| rojadirectaenvivo.me/css/layout.css |  104.21.2.107 | 200 OK | 2.4 kB |
URL GET HTTP/3rojadirectaenvivo.me/css/layout.css IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typeASCII text, with very long lines (7770), with CRLF line terminators Hash8a26ae062269d5602d2c2312bd65f223 2e5145c026cda2e885ab8b84ba41ec8f16737f4c eaa0f1602f8e5aaa3bbb4560bbe9a76d0fb21ed367f513a0b254b53ece1cd3fa
GET /css/layout.css HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: text/css
content-length: 2363
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 16:32:09 GMT
last-modified: Mon, 11 Sep 2023 11:09:54 GMT
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 105210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LFX%2Bnq9rl43pvZDbauwq4lGhUWwrEGfCBt9dQL6%2F%2BSYUEmuYLJpIBNq811gIkbZpD7RIPsgjaRmN8eXETw%2BcF7%2FDvs7ESL2ATay%2FuJm%2B%2FSxMfhitNBgPjNRjU9tZopXVHT6lBgmMqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2f5be4a185699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/bkb.png | 104.21.2.107 | 200 OK | 3.6 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/bkb.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced Hash8193fe6a11d22bae57cd22b8044393ba 211c1252829dac143891614ecd13087236d1d247 6058516053f76890ebfe5213962ee3e6a5b5450d83584dc286388c1a0373435b
GET /JPG/bkb.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 3595
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 16:14:48 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 19851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5TnAZsYl0txtItqzL4mmB6A3BS9FaY06NMG05valuBebbEZdGA%2Fqu%2BDOtDa1H14FS%2BUemxtofrUylATDhXewFCjEuTtoWOuSf92aNvuMKCkir8EPElvb%2FnHkC5h%2FAJuD8z5VtxVNOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a245699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/soccer.png | 104.21.2.107 | 200 OK | 16 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/soccer.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashcb1bf3de8dae7f83318bf68316a26ebf e05af331f5055a1663b1ae2b8693e4afc821c936 76e35868c867ea53511cde7f0b105e440697899fcca62c9ccae9a59e4bc56120
GET /JPG/soccer.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 16244
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 17:40:42 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 14697
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6vGdUFPJ%2FXzeejMzhlTNsK9lPajWhF7mDy%2Bsz8%2FtCydl5aH4A%2Bzze3AkDgM2tpizgvO5G%2Fq2tw%2BlkKLXLxUSIjUj7MUyiaSz8wmZ99mzxTky%2Fd6m04VdF06UXJXtDR2CIXkkr7xf6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a295699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/euro.png | 104.21.2.107 | 200 OK | 1.3 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/euro.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced Hashb6acb5f5cd7dd6c4ac7f71b2630abd72 c46ce0eb64195bfde499ac03f131b227726ad1ea 222fc51e39bbc40a2ccefc687995d795ca1b4f45952f0af512f53e6f6a0a77f8
GET /JPG/euro.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 1261
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 16:32:09 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 105210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5xnA%2B8WONrnvDnkNYX4ThHzlMJzYuvNOomeKXIbF3eYclIRUm1zgLwhPwuYSc30%2BiRbpuSaS7yEXmXJoqX4dCz3rBnLWAJTTegOUnz%2FWN4vGyx%2FISmzSGwJQPI9AbJvTcDAJ2qUGJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a265699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/champions.png | 104.21.2.107 | 200 OK | 16 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/champions.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash0d91fbff4e60617aed1771fe44a79f52 54bf23e08aa68bca910dbbf7663da0ad12f92f74 a65ae0b6e7870616d068dc45d031ffc087d5a4d1bbff02ea956d5c2178ebf740
GET /JPG/champions.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 16155
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 16:14:48 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 19851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nqXVnBzNqQwZ7wZ%2BBb0RZL%2Bnk696Zkh2%2FiGLOcejx%2FMHkSm9BaWAQF%2BZ7tdSWUOG1JIDqbieRYEolpu9A601R5VAgeZ9JuSVeE%2Byl2D7Os3mw6%2FJU4f0%2FgWL3N6Lwo8P50DqPtYk%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a2d5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/co.png | 104.21.2.107 | 200 OK | 3.1 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/co.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hashda1c17fdcd4be2863e829d028697d9c7 2f818025fecb5a0449baa894618fcc9ee62ac5d9 7f4d0c88465d28ff5089e8ec21ca903fdc76f06dd284197a93c2b76d4249576d
GET /JPG/co.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 3065
