtukZCWdZf2739Zbg-hu74Ma0j14v14N8dDULzvRJ0k7SoILAqLe35ewUZwnB59-ifUzR3vOdR4FyCb2HqK7bMsAvLmxd8&eREmkPdU=4&MkwIGAie=5096687&fDHAmjSh=&yQINmDhq=0,0&nHrpuySt=&wWzFAJoe=&s=1280,1024,1,1280,1024,0 IP208.95.112.254:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerSectigo Limited Subjectblockadsnot.com Fingerprint96:00:00:44:50:47:F4:4D:23:DB:EE:86:80:A0:C4:5F:3A:EA:F5:03 ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /szaxytuonmgrfadqp?npSRacuF=BQLyAAAAAAAACZUAAk_ZWKxNrZa0uZx3pw0SPPGqOhGU3bYNWSBSXy8s14Itrfa2K-lXVarzOFO45Jq0vNFtqyuwRd2MepnpT7iv6Xj3TxDzW_xq2Bno9oCu9b4_NWp6r7_fzDJ5RkCNVIYvViDNN4ZNDcyctJ5rPvqkMmK3DQj-a6NVXvePAXcIa2sunII7pPiJsNsTZFpfV4FrwezvfK6S6Dstf6Zu9QASGXKw8Lis5aOvH-3kJVnDSHgyAm9SAy8hfdtzwFo_DJpZ1354hnQkwP2C1RBsG1y0VEgniJwbnD_uVoYfAeY9xYdkxb_xDXJcAT-dqm711aoNQMykXG5UJ6hn78P1owdq5Rq13SngiJ22jCvcaIQ8Xl6eWR0y42wDTQmvtI0YAbVtnLH0SKlkQ2I_SKGBvyCN9E-HMkzCmTAjPvNcxXZUPtgxAA_tk7sndyTHFol1sz4FVAlZMrTBYaGUg1OEQ5Hz3gIPnQMvCgR0BPnupp1wZiZVnT8mTkuwaDFqHUhDYIKS6Ebgxv0mMPJkFV4OCtoF_0JjdsltDU_127ORGXOayO87IBMK3Z9IQ4u1VzkT0R6F8_VJ-mNZMv6HtaOLltnQLv13RjfOXxi96DviYY7PSXl3g97YgqmYOSwdk7yWVw0GuwqgHKWqz5tDsaOOvtGUsoFLCcALeJAkTr4e8hnopz1C8IdOUFG_IRh8VMT8poDRd37ugiY5vXTy5uJ3j_ax-0L0zuPGk35Ho4KHmpPXs7ea0PVJcjCLytFyE4bRdoRusRxQM2RJPj4hojj5v6jX7fyI6QcrIW_gSH3hylAdFoMPhbhOsDA-MCj3rrzu4_xWgw7FvMmw7Aqi3zNEogDnowmVjzc9I_niJ7YKSp3YInEp5bn0Ne_XbRm6baU2n7DiZZUbSN521Dht9WDtukZCWdZf2739Zbg-hu74Ma0j14v14N8dDULzvRJ0k7SoILAqLe35ewUZwnB59-ifUzR3vOdR4FyCb2HqK7bMsAvLmxd8&eREmkPdU=4&MkwIGAie=5096687&fDHAmjSh=&yQINmDhq=0,0&nHrpuySt=&wWzFAJoe=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb3
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Fri, 10 May 2024 20:34:06 GMT
X-Firefox-Spdy: h2
|
|
| displayvertising.com/qeevinzunogxirhw?RwUucCpK=BQLyAAAAAAAACZUAAryvTsBVSp56sAk-gK8riW9AX8sVY2g_JuS_tQYBSoj1fyFL_xam9EYy3Hb1FBPKfrKU8qAQBx0G8aP5N0G_G_-a6wuN8IckD9oS0HlIP2qYOx7MOqz5R9Q9zWjPARzaS3zYRPEh0YQcts4hG3Yp8gZPbAa2kvqH8Ib8rOwnyptFabqqTCUPZPP0xrZF-tv_lJiadvyxvICOEgD3DErJ3UwEU1kYELb2JseeqeMLCMJ5u8KXFncktSGPu7h06rFnbeM0kMAbqbsGGMccG3MgPrulOJdz0bk_1dr8_hdea9_PNUC7WJhVCT96ONZK9uVmFX9QIgRhJ-sRNDfXCBx93da7QFLrIEk8RzgvzgrlMb6WabEkIPU5zCyn5NiRhOJ2lFlxdzpfM8G2ESrn1EM1yUERbll35G6UnxYg9zEeGd_82FLa2xQdLxO4679JCN8Rs-963Q3HsV0tID-tM7zwvxif8uKUvfCvM8IkDl7FfdWPKHaUNmFtKjx7CDC7TJBperzpyTCVn4k_GQvQewlFTmhA1ZCAXgHa9b-DochFAssOdGm27-aANpBJwW9twiYyT-kWJDv7wHnBhLWPDqsn7p246FDWdbwKAKHoSAVd5svzNVOcvt3-pk9uX5AwlLAjm_4-Ka0MkwPt0M-eScDlZ1yKF9ZaoM-8xHzFHpl8zOifjxTNSmhUtVyA0Ou1ftuJKWUqORMreejZvb3oTS9dFCUFF4hcIcEoiWto6N7hWsMZBSu2IrxuYYHhzKbdce0F_xxTjCmer_0qnxIaFlNhpmdvOT4g5Z0pCIsH8xxmobxQpFpxkqkzKq63vtbeK51QzWwO_jcuNzAzX6kEfKHzTkwSF2ZxgnqLiv6pl3ukh4Io_E0655Q6zke047YlzYxzOvKpLsMl2LXgkJ2uge-k5XtHGtB5_dnqTJw_WDW_KSL1v_RVZLPZxn3QqnK500dPd3wgvPTnETJohjXfV-8ZKQF2vUsDNISQy4JD7RSnZo9t&MSqtElIr=4&CgRIZref=5090843&lOtHJLYD=&oclXHYWJ=0,0&pPETrDQs=&hEpjcwCV=https%3A%2F%2Fv1.rsoccerlink.online%2F&s=1280,1024,1,1280,1024,1 | 216.59.56.9 | 200 OK | 44 B |
