Report - web.desportonews.com/

Report Overview

Visited public
2024-02-15 04:21:20
Tags
URL
web.desportonews.com/
Finishing URL
web.desportonews.com/
IP / ASN
67.205.59.238
#26347 DREAMHOST-AS
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
img.youtube.com	3087	2005-02-15	2012-05-30 09:03:49	2024-02-14 22:10:32	448 B	64 kB	142.250.74.142
utilizeimplore.com	unknown	2024-02-06	2024-02-07 11:06:37	2024-02-14 22:16:23	7.8 kB	27 kB	192.243.61.227
c0.wp.com	6988	1997-03-28	2018-09-24 17:59:05	2024-02-14 21:47:38	3.2 kB	260 kB	192.0.77.37
i0.wp.com	3021	1997-03-28	2013-09-17 08:14:42	2024-02-14 19:52:21	17 kB	382 kB	192.0.77.2
pixel.wp.com	2545	1997-03-28	2017-01-30 06:31:40	2024-02-14 18:13:54	569 B	269 B	192.0.76.3
www.youtube.com	90	2005-02-15	2013-04-13 09:43:20	2024-02-14 18:12:11	24 kB	1.4 MB	142.250.74.142
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2024-02-14 22:08:59	3.2 kB	96 kB	172.64.160.4
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2024-02-14 21:35:47	418 B	36 kB	104.21.234.33
i.ytimg.com	109	2007-12-11	2012-10-03 19:11:04	2024-02-14 22:30:19	447 B	33 kB	216.58.207.214
web.desportonews.com	unknown	2023-05-23	2023-09-14 11:30:55	2023-10-21 00:25:43	9.7 kB	370 kB	67.205.59.238
pl22363898.toprevenuegate.com	unknown	unknown	No data	No data	994 B	34 kB	172.240.108.76
jnn-pa.googleapis.com	2640	2005-01-25	2021-11-16 07:12:21	2024-02-14 19:25:22	1.9 kB	42 kB	142.250.74.106
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2024-02-14 22:42:47	1.0 kB	5.9 kB	45.133.44.4
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2024-02-12 19:17:20	441 B	21 kB	142.250.74.132
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2024-02-14 22:22:41	894 B	33 kB	45.133.44.10
yt3.ggpht.com	203	2008-01-16	2014-01-15 17:55:17	2024-02-14 18:12:06	1.0 kB	11 kB	142.250.74.161
roamparadeexpel.com	unknown	2024-02-05	2024-02-07 04:18:57	2024-02-14 21:39:31	6.3 kB	3.6 kB	172.240.108.92
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2024-02-14 21:16:48	441 B	427 B	3.79.157.91
stats.wp.com	2711	1997-03-28	2017-01-30 06:06:59	2024-02-14 18:29:43	403 B	37 kB	192.0.76.3
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2024-02-14 21:54:45	6.5 kB	306 kB	216.58.207.227
rr2---sn-capm-vnae.googlevideo.com	unknown	2003-05-25	2021-08-23 20:19:52	2024-02-14 18:02:21	16 kB	7.0 MB	91.90.45.173
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2024-02-14 21:32:04	739 B	423 B	192.243.61.227
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2024-02-14 22:38:28	429 B	6.4 kB	142.250.74.74
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2024-02-14 22:22:05	1.4 kB	80 kB	216.58.207.234

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-02-14	medium	proftrafficcounter.com	Sinkholed
2024-02-14	medium	unseenreport.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed
2024-02-14	medium	roamparadeexpel.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (163)

	URL	From	Size	First Seen	Last Seen
	www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/endscreen.js	ScriptElement	34 kB	2024-02-14	2024-08-20
Pretty URL www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/endscreen.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 14:07 Last Seen2024-08-20 09:40 Times Seen58 Hash d34fa1a4e706d1903d672fbefd77c123 8557c2fccf139e973c184a9158b87d8705f9c270 ebb28d49644d82c01ee501157c4324c32f646e8e382c94334f3f878f8b99a7b2 Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	108 B	2023-08-01	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-01 01:42 Last Seen2025-06-18 05:19 Times Seen48500 Hash 6247dd5d2d787d98a0d5e4966146d550 51dcfa67e8318f689e1a4589a9def15c6f9a23bd cbb9ab7439a233ff75c44799819b7a7de5fdb18f4e30f0236430bc751530c211 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 104.21.234.33 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	web.desportonews.com/	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 023510b97fa4733c2eb12cd96af59b4f 193ae3be7622c64d8615dd2d0a06419666916091 77ce77459f75e5b23b018ceffef2ab6200707d256ec7512b88c9ce201b19de0f Loading...

	www.youtube.com/s/player/b854ee52/www-widgetapi.vflset/www-widgetapi.js	ScriptElement	221 kB	2024-02-14	2024-08-20
Pretty URL www.youtube.com/s/player/b854ee52/www-widgetapi.vflset/www-widgetapi.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 05:07 Last Seen2024-08-20 09:42 Times Seen17 Hash 8c99722f60807bc11c3ec75a6c29adeb 9b82b130d08d08fa6649b336347e68a6956a312c 1fbdd98fefbe45e2e9e0e93a882743d369ef28a47ccfa9ed76ae1c9ac330f08e Loading...

	web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=6.1.3	ScriptElement	82 kB	2023-03-09	2025-06-17
Pretty URL web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=6.1.3 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 02:15 Last Seen2025-06-17 16:31 Times Seen312 Hash 0aad6ea4c36a9be1a344f4c666ad8dd2 10a11da088f2ba67524c52070c54306bdf0bb47c f0df5bac42e20b19dafbdf42b5480133ffdf8885bf9d4fd9a8fa3043e3efd2ae Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	134 B	2023-03-07	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:19 Times Seen41858 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	2.1 kB	2023-10-25	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 23:30 Last Seen2025-06-18 05:19 Times Seen40180 Hash e795f2b1b495c31028edb86cb4f4e7b5 d5d0d2d9e1538e5869ff9828d64664b94d6de653 02c0ff09b0683b8853beac78e1dd6a3af9a8e10691130f6e1ff99647756e541f Loading...

	www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/base.js	ScriptElement	2.5 MB	2024-02-14	2024-08-20
Pretty URL www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/base.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 14:07 Last Seen2024-08-20 09:40 Times Seen189 Hash e0adeb81a95b5ce2d852b1da7cea4528 b56e9345a734c0c35fbd05ab042686698544b3af 88d25b8c03e76364c6c7bbdd74f9686429648ee83a9367ee8347f8ed9e5acb11 Loading...

	www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/embed.js	ScriptElement	55 kB	2024-02-14	2024-08-20
Pretty URL www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/embed.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 14:07 Last Seen2024-08-20 09:40 Times Seen160 Hash 7a57dd415af9aa4cf97e19c09103b6f6 0dd64654e81edc92346bddfcd87451ebdbfe5303 5e8c7255c99441c92156a5f1b40520c4fa563b2edf94dc7101d0e33fa7bec3ed Loading...