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 16:32:09 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 105210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3qVdMSF0A%2BSQbe0gqoG%2FnDVT%2BZI15HF3FfJ18KfaL17AMnU6J%2F5mOZJVAwdkUWSm1p9N%2BHldwtgH42H0qv03O3B8ovX4skuqQ95y8edZn0L1MUS%2FIgde4RlLF9%2B4YIrf%2FIZQM53sPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a2f5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/nhl.png | 104.21.2.107 | 200 OK | 2.5 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/nhl.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash7b6ab09745c29ad6bdd7c2ebce043298 2e8236a3c639566b52bd915552da0a79cadaea0d e80634d7efdc7ed6c5ffd54531fc96837bbb953ffd762420eb8fe45fe5a3b66c
GET /JPG/nhl.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 2547
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 16:14:48 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 19851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iXIaZ2IQSGSlAFOmsli9SD5UsTjYau6FiYseVRw%2FydU9ahooKqnvUCxD8xLbfb90SiFt1%2FtT8gYJrlZhug3aeLtT9pR9FFnmSWnOXU8WGOlJBqaqy4P%2Bshv9dXWDdRyjG40pE16U8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be5a315699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/nba.png | 104.21.2.107 | 200 OK | 712 B |
URL GET HTTP/3rojadirectaenvivo.me/JPG/nba.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 11 x 16, 8-bit colormap, non-interlaced Hash3654a53a1200e3edea84aa58a1632f3e 3345d4d7c2f3dcc08f1361adb90f6d6233d7213f 4d61798d4793b5ccbb1c39e473062606da2e9c2775eb2c6b203de9dade2bb6ae
GET /JPG/nba.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 712
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 16:14:48 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 19851
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lapOUg9%2FLHZTa08sZpC4BTqi5p9OaczjNQIu9zr8Mrbc9lPcMuhya%2FohNRB7LZGOJgGBLRPTiVRpf3Is40KtLdIxMGnPGFqS%2BYyZey7ywmdePO%2B6j0EY9d0zlC5NjMPfdeFJqZ89Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be6a345699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/ec.png | 104.21.2.107 | 200 OK | 901 B |
URL GET HTTP/3rojadirectaenvivo.me/JPG/ec.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 11, 8-bit colormap, non-interlaced Hashf60b51921f9951075f1bd6fb7405c1b8 f41e7acab35035d6e650c69dc99deab225169b98 1da1f44ec3aa66448561d7fc4532bd75f82999ccab2f2268c7226578d4361c33
GET /JPG/ec.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 901
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 16:32:09 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 105210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W72Bg6UvXvicMa%2FCXsibpkzXgsmpUsSm4%2ByxuvyXrsTfm1XRadhQH4U%2BprDf03fifGN3DgZa2xoZCPLh1Rnpb%2FWVj3oZUx9IHgdBhWJMoZBHM8N%2F2RLmtsHHyAarBJAWsAFZmn9jjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be6a365699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rojadirectaenvivo.me/JPG/concacaf.png | 104.21.2.107 | 200 OK | 3.6 kB |
URL GET HTTP/3rojadirectaenvivo.me/JPG/concacaf.png IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typePNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced Hash3d307d2734d901fecbc146988e6e2265 b76309d9fd2476646fb9f66981508784e3d2a0f7 1706817d74d180134e053ebdb9e0b5ffe64712e6ca43e0f0f55c1d3092a03d71
GET /JPG/concacaf.png HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: image/png
content-length: 3595
cache-control: public, max-age=604800
expires: Tue, 07 May 2024 16:32:09 GMT
last-modified: Fri, 08 Sep 2023 06:51:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 105210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T4wqJDDV7tWnfe6l25CdwJCNSipoUVLxah4sB%2F%2BjDt0LT3umuKzgdYsaIP53%2FsAyWgyZ5OFqPZsFomH7Vi13X6rbyLBQ0HEW%2FY2kr25WMg7EfJAbgNIoSRs1qJWB5%2Ft6iZtgcTKKRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5be6a375699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg |  143.204.55.54 | 200 OK | 826 B |
URL GET HTTP/2i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg IP143.204.55.54:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerAmazon Subjectphotobucket.com Fingerprint77:D7:BB:F4:20:5A:4F:04:86:48:7C:71:75:1E:21:70:C4:15:AF:2E ValiditySat, 08 Jul 2023 00:00:00 GMT - Mon, 05 Aug 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image Hashb5bf4e501fadc5a18483c920c83c4fd2 d22c27d6ef90f5a066e50240ff523f466d4a44ba 63c4fb55153c4b5b4992afd26fba10cbf100c71048494fdd4bf6b2289a1f0e33
GET /albums/s282/theviejo/recurso_10_1.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 826
date: Wed, 01 May 2024 19:08:11 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_10_1.webp"
content-security-policy: script-src 'none'
expires: Thu, 01 May 2025 19:08:11 GMT
server: photobucket
x-amzn-trace-id: Root=1-6632931b-0ca7aac2291550151c04b449
x-request-id: usO44V_7-o_kuod8mKZAv
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZcwBq1Rdgjm6CikoT6xGyrqRZWydQvaWCg1VmzuxenV1NgNRfGW6hg==
age: 9449
vary: Accept, Origin
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-140929827-1 | 142.250.74.168 | 200 OK | 74 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-140929827-1 IP142.250.74.168:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash73e39e034aedaf48450003fe71eee84e 183e28347393e3f7f154acde9c6b1c0bd01ed7c9 5e79b028f97a10a866f5b21f828a570612bfb6446709ad078a483cefeda7106d