URL GET HTTP/2displayvertising.com/qeevinzunogxirhw?RwUucCpK=BQLyAAAAAAAACZUAAryvTsBVSp56sAk-gK8riW9AX8sVY2g_JuS_tQYBSoj1fyFL_xam9EYy3Hb1FBPKfrKU8qAQBx0G8aP5N0G_G_-a6wuN8IckD9oS0HlIP2qYOx7MOqz5R9Q9zWjPARzaS3zYRPEh0YQcts4hG3Yp8gZPbAa2kvqH8Ib8rOwnyptFabqqTCUPZPP0xrZF-tv_lJiadvyxvICOEgD3DErJ3UwEU1kYELb2JseeqeMLCMJ5u8KXFncktSGPu7h06rFnbeM0kMAbqbsGGMccG3MgPrulOJdz0bk_1dr8_hdea9_PNUC7WJhVCT96ONZK9uVmFX9QIgRhJ-sRNDfXCBx93da7QFLrIEk8RzgvzgrlMb6WabEkIPU5zCyn5NiRhOJ2lFlxdzpfM8G2ESrn1EM1yUERbll35G6UnxYg9zEeGd_82FLa2xQdLxO4679JCN8Rs-963Q3HsV0tID-tM7zwvxif8uKUvfCvM8IkDl7FfdWPKHaUNmFtKjx7CDC7TJBperzpyTCVn4k_GQvQewlFTmhA1ZCAXgHa9b-DochFAssOdGm27-aANpBJwW9twiYyT-kWJDv7wHnBhLWPDqsn7p246FDWdbwKAKHoSAVd5svzNVOcvt3-pk9uX5AwlLAjm_4-Ka0MkwPt0M-eScDlZ1yKF9ZaoM-8xHzFHpl8zOifjxTNSmhUtVyA0Ou1ftuJKWUqORMreejZvb3oTS9dFCUFF4hcIcEoiWto6N7hWsMZBSu2IrxuYYHhzKbdce0F_xxTjCmer_0qnxIaFlNhpmdvOT4g5Z0pCIsH8xxmobxQpFpxkqkzKq63vtbeK51QzWwO_jcuNzAzX6kEfKHzTkwSF2ZxgnqLiv6pl3ukh4Io_E0655Q6zke047YlzYxzOvKpLsMl2LXgkJ2uge-k5XtHGtB5_dnqTJw_WDW_KSL1v_RVZLPZxn3QqnK500dPd3wgvPTnETJohjXfV-8ZKQF2vUsDNISQy4JD7RSnZo9t&MSqtElIr=4&CgRIZref=5090843&lOtHJLYD=&oclXHYWJ=0,0&pPETrDQs=&hEpjcwCV=https%3A%2F%2Fv1.rsoccerlink.online%2F&s=1280,1024,1,1280,1024,1 IP216.59.56.9:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subjectdisplayvertising.com FingerprintAD:50:CF:4F:03:26:91:93:74:1B:D5:8A:D0:EB:44:0D:13:A6:DF:96 ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /qeevinzunogxirhw?RwUucCpK=BQLyAAAAAAAACZUAAryvTsBVSp56sAk-gK8riW9AX8sVY2g_JuS_tQYBSoj1fyFL_xam9EYy3Hb1FBPKfrKU8qAQBx0G8aP5N0G_G_-a6wuN8IckD9oS0HlIP2qYOx7MOqz5R9Q9zWjPARzaS3zYRPEh0YQcts4hG3Yp8gZPbAa2kvqH8Ib8rOwnyptFabqqTCUPZPP0xrZF-tv_lJiadvyxvICOEgD3DErJ3UwEU1kYELb2JseeqeMLCMJ5u8KXFncktSGPu7h06rFnbeM0kMAbqbsGGMccG3MgPrulOJdz0bk_1dr8_hdea9_PNUC7WJhVCT96ONZK9uVmFX9QIgRhJ-sRNDfXCBx93da7QFLrIEk8RzgvzgrlMb6WabEkIPU5zCyn5NiRhOJ2lFlxdzpfM8G2ESrn1EM1yUERbll35G6UnxYg9zEeGd_82FLa2xQdLxO4679JCN8Rs-963Q3HsV0tID-tM7zwvxif8uKUvfCvM8IkDl7FfdWPKHaUNmFtKjx7CDC7TJBperzpyTCVn4k_GQvQewlFTmhA1ZCAXgHa9b-DochFAssOdGm27-aANpBJwW9twiYyT-kWJDv7wHnBhLWPDqsn7p246FDWdbwKAKHoSAVd5svzNVOcvt3-pk9uX5AwlLAjm_4-Ka0MkwPt0M-eScDlZ1yKF9ZaoM-8xHzFHpl8zOifjxTNSmhUtVyA0Ou1ftuJKWUqORMreejZvb3oTS9dFCUFF4hcIcEoiWto6N7hWsMZBSu2IrxuYYHhzKbdce0F_xxTjCmer_0qnxIaFlNhpmdvOT4g5Z0pCIsH8xxmobxQpFpxkqkzKq63vtbeK51QzWwO_jcuNzAzX6kEfKHzTkwSF2ZxgnqLiv6pl3ukh4Io_E0655Q6zke047YlzYxzOvKpLsMl2LXgkJ2uge-k5XtHGtB5_dnqTJw_WDW_KSL1v_RVZLPZxn3QqnK500dPd3wgvPTnETJohjXfV-8ZKQF2vUsDNISQy4JD7RSnZo9t&MSqtElIr=4&CgRIZref=5090843&lOtHJLYD=&oclXHYWJ=0,0&pPETrDQs=&hEpjcwCV=https%3A%2F%2Fv1.rsoccerlink.online%2F&s=1280,1024,1,1280,1024,1 HTTP/1.1