	unknown	Function	46 B	2023-04-11	2025-06-18
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:36 Last Seen2025-06-18 03:56 Times Seen5986 Hash 5c399557f73fcf0024f42259cf94ee17 d2f46cbd088e9b289e63cc23e2377462c6459e3f 254e737260e5ff4f6043abc4ab52ee1f9ea6e9eab066b5c7ac1665c4cf75692b Loading...

	web.desportonews.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=6.1.3	ScriptElement	24 kB	2023-03-13	2025-06-17
Pretty URL web.desportonews.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=6.1.3 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:37 Last Seen2025-06-17 02:54 Times Seen172 Hash 8a74f79c4ac1bb971a9dfbf88e1eb099 cb3b6cc3348bdb6f112a762d9cff27049d7d18f9 f52ec3f4d0b043a36683a54caef45ae1158780aede5f886a6a1b63b61668e0d3 Loading...

	www.youtube.com/iframe_api	ScriptElement	993 B	2024-02-14	2024-08-20
Pretty URL www.youtube.com/iframe_api IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 05:07 Last Seen2024-08-20 09:42 Times Seen17 Hash 2e82151aacce4914e98d26f2e0a5f577 9bd3339cad9c14cfcc5fe6035c2a186f7707b061 72edc8bdf3eaff671073440b4380c2bc5601db18c594bb90a3d6e22e0efe9570 Loading...

	stats.wp.com/e-202407.js	ScriptElement	7.3 kB	2024-01-05	2025-06-14
Pretty URL stats.wp.com/e-202407.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-05 19:19 Last Seen2025-06-14 03:41 Times Seen2461 Hash bd2d67186594b0e32223b293fdfcca55 b797a9d012c850b53a7ccc12211adcfbcd9ae0be 4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641 Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	82 kB	2024-08-20	2024-08-20
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash c0ef0aeb6627be0414e6abce628ae44a 6932ead1eeef03219686f179163edf55f55a8094 e0c8c4f976b86a5c62ee85417886cc83dcd919586275a820cf56e138504f4320 Loading...

	web.desportonews.com/	ScriptElement	455 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 056672733c75f85915531081a0dac6ab 6b67759f3bea71117006cf37355822b87725ea3b 901c6235a024b8a4d9d4a7a766e661e1bd14f0950f67039a9acc1e300fcda473 Loading...

	web.desportonews.com/	ScriptElement	305 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 430d1770830d6f242f93cc7f57787980 361fe5a22fe43aec45aefbb5c3bf1354ea4f5ab3 df8d1b90fdaf514abedf0bca74b0d043250eb7a262c8d1b084dcb343607c710c Loading...

	web.desportonews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188	ScriptElement	701 B	2023-05-10	2025-06-16
Pretty URL web.desportonews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-10 12:45 Last Seen2025-06-16 15:02 Times Seen3099 Hash 328b8123661abdd5f4a0c695e7aa9dcc 4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0 27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2 Loading...

	web.desportonews.com/	ScriptElement	301 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash ea451954fbffb74cd4917a773af6f517 524f276364849b1783e015630e48b7355d152c4d 328efaaa1a9de5d915c1a5bafc3a4089e1eaf106f6303df388622fefb085757f Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	1.0 kB	2023-06-13	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-13 01:22 Last Seen2025-06-18 05:19 Times Seen41857 Hash fe81353f0c3e106bb59598d92fd49a12 cd09955588a1d236a25a76d3f774418a829cb5c4 a366197fa3629365ab26195a99befce51c8f8ec90252df02e0b4cb44bd52d020 Loading...

	web.desportonews.com/	ScriptElement	320 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash c2b23eba4ef90c98af1d3935c4bd02a3 441f7c3f32d75806443b2bfcb22b902e19909241 df475a30c1e5549aacc083f6fef5a1d0b74ce393c0ce05edee375055adac1ecb Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	26 B	2023-03-07	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:19 Times Seen41824 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	web.desportonews.com/	ScriptElement	998 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 0cb8d92757a1de5b7d1fb932a112e959 f2933649271a1b6f924329ecb5e88ff10d04fb64 7d14ca97ed8ada717e14133e1fee4243762f14a3e14a59124680c3f9bdd6f9de Loading...

	pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js?&psid=FEATURES-1677_1_rotator	ScriptElement	45 kB	2024-08-20	2024-08-20
Pretty URL pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js?&psid=FEATURES-1677_1_rotator IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 9be511e04a0dc5fe6769736432d6998c 753869fab80b8f87177cfd4ff85d867f1e874467 ae9c5bba54542de319edec7de5cc77035544d076f85c2cc83c61b48a3af5d12d Loading...

	c0.wp.com/c/6.4.3/wp-includes/js/imagesloaded.min.js	ScriptElement	5.5 kB	2023-11-08	2025-06-18
Pretty URL c0.wp.com/c/6.4.3/wp-includes/js/imagesloaded.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 01:34 Last Seen2025-06-18 05:13 Times Seen17079 Hash 6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1 Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	74 B	2023-06-26	2025-06-16
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-26 22:06 Last Seen2025-06-16 11:09 Times Seen18852 Hash ccb754e8fcd1e8e893b7bed4939523ca 68a319410da1aef2fd70a8ebc458817aaecbfdd1 d84a8e7de97afc23d0e458cfb0adccb09dfc8ef4ed8b9a6159d8ceb091fe03f0 Loading...

	c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery-migrate.min.js	ScriptElement	14 kB	2023-05-09	2025-06-18
Pretty URL c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery-migrate.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-06-18 05:38 Times Seen113586 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	web.desportonews.com/wp-content/plugins/eu-cookies-bar/js/eu-cookies-bar.js?ver=6.4.3	ScriptElement	11 kB	2023-03-07	2025-03-09
Pretty URL web.desportonews.com/wp-content/plugins/eu-cookies-bar/js/eu-cookies-bar.js?ver=6.4.3 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:43 Last Seen2025-03-09 09:11 Times Seen8 Hash 7f2bc25c742af56923f46a6ec2a19b1c 068dbab8c7a118cc30e7dddab75e86d01b06ffdb 27ebd0e6a03f110a410dedbdb756539871e11fbc32a73279b2ead179e6aa3376 Loading...

	unknown	ScriptElement	1.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 74ff23cb76558e6149160b3991d10422 9d9e8a64f743c09d75b8ffc709da553f7821ddb9 6d2057435e81a9ce85ba70362b9f8d8d5cfdac346bec1f5e664301d67e4f1be8 Loading...

	web.desportonews.com/	ScriptElement	269 B	2024-08-20	2024-08-20
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 87a1eca1f68559ddf103e3980752a537 b9a3b6e48de6fecc7163ff04a042fc1ede025a75 3e91d7896ce5a8434562046e9b37f2618cf94143acebb02c219b19042607fb4f Loading...