GET /gtag/js?id=UA-140929827-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 21:45:41 GMT
expires: Wed, 01 May 2024 21:45:41 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 May 2024 21:11:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-85811002-3 | 142.250.74.168 | 200 OK | 74 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-85811002-3 IP142.250.74.168:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hashdb9cbcd303863a37c33da75f75463028 7289c7f31410b149458b39da8de6e1e49dfee475 3ffd1ec7767095f47672c69239f9b6f28fda14ac733d2aba934c42ab9fc74e99
GET /gtag/js?id=UA-85811002-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 21:45:41 GMT
expires: Wed, 01 May 2024 21:45:41 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 May 2024 21:11:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74189
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 104.21.2.107 | 200 OK | 0 B |
URL User Request GET HTTP/2IP104.21.2.107:443
CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:41 GMT
content-type: text/html; charset=UTF-8
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZSIsbAJpAB37DGF%2BZ8FYUb0JIqHbkpc0hEDKg0ZmSRSEy8C2N3H6Mhs4vprFtCNpPE8Tlx%2BxIm%2BLAIsFVomqJCBkl9PyBQiFPfsDpafv36UIgoOc9mq6VO5yyRbId80fk97FKjMUcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2f5bfcbd85699-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| 1.bp.blogspot.com/-xuKwTRlyly4/XFMV3XmeFMI/AAAAAAAAD18/GUA4CxHQ7cUCttMVNSkon5gzFsVUwgCPQCLcBGAs/s1600/rojadirecta.png | 142.250.74.161 | 200 OK | 575 kB |
URL GET HTTP/21.bp.blogspot.com/-xuKwTRlyly4/XFMV3XmeFMI/AAAAAAAAD18/GUA4CxHQ7cUCttMVNSkon5gzFsVUwgCPQCLcBGAs/s1600/rojadirecta.png IP142.250.74.161:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com Fingerprint08:43:CF:E7:9C:1F:30:EA:9B:AD:8A:4E:2D:73:57:EA:80:DC:5B:E0 ValidityMon, 08 Apr 2024 07:01:25 GMT - Mon, 01 Jul 2024 07:01:24 GMT
File typePNG image data, 960 x 960, 8-bit/color RGB, non-interlaced Size575 kB (574574 bytes) Hashec3237cfd40aa51b0aefa1dd8b5e4909 39b23b51cce04aed0e83990159873082de512a04 b3af269c33f160344076b730e5650367e4f579ca3148833356bbd53a8d7bd12f
GET /-xuKwTRlyly4/XFMV3XmeFMI/AAAAAAAAD18/GUA4CxHQ7cUCttMVNSkon5gzFsVUwgCPQCLcBGAs/s1600/rojadirecta.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="rojadirecta.png"
x-content-type-options: nosniff
server: fife
content-length: 574574
x-xss-protection: 0
date: Wed, 01 May 2024 21:45:41 GMT
expires: Thu, 02 May 2024 21:45:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "vf60"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogblog.com/1kt/awesomeinc/body_background_dark.png | 216.58.207.233 | 200 OK | 106 B |
URL GET HTTP/2www.blogblog.com/1kt/awesomeinc/body_background_dark.png IP216.58.207.233:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint43:1F:49:42:7D:BA:4B:2E:1C:79:1D:C4:01:68:47:0E:C3:3F:0F:14 ValidityMon, 08 Apr 2024 06:31:59 GMT - Mon, 01 Jul 2024 06:31:58 GMT
File typePNG image data, 5 x 5, 1-bit colormap, non-interlaced Hash1de2f5d595cb35714e69a0f86e5f058a c1ecb1aa5b2112d67dbe4644594a984a8df8d933 50d8a5573603d9819f10428efb4bdb6ff418aedbeb830d19e8c848b8f1df8677
GET /1kt/awesomeinc/body_background_dark.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 106
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:02:09 GMT
expires: Fri, 03 May 2024 06:02:09 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 23:54:16 GMT
content-type: image/png
age: 488612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-0F3T3EDBGE&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 90 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-0F3T3EDBGE&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashac37a5cd8fc9f86af061473ce97116e6 0475830b09ccad8726a63077f3eee2a40ee06e03 9e26dee52c1d1ea0e17683a7e6e03379b2e929d107d02f8b8f45095ebdfb2e7f
GET /gtag/js?id=G-0F3T3EDBGE&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 21:45:41 GMT
expires: Wed, 01 May 2024 21:45:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| grunoaph.net/tag.min.js |  139.45.197.238 | 200 OK | 28 kB |
IP139.45.197.238:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerLet's Encrypt Subjectgrunoaph.net Fingerprint54:74:19:00:7A:EF:BC:7B:22:8C:ED:75:0E:E0:1A:59:11:13:4A:4E ValidityWed, 13 Mar 2024 05:08:21 GMT - Tue, 11 Jun 2024 05:08:20 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashc0a42ca809f297868c31761277b7842e 1f0e3a25517ada67fb5b3dd0e9cbe862f0c2a2c1 0e70cf781ca7063e40c103f3de35456c9955174b862ec1a26fca448fd08a4953
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:45:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 28334
content-encoding: br
x-trace-id: f5c6b648cb93993ac01652047f94df3b
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Wed, 01 May 2024 17:43:48 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| checkpagerank.net/pricon.php?key=7cfbbbb91aea2f0e4aaf6ab78f270286 | 96.30.9.108 | | 1.4 kB |