Host: displayvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb4
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Fri, 10 May 2024 20:34:06 GMT
X-Firefox-Spdy: h2
|
|
| vppu0b2tqyxb.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2vppu0b2tqyxb.s4.adsco.re/ IP185.200.116.51:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: vppu0b2tqyxb.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://v1.rsoccerlink.online
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:06 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| umwv2qvvoti5.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2umwv2qvvoti5.s4.adsco.re/ IP185.200.116.51:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: umwv2qvvoti5.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:07 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=u6zFw3ajcBL655fnfVs58Q4CbqaHmR-x6U8_pFfc70qNB76B9MNoFS1q51VSYNVx3PSFkk7p80UovXVEJkTA-O7U-PBf4ppVYKTwB1DBvfgZp-b2f4QPaGWCiq-pdChU
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 10 May 2024 20:32:10 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 131
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 172.67.180.87 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP172.67.180.87:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d23b17cf0cb9e6da53129b0a57e571a4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 10 May 2024 20:34:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZYZr3%2BwX5tvKHQYGDStnfdwG4R9UB25mkXF6sCWA%2F5XXVocn3uj%2FWAk87DWElklJ4UlAFhC4OwjSYVHdCZ2GoCdx3fPbrn0xAA7aw5EQH4PBEO%2F8wXFiVFYLYmhThpwzNNdGNdHgNjQdrwhbgWd8rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb536c8aab524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s1.sportea.link/live/channel.php?ch=ch27 | 172.67.144.10 | 200 OK | 9.6 kB |
URL GET HTTP/3s1.sportea.link/live/channel.php?ch=ch27 IP172.67.144.10:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerGoogle Trust Services LLC Subjectsportea.link Fingerprint6D:90:E9:6F:7B:4B:5A:76:B2:A6:B6:34:3A:4F:01:31:D3:FA:83:AB ValidityWed, 10 Apr 2024 20:52:25 GMT - Tue, 09 Jul 2024 20:52:24 GMT
File typeJavaScript source, ASCII text, with very long lines (9882), with no line terminators Hash6b6c74e80b2db65396675af186da2f85 63522d697a77ffa6bd5627f87f429c81f6a320b1 4ce2e2a184d01aa8abc958e071aa812db5a4901e36bb66ba669024ee40c844aa
GET /live/channel.php?ch=ch27 HTTP/1.1
Host: s1.sportea.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/live/embed.php?ch=ch27
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.5