	www.youtube.com/s/player/5683fc5e/www-embed-player.vflset/www-embed-player.js	ScriptElement	326 kB	2024-02-14	2024-08-20
Pretty URL www.youtube.com/s/player/5683fc5e/www-embed-player.vflset/www-embed-player.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 14:07 Last Seen2024-08-20 09:40 Times Seen162 Hash 90b2edab5f6c6fee4e5964643cdd202c c588cef0c4c81ac6568a9e14ac40c3860fa2db75 e30eb44d1bd919de19f5884ded89d326c05c5537aed690c6aac1175dc4aa6179 Loading...

	web.desportonews.com/wp-content/themes/jannah/assets/js/parallax.js?ver=6.1.3	ScriptElement	24 kB	2023-03-08	2025-06-17
Pretty URL web.desportonews.com/wp-content/themes/jannah/assets/js/parallax.js?ver=6.1.3 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30 Last Seen2025-06-17 16:31 Times Seen48 Hash 9e03be2b2bf0ee6a76b11aac23d4b60a d44dd765e2da226b3c9c848a127f4eac81d35acb d8a5f81391bc3da5244f17db4af427303ebb7bcc09bfe3e5ca14c50eb2a1a66c Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	13 B	2023-03-07	2025-06-18
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:19 Times Seen41581 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1	ScriptElement	62 B	2023-12-21	2025-06-14
Pretty URL www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-21 22:47 Last Seen2025-06-14 14:39 Times Seen513 Hash dfd3ddc3ca18f746abaecea514ce4a38 045195687435138e4a1adc7bbc98703899ea884e 05b087fcc72ed882d3ab78ab7366c35bd22593771e530ba3fe0822cb6ae4f659 Loading...

	web.desportonews.com/	ScriptElement	531 B	2023-03-07	2025-06-17
Pretty URL web.desportonews.com/ IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:46 Last Seen2025-06-17 16:31 Times Seen3 Hash e353b7e3245e4eeb0ded890700cfabbd bd3a6ce9568bb429f2ef30a1e6d853f93dbeafc7 f36127e186f518f2f9004e89834e61aa46913028fcdb2e54fa0ef14e0e438a9f Loading...

	www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/annotations_module.js	ScriptElement	70 kB	2024-02-15	2024-08-20
Pretty URL www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/annotations_module.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-15 03:13 Last Seen2024-08-20 09:37 Times Seen35 Hash 514ad110bc80335d740f841920309159 e7c4111b6dfae323d6cc62224f30a47464c55913 f9e3ee44eddf9e6b2580bdc7fa903423e32205d00e414d6c21089b64e06cfa9c Loading...

	pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js	ScriptElement	45 kB	2024-08-20	2024-08-20
Pretty URL pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js IP 172.240.108.76 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash abd5871a32591660863d2416c20ddeb9 9846bbf856eb6d61ab098683e8efab701ca25d00 5439962e566c8ff0f69e248ae9291fb0fc5a05a2900045cb955df684944b298c Loading...

	unknown	ScriptElement	52 kB	2024-02-14	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen161 Hash 6b742a0e049c73773304ce985ef94ce0 af78a543b7bc6c9bb7de6f0664136c03fddc7a0f 84e48bdf0ce16674564197e5ae45172e92ad0b3e63a616a0352f3d99b7c94447 Loading...

	cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-06-18
Pretty URL cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js IP 172.64.160.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:35 Times Seen7834 Hash 4a356126b9573eb7bd1e9a7494737410 8258d046f17dd3c15a5d3984e1868b7b5d1db329 22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5 Loading...

	web.desportonews.com/wp-content/themes/jannah/assets/js/br-news.js?ver=6.1.3	ScriptElement	5.6 kB	2023-03-07	2025-06-17
Pretty URL web.desportonews.com/wp-content/themes/jannah/assets/js/br-news.js?ver=6.1.3 IP 67.205.59.238 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01 Last Seen2025-06-17 16:31 Times Seen288 Hash 39506dac5671f2b65d39481f5c3644b4 a982614aab6d6cd73d85345cd84461b8ef40b0f2 aba848a7cdbe0240e1fdf0b540d3dff72daa9df5b4502e311b3f27a9c85e5759 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1/webfont.js	ScriptElement	13 kB	2023-03-07	2025-06-18
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-18 03:59 Times Seen18399 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery.min.js	ScriptElement	88 kB	2023-11-03	2025-06-18
Pretty URL c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery.min.js IP 192.0.77.37 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-06-18 05:38 Times Seen101068 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

		Size	First Seen	Last Seen
	#1 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07 01:02	2025-06-18 04:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 04:27 Times Seen43988 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#2 Eval - 137569c619100d2b01d6c57b1ef5e019	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 137569c619100d2b01d6c57b1ef5e019 51c0daa0a94edfc45d41b7b8dff30d6bc150a5c6 174e15763e2e8574284135fe74d8848bf0333ae946b7da65cacbecde9e95e9a3 Loading...

	#3 Eval - 793914c9c583d9d86d0f4ed8c521b0c1	2 B	2023-03-08 22:41	2025-06-17 06:29
Pretty Observations First Seen2023-03-08 22:41 Last Seen2025-06-17 06:29 Times Seen296 Hash 793914c9c583d9d86d0f4ed8c521b0c1 240c4df7250227efd16ebedf6de99c5ab3b51698 21262a3cb5337627b0fad9d891c16adb40706bd3e57534416dd02bbe5917d184 Loading...

	#4 Eval - e2a8f50bd7a0ffcd8636d4c8f9aae9b7	82 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash e2a8f50bd7a0ffcd8636d4c8f9aae9b7 d128dfe74183bbbef7f8f98b399ad201df63825a e9c1afa62e6410bff5f12c44446bd2d698d3cebdf96db8436fc38b4686655096 Loading...

	#5 Eval - 8dea28fad410dcb9e4b606dbab8a1688	55 kB	2024-08-20 09:37	2024-08-20 09:37
Pretty Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 8dea28fad410dcb9e4b606dbab8a1688 7bd1ecb183cd8f3d0f8c73dd3ecf6e90b732720c db19ed7cb068e830cfb196e7ea6eebcf1c6fc1e128887aef593459befe456a15 Loading...

	#6 Eval - 49712e6e5ac4f09c1828babc5117c2e8	262 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 49712e6e5ac4f09c1828babc5117c2e8 fbaa79e0fc97e321e3299cb352deaf4e77265d1c 327d237a7ba8145f8182c5afdc7758fff2be9f00251a701fc35875b66e06a153 Loading...

	#7 Eval - 769403db568e39a10789a5abffd97275	456 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 769403db568e39a10789a5abffd97275 4695b6f0fcb9ef700fa86b8965c536bb76ea57d1 858cb9fc6408196dc441bfe83a320ba8426f459adf0445eb6ec0233dbc49830c Loading...