URL GET checkpagerank.net/pricon.php?key=7cfbbbb91aea2f0e4aaf6ab78f270286 IP96.30.9.108:0
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerLet's Encrypt Subjectcheckpagerank.net FingerprintFD:09:55:ED:C5:64:6B:11:45:66:71:1B:88:BD:87:5E:BE:AE:94:D7 ValidityThu, 04 Apr 2024 11:52:57 GMT - Wed, 03 Jul 2024 11:52:56 GMT
File typeGIF image data, version 89a, 180 x 60 Hasha3622459949d55dd6d3397607d1d2c18 f11d9c18230d4e24acea0a1eefb8791fbeaf76f0 a718e60d458a36af4fcd0679b6f2868c1db24b86c9a56ebe95ac3641de5a3ded
GET /pricon.php?key=7cfbbbb91aea2f0e4aaf6ab78f270286 HTTP/1.1
Host: checkpagerank.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=2592000
expires: Fri, 31 May 2024 21:45:41 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1352
content-type: image/gif
date: Wed, 01 May 2024 21:45:41 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| grunoaph.net/5/4723302/?oo=1&aab=1 | 139.45.197.238 | 200 OK | 1.5 kB |
URL GET HTTP/2grunoaph.net/5/4723302/?oo=1&aab=1 IP139.45.197.238:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerLet's Encrypt Subjectgrunoaph.net Fingerprint54:74:19:00:7A:EF:BC:7B:22:8C:ED:75:0E:E0:1A:59:11:13:4A:4E ValidityWed, 13 Mar 2024 05:08:21 GMT - Tue, 11 Jun 2024 05:08:20 GMT
File typegzip compressed data, max speed, from Unix Hash8ee65d2ebf5884547b2c6f5883144b01 f4d8c5d3ef4f2ad5910942c973b426f8212f44ac dae100a27422acbd790bf92bfaac97bfa2a602346a7ea89bd2170c5625ed05d6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /5/4723302/?oo=1&aab=1 HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rojadirectaenvivo.me
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:45:41 GMT
content-type: application/json
x-trace-id: da5db31e8e24e7871d5383348dc62187
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://rojadirectaenvivo.me
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00804ff3e1104c77ed86c94113bf8e06; expires=Thu, 01 May 2025 21:45:41 GMT; path=/; secure; SameSite=None
oaidts=1714599941; expires=Thu, 01 May 2025 21:45:41 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-TD18KBYPMF&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 90 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-TD18KBYPMF&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hashd7cce2a59fd965002ba0fc8a0166a405 353957995dc8ca8da0c83fa2c87864519f5767da 2ccf69f631217bfe4ce0d4cc410d7bd16344fa98b07372ee894f2c699156f9af
GET /gtag/js?id=G-TD18KBYPMF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 May 2024 21:45:42 GMT
expires: Wed, 01 May 2024 21:45:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89688
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| livetrafficfeed.com/images/watermark.png |  15.235.187.139 | 200 OK | 2.7 kB |
URL GET HTTP/2livetrafficfeed.com/images/watermark.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 330 x 330, 8-bit/color RGBA, non-interlaced Hash6c4d1c1cc891e7869897444ff0cafe3b 427b55225b60dadccb8ea438cc2021394ea63208 c88417d536eab670b2771f604d69cc2ec6136abf5109c78e7c9fd6b0d0282220
GET /images/watermark.png HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 2720
last-modified: Thu, 23 May 2019 16:59:56 GMT
etag: "5ce6d18c-aa0"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| livetrafficfeed.com/images/overlay2.png | 15.235.187.139 | 200 OK | 980 B |
URL GET HTTP/2livetrafficfeed.com/images/overlay2.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 500 x 29, 8-bit/color RGBA, non-interlaced Hash9f06825c7a2999dcf54f51c1c28a28e4 914d84fb0e32010dc7af1975214dc0c2c8ba0dde 3f1cdebfe02e8e40b8f88d9166bcf096678cf8f907fa736b13e99412479af55c
GET /images/overlay2.png HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 980
last-modified: Sat, 09 Dec 2017 14:18:30 GMT
etag: "5a2bf0b6-3d4"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/browser/11/firefox.png | 15.235.187.139 | 200 OK | 508 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/browser/11/firefox.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hashbbf12f7bc4d67e2b1b653fc66100b1a1 7c5c19b5037ed6b05e3fdac1d648160422e889c1 fe859edcbd816cc55bb8675078db489e7212e1d70e496e766c0532aaf2a1d7c9
GET /images/browser/11/firefox.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 508
last-modified: Tue, 30 Apr 2024 22:01:38 GMT
etag: "66316a42-1fc"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/static/v4/live.js | 15.235.187.139 | 200 OK | 20 kB |
URL GET HTTP/2cdn.livetrafficfeed.com/static/v4/live.js IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash1a6a9d91a5a2716cef716c211a8f4a7e 46611e878e92e4010837f691de5d6c5560f9e1c3 88e9412e4952677b2ec0fc027abeb9aff4a0538b7bb9e0bbf9d523849d323e4d
GET /static/v4/live.js HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:42 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 22:01:51 GMT
vary: Accept-Encoding