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JKg8xpER5VqJbmMg2h%2F%2BtKdwO2s5M9iixyFwK16aIsA8%2FxVMY4NqAHwBM2sTnaYvNo81JvKruDGdh2cKeTQtIWK1Cs9%2FJ2qP1xvu5W%2FcAg3P1NEQLSPmHzJ6k5KTKaW7aU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881cb53a1ac30b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-YEDGCT18SG | 142.250.74.72 | 200 OK | 309 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-YEDGCT18SG IP142.250.74.72:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size309 kB (308620 bytes) Hash88887c4bc9c506f8fb432f98b150ceee 27d9e9720005641b738f1adddfdb082a891b155a 432b9d9b116e132b7a5268a5a00ed87e62adabed91da4ea8e82e5aa0cc3a84ed
GET /gtag/js?id=G-YEDGCT18SG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 10 May 2024 20:34:04 GMT
expires: Fri, 10 May 2024 20:34:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| v1.rsoccerlink.online/34/0/soccer/34 | 188.114.97.1 | 200 OK | 6.8 kB |
URL User Request GET HTTP/2v1.rsoccerlink.online/34/0/soccer/34 IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectrsoccerlink.online FingerprintB5:FC:73:5E:46:A1:FB:7B:0A:66:87:B1:A3:37:E3:E2:A3:03:53:86 ValidityWed, 01 May 2024 09:40:19 GMT - Tue, 30 Jul 2024 09:40:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7335), with no line terminators Hash65459ad0cea91fbfb7b590b6f4ef0722 8db9a5b3a48b9ee865c27785a3bdfb2bdcc3d21a ad8bdcbc17864ee83ef3a694e6555447b3ec64c40f783e4c1b6339ead86d6443
GET /34/0/soccer/34 HTTP/1.1
Host: v1.rsoccerlink.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:02 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImkwU1dGa1ZsOGNoZWZwSEw1VVQxOUE9PSIsInZhbHVlIjoiUkJaa2ZITXc4ME41RDFHejFyUDF6THZSV0o2ZXlGY0ZVRThsOWtMSVhMUEtZbE9BTUJ1UmRWem01SEwrSFZqZkg2T00xRGNPeGcxb1dCdFQ0b0xzMk1QOTlGMkFMS083NWU0V0lzemlGRzV6NjRXYjJsR2dNdUFVMUNUeituSEkiLCJtYWMiOiI4NGY4MzEyN2Q3MzE1ZGFlMDVkMTNlNWVmMmYxYzE0ODQ1MDExMmUyMjNiM2FmOTM3ODY0MWQzMmFhNWI3Y2IyIiwidGFnIjoiIn0%3D; expires=Fri, 10 May 2024 22:34:02 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IkI0UVhVMWQ4dDltL0VySW80eUVsSVE9PSIsInZhbHVlIjoia3F3R29YZmc3dmZxYXNtZkRETlQ2Y0NNcVhCSUZNUEVvWnZoaVA1TStPOUVOZ1pieEpMaXNMa1F6TkwxWDRQZCt6NGRGVWEyZjZZbHZJQ1N5N1JFeHpZRnBNU2JDNVhYQytTWGdlemhCazV0UjVOOGVlOUdTK052OFpOamIrNU0iLCJtYWMiOiJjOWE1NDQ5MGZlZGNjODdkMWM1OGYxNzhiOWVmY2E4ZWM0YjFiMzYxMmUxMTlhZTRlZTJiZDEwYmVmOTlhOWRhIiwidGFnIjoiIn0%3D; expires=Fri, 10 May 2024 22:34:02 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=me%2FNvH7RXLkgcPVZmBJJk0YARtCu0kKk9eHYh4AbiuqRx54WiUrNRBsBOQjYGatU6ghaSCNnPgt17Xv2r5Ao3kjP21MuncelJd0ZkOiv0dS8HszHSXo3ObX%2FnSFNioB%2FZM1gyHUwUo8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881cb52cbd6bb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/@clappr/player@0.4.7/dist/clappr.min.js | 151.101.193.229 | 200 OK | 481 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/@clappr/player@0.4.7/dist/clappr.min.js IP151.101.193.229:443
Requested byhttps://s1.sportea.link/live/channel.php?ch=ch27 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size481 kB (480925 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/@clappr/player@0.4.7/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-length: 133477