	#8 Eval - 07e180ddecee7d513862f1c4e0dc1685	878 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 07e180ddecee7d513862f1c4e0dc1685 9d41e3e1a5748b52e51fcac67293bccc59a92c97 c7375e11ae0d0ecbceaa1e3297401e52d0a5e08478020df1a31cc8b02afd6548 Loading...

	#9 Eval - 6ed5bc1ca1e4a21a7b0d2906763c9fb9	22 B	2023-10-19 11:07	2024-08-22 11:17
Pretty Observations First Seen2023-10-19 11:07 Last Seen2024-08-22 11:17 Times Seen339 Hash 6ed5bc1ca1e4a21a7b0d2906763c9fb9 119b713a47076bce08e525316ea5da0bbbf32e70 b3433bc894231b3b94d0b52809d03d4fca0f10c436f983021f17f1d1a96d7c6e Loading...

	#10 Eval - 3bf18107bf6aa8dcd2a2ff5f3a1428cb	298 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 3bf18107bf6aa8dcd2a2ff5f3a1428cb 8da8d08eae5cb9404f563cb500b0c809fab8b497 ec1adcd83b5eb627ae691a8d6a21208ec86d4e36b7ec03613be62c3c58f3578a Loading...

	#11 Eval - ebb5de327b25a406a9e7233973b4508d	82 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ebb5de327b25a406a9e7233973b4508d 1d763e58d056890edcb612b24a5b0cf84dd0b8dc a3b75f504d18bcf09e5908ff230c7f56ca3edc7aa9ab7341cbc76ffebb2e6fca Loading...

	#12 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07 01:02	2025-06-18 04:20
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 04:20 Times Seen38514 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#13 Eval - 5dac9b18e35b3ef0972ff128cd8d2e07	162 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 5dac9b18e35b3ef0972ff128cd8d2e07 d7d6ae900339a4329068626d2f2a4460341bd99c 00a31469283685ac649ed4cbde61cccfdb8a8b8fe9f8c4c1c857c73fce9889a7 Loading...

	#14 Eval - d729e356bd37e44963face380699613a	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash d729e356bd37e44963face380699613a 53fd402d794f933ce79cf065ac9ad21e7f137d08 e04be2ec057b9ced7d85f4312385114a08642df8a64359c159812a832ce0904c Loading...

	#15 Eval - dc0f4b1af8b79bae90e312fc3063fa3f	272 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash dc0f4b1af8b79bae90e312fc3063fa3f 8d21ebd6217555ad1fcdea6a9dabf79ff2f252b6 4ef69d71d9ddee3aab2da6d5e6358a37f60bb84ebf73f8f18c7662bfb82dbb98 Loading...

	#16 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07 01:02	2025-06-18 05:10
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:10 Times Seen63249 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#17 Eval - 26277eb0e4be4c92ac4fd252a6b93676	131 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 26277eb0e4be4c92ac4fd252a6b93676 a19f822a730371adb8bd5421611f7308e7f302a2 6bac755bd7178627f022fb1887ce39209c411472efdafd50b9afa47dded40653 Loading...

	#18 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07 01:02	2025-06-17 02:04
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-17 02:04 Times Seen37069 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#19 Eval - e208efbb30de4993fdbd30b378d91b93	53 kB	2024-08-20 09:37	2024-08-20 09:37
Pretty Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash e208efbb30de4993fdbd30b378d91b93 ae6d4edb80f531783fd3cb68dc08a9cadd5a2490 86deb46ec9d08fea6be9ba89394a65af84a88e609b20eef954466d54d9b36654 Loading...

	#20 Eval - 86a1ea3adf8fbb53eb7a9b6b6b01c020	2 B	2023-03-08 14:22	2025-06-13 11:47
Pretty Observations First Seen2023-03-08 14:22 Last Seen2025-06-13 11:47 Times Seen186 Hash 86a1ea3adf8fbb53eb7a9b6b6b01c020 06d4d0b76615c5c5dc781776496d4bdd65d432db 518f962aec78efd4ff5a9268b7e03e5137736cf3d45dd38fca16cbfcde7d5f25 Loading...

	#21 Eval - bbf8619a9375454117b431af3f0afc8a	2 B	2023-03-10 09:11	2024-08-21 07:26
Pretty Observations First Seen2023-03-10 09:11 Last Seen2024-08-21 07:26 Times Seen233 Hash bbf8619a9375454117b431af3f0afc8a 4ce8ac20715258c1f9ccf7820197954dd5651377 5cc285b36ec5430ef78973df56252dac20aca7f2662e80925bc8c0440351618c Loading...

	#22 Eval - 6a70ff4f7ce576991dfb0b7d17349948	2 B	2023-03-07 17:31	2025-03-25 06:36
Pretty Observations First Seen2023-03-07 17:31 Last Seen2025-03-25 06:36 Times Seen504 Hash 6a70ff4f7ce576991dfb0b7d17349948 baa9bb7de1d0bc1bbb883b3906503c2e9e34a03d d3fc2842ddfad4c8d3859f84d4439bfd396381a5c8a4806a7876bcefdc651587 Loading...

	#23 Eval - 93ada40da341d3f06c6b5392c2a501c5	2 B	2023-04-23 09:43	2025-06-06 21:03
Pretty Observations First Seen2023-04-23 09:43 Last Seen2025-06-06 21:03 Times Seen269 Hash 93ada40da341d3f06c6b5392c2a501c5 f71fb785330f1dd6a0baf1a8214a2f4dcfab364e ddc7790c82c5dd42934e830f5d707973d08ced41c905e4d8a27f80a6f4d4db7d Loading...

	#24 Eval - ae9b5ab6a8d2c0ee8b2816f25a741a39	79 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ae9b5ab6a8d2c0ee8b2816f25a741a39 a82e4d95789b3f2d8d58b4bce602542bce1e722f f474f30e1745dfda7e454598400daba2d017cb729095a6e68bca59171ac9b109 Loading...

	#25 Eval - 80954fcc036e5e441fc79b3c9b226196	97 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 80954fcc036e5e441fc79b3c9b226196 afc392a40f664ac89add7d5739e5c0aa6e736375 99856111b386a9dc84005cc506dfd333b5e4c6a731da704486c6233718925d77 Loading...

	#26 Eval - f46658929df8f71e61d1823126620721	2 B	2023-03-07 14:16	2025-06-14 09:01
Pretty Observations First Seen2023-03-07 14:16 Last Seen2025-06-14 09:01 Times Seen633 Hash f46658929df8f71e61d1823126620721 1ea024603580ccff6995e0e4447b60d7984539fb 4e8e104fcd720f5fb5b90beb9dffdb2de65ac3246ce537bd39b1952fc68fd540 Loading...