etag: W/"66316a4f-ce62"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:42 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/no.png | 15.235.187.139 | 200 OK | 190 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/no.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hash7a0742bf31a21fcb678c23c0c662ca6a 0ba486836158600382d47db8b34ae5595ebefab1 8e069b5e366f948e35ae261ffc66984acbb8bd8954d0f987028ba18ffb4ce339
GET /images/flags/16/no.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 190
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-be"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/browser/11/chrome-mobile.png | 15.235.187.139 | 200 OK | 486 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/browser/11/chrome-mobile.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hasha8d64bb5d461398049c3aa37aaf8a62c 0fb13179d706cb92318e48dc5da0a9917e4e9f17 b6f8fb0877ebbac082cbc81e6c207ba3806916c32cddcf65442f53c9e926bce8
GET /images/browser/11/chrome-mobile.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 486
last-modified: Tue, 30 Apr 2024 22:01:37 GMT
etag: "66316a41-1e6"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/os/11/android.png | 15.235.187.139 | 200 OK | 406 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/os/11/android.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hash5a886d85dc018547686148a67cfa3f25 c05538d524a40b75ce2cb31fccc5067dd443f165 d0c88b84ad7a28bb57338a0939b0728c20e37accb35ffc15be947dcef614ecfd
GET /images/os/11/android.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 406
last-modified: Tue, 30 Apr 2024 22:01:33 GMT
etag: "66316a3d-196"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/co.png | 15.235.187.139 | 200 OK | 128 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/co.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hash98f5a5b553e046076a3af53afb0a8dcf 8d430ffc2e9fdf622c85f8f7fb99c219ac127e65 d29fcd61ee240daa823ef9c5f75b8b833a9634b9f1af9ebc13f5975c0a353c5d
GET /images/flags/16/co.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 128
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-80"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/browser/11/chrome.png | 15.235.187.139 | 200 OK | 486 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/browser/11/chrome.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hasha8d64bb5d461398049c3aa37aaf8a62c 0fb13179d706cb92318e48dc5da0a9917e4e9f17 b6f8fb0877ebbac082cbc81e6c207ba3806916c32cddcf65442f53c9e926bce8
GET /images/browser/11/chrome.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 486
last-modified: Tue, 30 Apr 2024 22:01:37 GMT
etag: "66316a41-1e6"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| livetrafficfeed.com/static/v5/jquery.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&cookie_id=&link=https%3A%2F%2Frojadirectaenvivo.me%2F&clientwidth=1280&clientheight=1024&num=3&title=ROJADIRECTA%20%7C%20Tarjeta%20Roja%20TV%20%7C%20Futbol%20En%20Vivo%E2%9C%94%EF%B8%8F&referrer=&timezone=America%2FNew_York&root=0 | 15.235.187.139 | 200 OK | 731 B |
URL GET HTTP/2livetrafficfeed.com/static/v5/jquery.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&cookie_id=&link=https%3A%2F%2Frojadirectaenvivo.me%2F&clientwidth=1280&clientheight=1024&num=3&title=ROJADIRECTA%20%7C%20Tarjeta%20Roja%20TV%20%7C%20Futbol%20En%20Vivo%E2%9C%94%EF%B8%8F&referrer=&timezone=America%2FNew_York&root=0 IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashfdc66dde59e3e6dbd6374eea4b3306c5 ce24a92fcbf487613d699259e26153cfb4557209 200e544c7f100e7049400d7e78b18c637d9b44cf6cb53ad18b8ed6bcee82ca63
GET /static/v5/jquery.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&cookie_id=&link=https%3A%2F%2Frojadirectaenvivo.me%2F&clientwidth=1280&clientheight=1024&num=3&title=ROJADIRECTA%20%7C%20Tarjeta%20Roja%20TV%20%7C%20Futbol%20En%20Vivo%E2%9C%94%EF%B8%8F&referrer=&timezone=America%2FNew_York&root=0 HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:43 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=8nfv33g489cjj208n4btisuhn2; path=/
LTFSESSID=8nfv33g489cjj208n4btisuhn2; expires=Fri, 02-May-2025 03:34:29 GMT; Max-Age=31556926; path=/
server: Nginx
x-powered-by: VPSSIM
strict-transport-security: max-age=31536000
x-frame-options: ALLOWALL
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883740 | 15.235.187.139 | 200 OK | 475 B |
URL GET HTTP/2livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883740 IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashf083296c4d88f59b1e97a6766b67542c eb330615cc220d139cefb5929735902d3dae596f b6d9b4338b6c09b8f14c4e95799c429bdf835b019ab8cf04547715c6aa026a02
GET /static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883740 HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:50 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
server: Nginx
x-powered-by: VPSSIM
strict-transport-security: max-age=31536000
x-frame-options: ALLOWALL