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.4.7
x-jsd-version-type: version
etag: W/"7569d-g/bZEgP/0XCbPxVx7RLqUXpxxzU"
content-encoding: br
accept-ranges: bytes
age: 3014467
date: Fri, 10 May 2024 20:34:04 GMT
x-served-by: cache-fra-etou8220068-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&j= | 141.101.120.10 | 200 OK | 2.1 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&j= IP141.101.120.10:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2163), with no line terminators Hash8811c1da7d7cd9a89cf1c9d88cf153c1 5dd7a95e6eee435a18d261757a4aa4aeea7ae472 0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Fv1.rsoccerlink.online%2F34%2F0%2Fsoccer%2F34&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:03 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Fri, 10-May-2024 21:57:23 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
df=1715373243; Domain=dtscout.com; Expires=Sun, 18-Aug-2024 20:34:03 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.254
expires: Fri, 10 May 2024 20:34:02 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fn4%2Fjv0ZAhPQurproKjxIt4PPpQBrUbf7jxUdiox%2BWyq7Gd4mEwZibmjEG3753jYeXCDtftswNk7AfGG1CbKQ0UM6SCYe1yZRALpSsLQU8khFtQTnTTS5bIPFPTxNfM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881cb5329d118d62-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=v1.rsoccerlink.online&_ss=3eutbt2e2g&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=mz84&_cb=_dtspv.c | 141.101.120.10 | 200 OK | 51 B |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=v1.rsoccerlink.online&_ss=3eutbt2e2g&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=mz84&_cb=_dtspv.c IP141.101.120.10:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Hashbe537828cd28394a8db3d29caf562c32 b7ce9a2e97c41b37fa4eb6b400d098f95a3e828b e3970704f6deaff954aebae471b4a676abbefbb8f02094036a5866bf8b58a1ae
GET /pv/?_a=v&_h=v1.rsoccerlink.online&_ss=3eutbt2e2g&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=mz84&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Cookie: m=1; df=1715373243
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:03 GMT
content-type: application/javascript
x-t: 0.169
x-c: 0
expires: Fri, 10 May 2024 20:34:02 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hj8VOLrX6AXoK5ynwdR3iqREZ8kLr5hLcZIHiQ96EqwL97lnfSBQ%2BdqWaZZAPjXyW7e0fuRPXS7JDrobV6wAHNkCKZh4w1%2FDLn2KM2rH5fejgjyTc9LEQsVN%2BxlaRRQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881cb5348e8b8d62-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 82 kB |
IP104.17.167.186:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 10 Jun 2024 20:34:05 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 440243