	#27 Eval - 9b329ad979979a98100e0dfb9753ffb5	72 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 9b329ad979979a98100e0dfb9753ffb5 178481e78bfbef1d83c5ac4d4bc5bbf8603d0798 3061db48b7a9aeb300f5287bcab0edaa0a724aa97cb83ac58c50468f4bf2941b Loading...

	#28 Eval - f9bf5c545824235a64d0dde200bc3d52	57 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f9bf5c545824235a64d0dde200bc3d52 094209cd6c1d905455ce00bdb3447344308a1bf3 06fd63a31ecffb50a5399b9eb824cbc254d5eb82fefcdb46a774cd581b7f1dc1 Loading...

	#29 Eval - be010499efce3d4c06aa95c4a87b9ef5	264 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash be010499efce3d4c06aa95c4a87b9ef5 0a8d4b4e518f1a53230dbdf1cf2d4eb177f9bbb9 41d2dcc7fe3747fa9446ef4e83aa5a3ad7f9c1af76264e61a4921f6387c7f248 Loading...

	#30 Eval - 58791f322c1bfc3de6141788d3b8666f	2 B	2023-03-07 01:42	2025-05-10 15:08
Pretty Observations First Seen2023-03-07 01:42 Last Seen2025-05-10 15:08 Times Seen186 Hash 58791f322c1bfc3de6141788d3b8666f 1370e957dab4f3d207f42f9df4a879edc31222b0 6896b0801b055abe89f0a03bd707a5d106f421a45bd8e2e4f780cdc4a4fe23c3 Loading...

	#31 Eval - 006e8acd21bf765fdff47cf2489e4e78	129 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 006e8acd21bf765fdff47cf2489e4e78 5191c16a997dba1e2ed3bd495fa7cbea1138159e 5ce9ca705873dd39483707f3b634019c7b7f4989238bad7c3dfdd711abc4b319 Loading...

	#32 Eval - 6c4f0e669ddc55aaccdc9a136392bc6f	155 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 6c4f0e669ddc55aaccdc9a136392bc6f 81aee5f5b1e31ad564bd56ca5b343a4f7cec145f c8c72a907558c9a33fe24438752202c3bc83bcc125109fad9d711f0d9981601f Loading...

	#33 Eval - 114e37ac664197c314e0d0dae7ec5a00	264 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 114e37ac664197c314e0d0dae7ec5a00 f773af065298fb7645e09520e4c92dc8576f3878 2dfe7870cb7e2b362b26e8b9b97a8c9f0331455931bdbaa38c4059da78217497 Loading...

	#34 Eval - 4c62bc4fd3c4e105cb3fb62fb748d59c	203 B	2023-06-16 07:31	2025-06-17 11:03
Pretty Observations First Seen2023-06-16 07:31 Last Seen2025-06-17 11:03 Times Seen37036 Hash 4c62bc4fd3c4e105cb3fb62fb748d59c f6e2d1e74e35ec4c4740ba02e890b98bda11417f 9f4a6a370cd350425d8ac08047e7646116468672e99765ca198e6d463ee5286d Loading...

	#35 Eval - d43a9dbbdbd45bd4976e91c972c7be00	106 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash d43a9dbbdbd45bd4976e91c972c7be00 328073fd345fda205236b1263002cea4e303dd8a 6e92ab2366774caca1bbfdfbeeede594fd41f08730203b21152a6d294fdbb5a0 Loading...

	#36 Eval - 819b5fc4045d86661a3e630bd20fdec7	2 B	2023-03-08 06:41	2025-06-09 16:18
Pretty Observations First Seen2023-03-08 06:41 Last Seen2025-06-09 16:18 Times Seen746 Hash 819b5fc4045d86661a3e630bd20fdec7 ac03ad2128889b1970518ab1a32df1bd61f1aeef b9cc272cfc2456cfa99fb4460b33c56e388f255280e9640a79391815f098940f Loading...

	#37 Eval - 15d072b02763cb631495e966f62abe28	259 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 15d072b02763cb631495e966f62abe28 64d87543e428002fb1a981c19de2479ff7a0e9ca d3672da77c637b35057efbd05e69b352b4ff29e4ce05dccda20910fb5587eada Loading...

	#38 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07 01:02	2025-06-18 05:16
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:16 Times Seen45410 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#39 Eval - 0d61f8370cad1d412f80b84d143e1257	1 B	2023-03-07 12:12	2025-06-18 05:19
Pretty Observations First Seen2023-03-07 12:12 Last Seen2025-06-18 05:19 Times Seen9219 Hash 0d61f8370cad1d412f80b84d143e1257 32096c2e0eff33d844ee6d675407ace18289357d 6b23c0d5f35d1b11f9b683f0b0a617355deb11277d91ae091d399c655b87940d Loading...

	#40 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07 01:02	2025-06-18 04:27
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 04:27 Times Seen52746 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#41 Eval - f6a090a308c372683b0bdfe2bbdbe92d	72 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f6a090a308c372683b0bdfe2bbdbe92d 561073bb479145ed9bdca5f85a0bc8c576ab36b0 e679826527bb31f9f467d915e975d7f22ec4a8cf4a31dc3e7bb5c3ae6e759480 Loading...

	#42 Eval - 830652084dda69b6b957e2c3a7bd9b18	2 B	2023-08-16 23:12	2025-04-07 16:31
Pretty Observations First Seen2023-08-16 23:12 Last Seen2025-04-07 16:31 Times Seen640 Hash 830652084dda69b6b957e2c3a7bd9b18 1b4148d1babd98d53b08b3a09f5fe8d460e704e6 266e9979b143c56b0502e3e10ec988800e67a83ab5c57f2d16f8a690f25951bc Loading...

	#43 Eval - 74c2035a9ca9345e21138a833a4eefd8	79 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 74c2035a9ca9345e21138a833a4eefd8 b9e0d59af314c290f27a9289e5facab696375075 c1f11ac47b197f1cd70dd621dbc5c1daea390ecaf132b0cf99c80d3ef05bafa8 Loading...

	#44 Eval - 4b96525f308e9e8f9e4802f5d47c14b6	2 B	2023-03-08 09:58	2025-03-15 10:28
Pretty Observations First Seen2023-03-08 09:58 Last Seen2025-03-15 10:28 Times Seen597 Hash 4b96525f308e9e8f9e4802f5d47c14b6 45ebfc0bfd8f82e5820224c9a3479672656c7f2e 5d48a2b52e2b80d0af5d6476f88eb17446ab91ad890edb04ee666e4824968f8e Loading...

	#45 Eval - 06e336587b9034e8e5aae7cc19bd9b6a	2 B	2023-03-10 04:12	2025-06-09 16:18
Pretty Observations First Seen2023-03-10 04:12 Last Seen2025-06-09 16:18 Times Seen984 Hash 06e336587b9034e8e5aae7cc19bd9b6a 3553b226127e0cccd2bec8c74a70f7d1603f41f9 99d3fd0fa8fe115ef5983b5472cc95a88f2790a6fa89f8785da5afbe7b548bba Loading...