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/ca.png | 15.235.187.139 | 200 OK | 343 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/ca.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hash4e43a07ab82a82bbe317ac6a37ef94c7 c24427478cf65366dbab76345967e7c60dce4724 bd8c67464afae3ae168963c8233096c0af297b528ba80ceffee7c72546c8e290
GET /images/flags/16/ca.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:50 GMT
content-type: image/png
content-length: 343
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-157"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:50 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| rojadirectaenvivo.me/favicon.ico | 104.21.2.107 | 200 OK | 4.6 kB |
URL GET HTTP/3rojadirectaenvivo.me/favicon.ico IP104.21.2.107:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectrojadirectaenvivo.me Fingerprint82:D1:1B:10:55:99:DE:93:E4:4A:5E:20:77:28:8C:FA:93:E9:0C:7B ValidityFri, 22 Mar 2024 07:01:45 GMT - Thu, 20 Jun 2024 07:01:44 GMT
File typegzip compressed data, from Unix Hashc8a384f4f4e07cf0607ca7de361d8757 580b2ef5a47fd246799062c5b5ac7ab5450ab345 9ecc43f8f46830703484c0dfcdf4a02994b7eeac75eabb2868688c389bab87b7
GET /favicon.ico HTTP/1.1
Host: rojadirectaenvivo.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Cookie: _ga_0F3T3EDBGE=GS1.1.1714599941.1.0.1714599941.0.0.0; _ga=GA1.1.1896251814.1714599942; prefetchAd_4723302=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 01 May 2024 21:45:42 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Wed, 08 May 2024 16:14:54 GMT
last-modified: Fri, 24 Feb 2023 14:59:46 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 19848
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dp2ONzhrUx%2F0ExrbjddQ8cTOYpDCX084sSaUVI3TUPX5owiZ3gZyGFxd4a%2FtWvreA4c%2BS73DnEJ3WWYxcDbUN6aoC2mtr5MITPGeSMuVr3%2B3tuyvn5TJNZ9SQbxqvaQ%2Fa8N51EQ3rg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2f5c97edf5699-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| cdn.livetrafficfeed.com/images/browser/11/opera.png | 15.235.187.139 | 200 OK | 455 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/browser/11/opera.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hash0603487b50d401f48c4187be1cd2ca1a 50965cfab7a65a850793c39034adcf9c55ff05b8 bb0b0ece3e619719589ee1730b31da0b10df5977dc290570e1dab5634ebd3bdd
GET /images/browser/11/opera.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:46:02 GMT
content-type: image/png
content-length: 455
last-modified: Tue, 30 Apr 2024 22:01:42 GMT
etag: "66316a46-1c7"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:46:02 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/se.png | 15.235.187.139 | 200 OK | 236 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/se.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hashbd6bf320ba4e5a54ba38851e50158160 238925cb6a8cee193f8f3981940026bd1bfd86a6 791c219369bb41464d5bb8fc981d358c0263544c15ae66e35206267aec43bede
GET /images/flags/16/se.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 01 May 2024 21:46:02 GMT
content-type: image/png
content-length: 236
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-ec"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:46:02 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Frojadirectaenvivo.me%2F&j= | 141.101.120.11 | 200 OK | 2.1 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Frojadirectaenvivo.me%2F&j= IP141.101.120.11:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with very long lines (2163), with no line terminators Hash8811c1da7d7cd9a89cf1c9d88cf153c1 5dd7a95e6eee435a18d261757a4aa4aeea7ae472 0c72ec693d21a33e6c802f2648030af0433badc9a020325a82550115cf5044cc
GET /i/?l=https%3A%2F%2Frojadirectaenvivo.me%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:43 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Wed, 01-May-2024 23:09:02 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Thu, 02-May-2024 01:45:42 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1714599942; Domain=dtscout.com; Expires=Fri, 09-Aug-2024 21:45:42 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.246
expires: Wed, 01 May 2024 21:45:41 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pbTksJvmB01%2FZxWbMR85L%2F0Jrw3%2BCDqRA7QMJc1%2BiyAlRsG%2FzwMHb%2BxbdNUvB8oCmnPCjMu0wpvPVG35p%2FhgzranUP3ZHuKbd7biMXYN4jXgOrxQxqR5BMJiC9RvO0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2f5ca5a308d65-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/os/11/windows.png | 15.235.187.139 | 200 OK | 312 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/os/11/windows.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hash2a7107600ad6354e0c1c8918c1bbfde2 fc84601b91c1fd6befcb36fedbdb70c30b4a471b bb69356308245cad3eb7984d79c0b6c324bfac7ebc4d7ff9e6df994e53dfaed3
GET /images/os/11/windows.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 312
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-138"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883760 | 15.235.187.139 | 200 OK | 1.4 kB |