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb53fcb7a56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| waust.at/s.js | 104.26.4.7 | 200 OK | 8.6 kB |
IP104.26.4.7:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (8826), with no line terminators Hashe035263c3e1d7ccd4168070e0954df82 8b47f35dfcada03dd10e1970081ca0b622bd94b9 3efdd12bf82a9d8985d85246e53a8150bc955948a5f0a4a2882ffc6242fdaa7c
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:03 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:26 GMT
etag: W/"63c0411e-2170"
expires: Sat, 11 May 2024 19:59:29 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dAgmMsguQDWGuM%2Fs%2B7melQ6BviomY4w6Cb%2FZOTc2dSr6sCj0WxvjSI5QXjn884gOiBHkXFvOmFOS0WhzYvO1HXjLq4x0XfBT959HhOr6HqHkQy0ITGO06sfJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb5314c67568d-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 82 kB |
IP104.17.167.186:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 10 Jun 2024 20:34:05 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 440243
vary: Accept-Encoding
server: cloudflare
cf-ray: 881cb53f6add56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| umwv2qvvoti5.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2umwv2qvvoti5.l4.adsco.re/ IP185.200.118.51:443
Requested byhttps://s1.sportea.link/live/embed.php?ch=ch27 CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: umwv2qvvoti5.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://s1.sportea.link
DNT: 1
Connection: keep-alive
Referer: https://s1.sportea.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:05 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| s1.sportea.link/live/embed.php?ch=ch27 | 172.67.144.10 | 200 OK | 4.9 kB |
URL GET HTTP/2s1.sportea.link/live/embed.php?ch=ch27 IP172.67.144.10:443
Requested byhttps://v1.rsoccerlink.online/34/0/soccer/34 CertificateIssuerGoogle Trust Services LLC Subjectsportea.link Fingerprint6D:90:E9:6F:7B:4B:5A:76:B2:A6:B6:34:3A:4F:01:31:D3:FA:83:AB ValidityWed, 10 Apr 2024 20:52:25 GMT - Tue, 09 Jul 2024 20:52:24 GMT
File typeJavaScript source, ASCII text, with very long lines (5034), with no line terminators Hash7cc8f02798b6d258687ccf20b39a6ac9 36da84d75ed1c0587fc4792ff19fb81aae0353f8 f9e200c353d7554f3be7118da5060d1ede087e7d0c34ab054bfd3966d8099901
GET /live/embed.php?ch=ch27 HTTP/1.1
Host: s1.sportea.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://v1.rsoccerlink.online/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 20:34:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.5
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H1LG2Bw0U4GIViKzPn3XMClMSBfFnaZrUIddsv7yIREBWnoPQZEWbFC2fGa8yw1g6wdpz3f%2BLvZEL09mT9Yuz7CUYAeZEro8X4%2FLCp8BIvkzUssD5L0EQkDJQ9HmEQGugx4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881cb538addb56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|