	#46 Eval - 87e831b2ee1edc96538f323affba273c	418 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 87e831b2ee1edc96538f323affba273c 101cfe3066a8e6722461fdf630515289d9285fba 6f3a4722fbf9b91ec5768fb2caef888365e44141583b7f28b23603527146d775 Loading...

	#47 Eval - c7909ff6ce959f3152016d8a3753d868	26 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash c7909ff6ce959f3152016d8a3753d868 c39927a20ec3205fdd655755dad74bcb4fc9fbba 112b527f6632d88b54291c69f723f7673027b6bcd89c6e4707cea0bc4f3211a7 Loading...

	#48 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07 01:02	2025-06-17 02:04
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-17 02:04 Times Seen37081 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#49 Eval - 2e5deda3717abe0b21f464e0b8b9e54d	2 B	2023-05-20 09:28	2025-03-25 02:59
Pretty Observations First Seen2023-05-20 09:28 Last Seen2025-03-25 02:59 Times Seen354 Hash 2e5deda3717abe0b21f464e0b8b9e54d 3f351193008d38944966311c4a05103df4a27c39 7f751fab66ec2a360678717901a0783fb7852b87e33092b6c3490d6527c9062a Loading...

	#50 Eval - 5dd7d2a34326d6cea73c46ff675d8f36	234 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 5dd7d2a34326d6cea73c46ff675d8f36 5fcc0c782ac384aab3e50d49fc5788d88fccac86 81ced27d0e4aad1ad6d82be1e59da39da71e17b3ab7a1593b6ede99a48daccf0 Loading...

	#51 Eval - 4a9d6b87dba7507aaf692d8d6a251742	58 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 4a9d6b87dba7507aaf692d8d6a251742 23199294a21abbca1607cbd4a1b7d27a86774a87 d097709a7a7e72f710c4d059c7da0e509648149620fddb8c073cdbaca60a7280 Loading...

	#52 Eval - cab0ab426471767d67d0380e82e32650	77 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash cab0ab426471767d67d0380e82e32650 c65f2f1fecd4843753ca583e59e46223424465bf 1562fd149c59938c1d3c91b5184f4c5d1ef32b77124bc94912c367eafb0cc2d5 Loading...

	#53 Eval - 04dace3215e84b155b637b1f3325042c	451 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 04dace3215e84b155b637b1f3325042c 069c41703a9390aca60e4a21be2146a5f7b79e51 de291f5482a966c0e4c448aaa55d052656e87715604ffe755fd5c517b7dc37f2 Loading...

	#54 Eval - 2d46d78289af2bbc248f0e1231e740b1	185 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 2d46d78289af2bbc248f0e1231e740b1 2c82d6d69dabd591bdcc08adda334349f31f80dd 7a3d1fc89e4fb5f7403a74a7e89e870f5bdeaa65807f4894b144e87278b9ed95 Loading...

	#55 Eval - f0b4351d50d5ddb1274087ebc984a22b	320 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f0b4351d50d5ddb1274087ebc984a22b 90263605a7c9ab31e523c739324b1de2497763ff f129bc8a3b244d865ac92a2dd442f54dd369bed56ec2a948c3bde19b01345367 Loading...

	#56 Eval - ac9a44e6da26737c592eca9fc48de8bc	157 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ac9a44e6da26737c592eca9fc48de8bc a37c7133fa0bfa191a8c40c07975178da0d309b9 1c126675320a41e5fcfd4f29c9ab8265cf6e5d771f25a4f5968616ccc8bb9baf Loading...

	#57 Eval - 929e26bceb98e919c85d30c64f21da2a	26 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 929e26bceb98e919c85d30c64f21da2a 74adf2c08827133306d6afd7d73bd7cbec4392d3 9ba6a6fd67d682b02425365eeb9be489cf5b257b46478c00e711dda52b41eb37 Loading...

	#58 Eval - 5c095a38d5aafb23b5b1ce870642e826	79 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 5c095a38d5aafb23b5b1ce870642e826 bf72710eb28b2f6d16a2436f9805d3311437bc20 f9d371b6efcbcd4cd33d08f17abf8546c4bc348f0f8c219983aeed4f35343952 Loading...

	#59 Eval - 581d760a2f67a39de8f021f70b71b690	56 B	2024-08-20 09:37	2024-08-20 09:37
Pretty Observations First Seen2024-08-20 09:37 Last Seen2024-08-20 09:37 Times Seen1 Hash 581d760a2f67a39de8f021f70b71b690 d9ae21b9fd36263b035b477722baa6f00548003a c5543488209cbe5780b92cd6001409f996e28bc95b619ab89b0f1df984e05302 Loading...

	#60 Eval - 96b644c08c57fc5f2c4bb3fe445166a3	145 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 96b644c08c57fc5f2c4bb3fe445166a3 61383e22967564af7f996abc73d445b39748d7eb d66e141807ff69bc64416fae64d770a857570af78c3e72ac5ed92a6e8923ed2c Loading...

	#61 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07 01:02	2025-06-18 05:19
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:19 Times Seen48317 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#62 Eval - 3299fd77a0e0a472537f081b848d8dd1	34 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen140 Hash 3299fd77a0e0a472537f081b848d8dd1 bd18c8479343b4102485da1caad798d75ae70a48 0a0fb19e0a8900d510e934eddf6e49f930b09ffd62821213eddd3a74d1c1302a Loading...

	#63 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07 01:02	2025-06-18 05:38
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:38 Times Seen56780 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#64 Eval - 44c29edb103a2872f519ad0c9a0fdaaa	1 B	2023-03-07 01:20	2025-06-18 01:10
Pretty Observations First Seen2023-03-07 01:20 Last Seen2025-06-18 01:10 Times Seen8953 Hash 44c29edb103a2872f519ad0c9a0fdaaa 511993d3c99719e38a6779073019dacd7178ddb9 5c62e091b8c0565f1bafad0dad5934276143ae2ccef7a5381e8ada5b1a8d26d2 Loading...

	#65 Eval - 5a4e1512f6b29f503f1e4992d5c920c2	221 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 5a4e1512f6b29f503f1e4992d5c920c2 3073b6940a1b4df4ce998db65b52e6d34f5f5682 24fbd7ac4bbf89c19f8932d90730fb8755e5e89f7db4551ed9130af63f19acdf Loading...

	#66 Eval - ba5a7d9e17dda3e7c1e4618c7c7fc4fe	743 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ba5a7d9e17dda3e7c1e4618c7c7fc4fe 96835f65dd419be7a1e4458c78eead38792a05b6 6c0d3b1cd2cca89e1b2a43ae4162ef92ea429c57bd0da8a04ea45ad86f548eed Loading...