URL GET HTTP/2livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883760 IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (1721), with no line terminators Hash2ed05f0883daa6af6e940410cc017c92 9704894f40fd75357f280966cb63ce4503a66b2b c1ac8067b3ff8b7c6f65ed658cde5fd0ee488e327570db483d48d2724261a53b
GET /static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883760 HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:56 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
server: Nginx
x-powered-by: VPSSIM
strict-transport-security: max-age=31536000
x-frame-options: ALLOWALL
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.me&_ss=4qpv23y6el&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=vuz8&_cb=_dtspv.c | 141.101.120.11 | 200 OK | 51 B |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.me&_ss=4qpv23y6el&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=vuz8&_cb=_dtspv.c IP141.101.120.11:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Hash702e065528f602b6e302197a67e315f5 16c605fd228f54db722ec175b6229f3b169b5d19 bcafcdbb0f4d5d7756872e80f14faa6e4951fe25151291eaabc5fc5b8023c01a
GET /pv/?_a=v&_h=rojadirectaenvivo.me&_ss=4qpv23y6el&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=vuz8&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Cookie: m=1; oa=1; df=1714599942
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:43 GMT
content-type: application/javascript
x-t: 0.146
x-c: 0
expires: Wed, 01 May 2024 21:45:42 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cDU8zH02R28l29oxV1631tjT5wF2vZ2n19Xq7cch5xPu5a1YZlkO%2FLQLg1vd8xoa7%2FCdUi2L4Pr7k9%2Bm9NoPQ%2FzWCeI%2BMFHE9OAYI1UNkK6eN%2B3IbE8WaKdJ8FsPvL8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87d2f5cc2b4f8d65-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| my.rtmark.net/gid.js?userId=00804ff3e1104c77ed86c94113bf8e06 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00804ff3e1104c77ed86c94113bf8e06 IP139.45.195.8:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashc1914a4d91a6e6672564e62fad2032b3 6654067924a9015c3884e63c38b00722a4ef5984 45ea27de764e8b04daa87fb9031e57596da529dfcd359531d0c845196a955c25
GET /gid.js?userId=00804ff3e1104c77ed86c94113bf8e06 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rojadirectaenvivo.me
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:45:41 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://rojadirectaenvivo.me
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804ff3e1104c77ed86c94113bf8e06; expires=Thu, 01 May 2025 21:45:41 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| grunoaph.net/?rb=a3cJ674LB7_SoZBPodpcPUmJnbBz-hHJN1bDw3cP1CgdUE_71csy0WzBNrst2i4dzMTGFKW2IMhGp2W-6RLkQBLipusWyoZx2sHu-anE9bD9k1YGKWLlyCMmwoRHxnerwHjVjtqIQein65-unMfKn0XvUkf9JZNK-oLJXzBZSk0Mxi-S0cJiSBO45d6EjNMOnIthvjaQDZq2TGbghVxhZ_t90qDxqTShn2ZeZPuYUTm2XYCqVIYGa7dUAfIbSJyhxgJi7S28dt66n36C4wONZA%3D%3D&request_ab2=0&zoneid=4723302&js_build=iclick-v1.788.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Frojadirectaenvivo.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.2-auto&navlng=en-US&pnt=0&pnrc=0&bs=b3ab04cf-b9f8-4730-9a6e-e5187dbf913f&wasm=1&userId=00804ff3e1104c77ed86c94113bf8e06&m=link | 139.45.197.238 | 200 OK | 2.3 kB |
URL GET HTTP/2grunoaph.net/?rb=a3cJ674LB7_SoZBPodpcPUmJnbBz-hHJN1bDw3cP1CgdUE_71csy0WzBNrst2i4dzMTGFKW2IMhGp2W-6RLkQBLipusWyoZx2sHu-anE9bD9k1YGKWLlyCMmwoRHxnerwHjVjtqIQein65-unMfKn0XvUkf9JZNK-oLJXzBZSk0Mxi-S0cJiSBO45d6EjNMOnIthvjaQDZq2TGbghVxhZ_t90qDxqTShn2ZeZPuYUTm2XYCqVIYGa7dUAfIbSJyhxgJi7S28dt66n36C4wONZA%3D%3D&request_ab2=0&zoneid=4723302&js_build=iclick-v1.788.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Frojadirectaenvivo.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.2-auto&navlng=en-US&pnt=0&pnrc=0&bs=b3ab04cf-b9f8-4730-9a6e-e5187dbf913f&wasm=1&userId=00804ff3e1104c77ed86c94113bf8e06&m=link IP139.45.197.238:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerLet's Encrypt Subjectgrunoaph.net Fingerprint54:74:19:00:7A:EF:BC:7B:22:8C:ED:75:0E:E0:1A:59:11:13:4A:4E ValidityWed, 13 Mar 2024 05:08:21 GMT - Tue, 11 Jun 2024 05:08:20 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2352), with no line terminators Hash3914a4f58744d83111f6083da11178c4 3a9a5bf556304eca0c5ed7e71de6298afbf7e21a b25a066eb167caac3f07881bcd48d7c5a0c662d71854294f9693fd936e4ea5aa
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /?rb=a3cJ674LB7_SoZBPodpcPUmJnbBz-hHJN1bDw3cP1CgdUE_71csy0WzBNrst2i4dzMTGFKW2IMhGp2W-6RLkQBLipusWyoZx2sHu-anE9bD9k1YGKWLlyCMmwoRHxnerwHjVjtqIQein65-unMfKn0XvUkf9JZNK-oLJXzBZSk0Mxi-S0cJiSBO45d6EjNMOnIthvjaQDZq2TGbghVxhZ_t90qDxqTShn2ZeZPuYUTm2XYCqVIYGa7dUAfIbSJyhxgJi7S28dt66n36C4wONZA%3D%3D&request_ab2=0&zoneid=4723302&js_build=iclick-v1.788.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Frojadirectaenvivo.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.788.2-auto&navlng=en-US&pnt=0&pnrc=0&bs=b3ab04cf-b9f8-4730-9a6e-e5187dbf913f&wasm=1&userId=00804ff3e1104c77ed86c94113bf8e06&m=link HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rojadirectaenvivo.me/
Origin: https://rojadirectaenvivo.me
DNT: 1
Connection: keep-alive
Cookie: OAID=00804ff3e1104c77ed86c94113bf8e06; oaidts=1714599941
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 01 May 2024 21:45:41 GMT
content-type: application/json
x-trace-id: 14dbff8425dd12b06ee9edb0ea3c8a7c
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://rojadirectaenvivo.me
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804ff3e1104c77ed86c94113bf8e06; expires=Thu, 01 May 2025 21:45:41 GMT; path=/; secure; SameSite=None
oaidts=1714599941; expires=Thu, 01 May 2025 21:45:41 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 08 May 2024 21:45:41 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/cl.png | 15.235.187.139 | 200 OK | 194 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/cl.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hash978286126c1711c86232bf68133df988 938fef33882f0c6dc0ed37aac2b9511db8051889 796af953432eee9588e74b497f826b9689be91b86e2105258c47afdd9e7a006b
GET /images/flags/16/cl.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:50 GMT
content-type: image/png
content-length: 194
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-c2"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:50 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883788 | 15.235.187.139 | 200 OK | 464 B |
URL GET HTTP/2livetrafficfeed.com/static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883788 IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectlivetrafficfeed.com FingerprintE3:0A:65:3A:BC:50:F3:50:99:DC:74:22:06:4E:FD:F0:54:C1:42:31 ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typeASCII text, with very long lines (542), with no line terminators Hash8162926d1e847a076a326d11534dc9ee af695eff318c92572caa59b25b2e0e3fe59817a1 55eb57aaf147cd42d12134cc337e7800b4e0f99d9c26a265327415364a3e6730
GET /static/v5/check.js?ranid=9jXaHFi9KSoDHG3HjdNosgIxONGztogaDGkQw4AlmH4vhTNSxl&h=https%3A%2F%2Frojadirectaenvivo.me%2F&l=943883788 HTTP/1.1
Host: livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:46:02 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
server: Nginx
x-powered-by: VPSSIM
strict-transport-security: max-age=31536000
x-frame-options: ALLOWALL
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| waust.at/c.js | 104.26.4.7 | 200 OK | 13 kB |
IP104.26.4.7:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA4:3D:6E:A9:C7:6B:CD:4B:7B:04:51:4F:D1:D7:10:2D:12:92:F9:58 ValiditySun, 04 Jun 2023 00:00:00 GMT - Mon, 03 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (12997), with no line terminators Hash45bfa6dedd6f7a9ce980b168e0350ad0 82c6b381da9abd8cb3db22ba4868287fe4e976f1 856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:40 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:21 GMT
etag: W/"63c04119-32c5"
expires: Thu, 02 May 2024 21:29:34 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 966
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zoOPSda%2FcgbxFTX4yyj9LmQxFeIrV5mtnUpHUUsXvsoC5J6cmUjbmlOaEMMW1CT1BkjWz%2FBN90TwVtP9FYbty4IGzrO0kAX2kSzeuzXsxQOGgrhxPKd2In%2B5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87d2f5bebb46b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/flags/16/us.png | 15.235.187.139 | 200 OK | 346 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/flags/16/us.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 16 x 11, 8-bit/color RGBA, non-interlaced Hash6f5d5a5b0b324e3f0329d822470a5d23 19d20f726001fff240fd7d3440f5d557e1e9dfc6 d83470a5a5c7ec9ce000c4cda6c2e9bf1df7b598f8ca82c1cc3021d2da87ff33
GET /images/flags/16/us.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:56 GMT
content-type: image/png
content-length: 346
last-modified: Tue, 30 Apr 2024 22:01:35 GMT
etag: "66316a3f-15a"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:56 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.livetrafficfeed.com/images/os/11/gnu-linux.png | 15.235.187.139 | 200 OK | 464 B |
URL GET HTTP/2cdn.livetrafficfeed.com/images/os/11/gnu-linux.png IP15.235.187.139:443
Requested byhttps://rojadirectaenvivo.me/ CertificateIssuerSectigo Limited Subjectcdn.livetrafficfeed.com Fingerprint65:75:57:74:CE:41:5B:A2:4E:45:E2:F4:D4:A8:4A:EB:B8:FF:90:CA ValidityMon, 30 Oct 2023 00:00:00 GMT - Sat, 02 Nov 2024 23:59:59 GMT
File typePNG image data, 11 x 11, 8-bit/color RGBA, non-interlaced Hashd3bb103dce95fcf67324894aaaf371a2 7d5c24b70aa66994603e7afd27516cb539ce7d13 ecd6ff3ab92bfed0d4044d3bd6a908d090b8356047e15f59414c6e3bc572f5d4
GET /images/os/11/gnu-linux.png HTTP/1.1
Host: cdn.livetrafficfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rojadirectaenvivo.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 01 May 2024 21:45:44 GMT
content-type: image/png
content-length: 464
last-modified: Tue, 30 Apr 2024 22:01:34 GMT
etag: "66316a3e-1d0"
server: Nginx
x-powered-by: VPSSIM
expires: Fri, 31 May 2024 21:45:44 GMT
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
0.0.0.0