	#67 Eval - 96d66a4d9708fdb6dd5597f3bbc7d624	195 B	2023-03-08 14:47	2025-06-18 05:16
Pretty Observations First Seen2023-03-08 14:47 Last Seen2025-06-18 05:16 Times Seen45282 Hash 96d66a4d9708fdb6dd5597f3bbc7d624 e10a66fa8a836f6f948941262b70e1fc928a446e 3cabac574ada654802fc1c4518d870f0791a9a3ac31371677e75fb683e47ce89 Loading...

	#68 Eval - 288b48e7997b8d1ab6f2a0426e5a18b0	95 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 288b48e7997b8d1ab6f2a0426e5a18b0 7e9fc7356ce7213dbc22b8be4e7179f9871d0636 3db4be548d083a919e7078d3619294b5b18b4ca1878688d7ddb4a1da6b7ab3a2 Loading...

	#69 Eval - 5c4fefda27cfe84c3999be13e6b8608a	2 B	2023-04-01 11:22	2025-05-19 03:54
Pretty Observations First Seen2023-04-01 11:22 Last Seen2025-05-19 03:54 Times Seen594 Hash 5c4fefda27cfe84c3999be13e6b8608a d61e3363def3f4e448c68105abdea736e4532873 8f455bba4522752c63bbcd2b6d4c954e66a2bade8792dbe67be7c088affa422e Loading...

	#70 Eval - 3a91e307a71971f60295a29cbe516b6e	132 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 3a91e307a71971f60295a29cbe516b6e 5b6bebad916243f29e29a6e89508e415ae0122d2 79e22fb57188117259c067b99f1653de35973a887d89aef715b906c65a44265f Loading...

	#71 Eval - f0444fbdc436153588391c74dea73ddb	236 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f0444fbdc436153588391c74dea73ddb 7bdfaa92c0a90b72676932cce54e55c3333f4d33 214ef0df8a3176462d75d132203bbc8e1e0836fca7e94f2f7b5b0181cca8b4e9 Loading...

	#72 Eval - dfcf28d0734569a6a693bc8194de62bf	1 B	2023-03-07 01:02	2025-06-18 02:35
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 02:35 Times Seen10066 Hash dfcf28d0734569a6a693bc8194de62bf a36a6718f54524d846894fb04b5b885b4e43e63b 333e0a1e27815d0ceee55c473fe3dc93d56c63e3bee2b3b4aee8eed6d70191a3 Loading...

	#73 Eval - f27014d3da28e0b4483d4bf492c8ea54	65 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f27014d3da28e0b4483d4bf492c8ea54 74bcba449c6931f01aa5e560e1c11aaabf308c9c 198cf85577f5a0eba55ef7d10c6b2add7f105200b47c0e0c25bb7e2dba88839b Loading...

	#74 Eval - ee8a1d7032c06acab8873b4046b5d9ee	118 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ee8a1d7032c06acab8873b4046b5d9ee e4d33c476c9c6f87ce50cc709cbf8e9d3df4c9b3 ce9fe680ab7a4266e24c7e4c606bc2e83c2323aaa0b13fb3f5aa6a8f3d3dde72 Loading...

	#75 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07 01:02	2025-06-18 02:12
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 02:12 Times Seen61438 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#76 Eval - 9be5f6606c8a463a15615ba27d6086c3	63 B	2023-03-13 02:11	2024-08-22 11:17
Pretty Observations First Seen2023-03-13 02:11 Last Seen2024-08-22 11:17 Times Seen25387 Hash 9be5f6606c8a463a15615ba27d6086c3 86a2fe727ef0ec4e23f1be261de127f0713e3f32 57e4541e6b4799c76812f6de6ff4aa7605c94d3cc7aebb5e8770c57efa4d28f0 Loading...

	#77 Eval - abfeb2b736b44ad3e9399c8238efe386	208 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash abfeb2b736b44ad3e9399c8238efe386 9b6c645383f24758c457eee5dd4e576676eea39f 3acdbb637ec22e9a54dc8ad9439215793cf9db6487191c6fff2c9697ddf432c3 Loading...

	#78 Eval - caf0406b9b143f1d257f81450b8f3fba	76 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash caf0406b9b143f1d257f81450b8f3fba f346ad07075adba2ca716c892d524ac0050259cb 537d239e92f6da523ebebdbda893c88cd0c856e564cbc60ce703f543bb642c83 Loading...

	#79 Eval - 7111d8989b4274a848342dc4d4ad11cd	79 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 7111d8989b4274a848342dc4d4ad11cd d611980026ea3852dacdca086f1659c0c7e48bfc d1b69f2f51a2afd06c71d21db2e2ffb0f62a548e08ff20d4817a69c5e996eb66 Loading...

	#80 Eval - a072c5b23643c7778744a8f5c011ac07	96 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash a072c5b23643c7778744a8f5c011ac07 c5e281e23381211874d7ad1b511091802d7a5b7e 55e1d72be747d614b68ef6573fcc1fe8c507894a03607eddcaeb37d2148b0e7b Loading...

	#81 Eval - 01d0ff7df2dbb10a1bd127a71b11f08e	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 01d0ff7df2dbb10a1bd127a71b11f08e bd6a43834401816ce19a05985cfe1157c282a720 dc3b52e6a4f5d8735c6000e965b930f615ccb7703c140efd6eca2c5de7ba0e38 Loading...

	#82 Eval - 739c29bd770dd281ccbee6dc2086a828	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 739c29bd770dd281ccbee6dc2086a828 b36c182a76879112c6913d347c63ed5311dd1eb1 616fc90731273a599161fd7a142bb3983efa68e6f4e38619d355fba4873309ee Loading...

	#83 Eval - 93ade46b348b2a722430ceaa9234e0c1	358 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 93ade46b348b2a722430ceaa9234e0c1 e771e1e9ea85f31fd993975e44fbff2f14c64a86 2474b05cf1f8201ddad0bb7c5906deaa528caeefbc98ed3a8462a80035b74270 Loading...

	#84 Eval - a2bf66b0221273661f65d3be7d3063c2	300 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash a2bf66b0221273661f65d3be7d3063c2 db89915d6bda8bf6ae8d7463ee597a8115d7300d a7cec7fc507929f7f8348f8869ae54970ba755821c9a8fb685e0bb709345f099 Loading...

	#85 Eval - 800618943025315f869e4e1f09471012	1 B	2023-03-07 01:15	2025-06-18 05:19
Pretty Observations First Seen2023-03-07 01:15 Last Seen2025-06-18 05:19 Times Seen8829 Hash 800618943025315f869e4e1f09471012 e69f20e9f683920d3fb4329abd951e878b1f9372 f67ab10ad4e4c53121b6a5fe4da9c10ddee905b978d3788d2723d7bfacbe28a9 Loading...

	#86 Eval - 05918b8b3437675fd82f88f9488c639d	2 B	2023-03-11 16:25	2024-12-24 09:55
Pretty Observations First Seen2023-03-11 16:25 Last Seen2024-12-24 09:55 Times Seen299 Hash 05918b8b3437675fd82f88f9488c639d 799a12625051a5fe5760d613b2ccbb929f82169b 46e52e1d27cc9aa02b70cdbfc12755ce22acbe5aa0a283a1486f7ab8a25f2609 Loading...

	#87 Eval - 415290769594460e2e485922904f345d	1 B	2023-03-07 01:11	2025-06-18 01:10
Pretty Observations First Seen2023-03-07 01:11 Last Seen2025-06-18 01:10 Times Seen11615 Hash 415290769594460e2e485922904f345d 95cb0bfd2977c761298d9624e4b4d4c72a39974a a1fce4363854ff888cff4b8e7875d600c2682390412a8cf79b37d0b11148b0fa Loading...

	#88 Eval - 1032e4d5e0965366aedb4a0d31789219	876 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 1032e4d5e0965366aedb4a0d31789219 02180aeadf44d7d5ebfe3f70a94306be673d113f 6b4e81f571223f3f322190201e7e7da21297d0cbdb7bb24dea98a8d9ea38573b Loading...

	#89 Eval - 05f11b19ff20af51d560b1b94f8cd734	132 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 05f11b19ff20af51d560b1b94f8cd734 5b6d0e1b668e01ba8540ac3f9bbd54376ab70591 1faec19be98a592aac239b764db645d979bf5767105cf02084c05decd8420945 Loading...

	#90 Eval - 336bd8958ebb02e5d7f81e1746df6863	996 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 336bd8958ebb02e5d7f81e1746df6863 ee9ba4eca5d8fa762c5983fb2b41eb5b053001ff 29152f3d5465ff46d7c010848415ee3a7d064249cdb062d3bea824ba8ffde7e3 Loading...

	#91 Eval - c888d217d1f2f58f01c6d34bdbb28b8c	73 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash c888d217d1f2f58f01c6d34bdbb28b8c c68ac26a2aef9f8421321a0d2bc788a07fbd29ff 66265e7a830e55dc95216e4265ac3c3b60a2e6d8ee276706bc35303e653d53e5 Loading...

	#92 Eval - 0e3f216212f1286a56fa5ab55d6bdaa3	26 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 0e3f216212f1286a56fa5ab55d6bdaa3 e498d6d49b9a1d6d1103b26e6893a4afd4dc9f26 08013598584ac3c78048cad62addc26f417b59fc16a9eb2ad3efecb2fba4502a Loading...

	#93 Eval - 47ddb17f9ad44ce096a6fdc57c98efb1	2 B	2023-03-08 04:29	2025-05-22 06:07
Pretty Observations First Seen2023-03-08 04:29 Last Seen2025-05-22 06:07 Times Seen349 Hash 47ddb17f9ad44ce096a6fdc57c98efb1 e7a442abf8cd6b48f4572724febb1488eceedcf2 e3ac48109508f61eec15e0a0b1ea9bfd0301f9ad2b606f7f78695e47b9b3b6ff Loading...

	#94 Eval - 3cf4046014cbdfaa7ea8e6904ab04608	2 B	2023-03-10 09:28	2025-01-09 09:23
Pretty Observations First Seen2023-03-10 09:28 Last Seen2025-01-09 09:23 Times Seen1163 Hash 3cf4046014cbdfaa7ea8e6904ab04608 fd0aa93434507bb33ff096a66a4891c2bc4fa12d 70a0d5198ebb88f97a2cc83a236a8afcc28c7d9e6abf40c173dd54c9f45ad7f6 Loading...

	#95 Eval - eec16e04c5e0ada6fc67dcc449104f1d	91 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash eec16e04c5e0ada6fc67dcc449104f1d 7d2ddfa25e8ff724871fe7a1e7cf162affcfd221 0036395971f5ad9650adf6d6f730d93cbe8d1bea929d6f68c2ed08c845e82ef1 Loading...

	#96 Eval - 8aae89475cd6d762b9d0201fa7272c8f	92 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 8aae89475cd6d762b9d0201fa7272c8f 18d3ae965d117b09aa0536bd34340cfbea566f54 4b48026d747b9da82f0773caac5659478e599e84fa6fc4462d975c9e8207044d Loading...

	#97 Eval - 7e66a51f74acfb5a0b5ca22d39a4ed03	591 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 7e66a51f74acfb5a0b5ca22d39a4ed03 5c266b79c09d7d2274786275c0efb6efbdc61640 2a35a9ab7fe259838f19f10e5d131a705afb0c086836b3c6e89237615456e29b Loading...

	#98 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07 01:02	2025-06-18 05:19
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:19 Times Seen52485 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#99 Eval - 10001c4720184cececba2c2123524765	55 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 10001c4720184cececba2c2123524765 eb624aaf8734446bf5f1ab713ade271246da1b78 904a04477eac2688ade95dcea19d495fa3ff1f845d3a113fd35676e401116da4 Loading...

	#100 Eval - f84f000474eee84869872ad0f0501a10	130 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash f84f000474eee84869872ad0f0501a10 ee9c44541eadcb8e4548ee561593621e7e9e4b84 c1aa3dbcfd393aff5ffcb6d8594a78baaa4c4a3556ea91c0df8bcbeaf83cae38 Loading...

	#101 Eval - 22a5f63edc248cc339f58efbe6e6115b	478 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 22a5f63edc248cc339f58efbe6e6115b 9692d3f28d1574b6c32b5780aeed9db3ed07a37e 722f6882ecac205e23f68dca7ec344fb788867646f583a2d4088bf81a51a5466 Loading...

	#102 Eval - 8643e485c84a0d8126e115e02c332456	57 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 8643e485c84a0d8126e115e02c332456 4cd7f95651389f095b1b0a4404432ee0667e0868 e025f57ab2457950ff2fdebe4f5c4bffd18ae41510be5b95c10f2600787d03ef Loading...

	#103 Eval - 9dd4e461268c8034f5c8564e155c67a6	1 B	2023-03-07 01:02	2025-06-18 05:38
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:38 Times Seen7749 Hash 9dd4e461268c8034f5c8564e155c67a6 11f6ad8ec52a2984abaafd7c3b516503785c2072 2d711642b726b04401627ca9fbac32f5c8530fb1903cc4db02258717921a4881 Loading...

	#104 Eval - 21c2e59531c8710156d34a3c30ac81d5	1 B	2023-03-07 12:02	2025-06-18 05:38
Pretty Observations First Seen2023-03-07 12:02 Last Seen2025-06-18 05:38 Times Seen11202 Hash 21c2e59531c8710156d34a3c30ac81d5 909f99a779adb66a76fc53ab56c7dd1caf35d0fd bbeebd879e1dff6918546dc0c179fdde505f2a21591c9a9c96e36b054ec5af83 Loading...

	#105 Eval - 26951e1c727600477b678d05d21ffe88	318 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 26951e1c727600477b678d05d21ffe88 4e6ebda26ed88b2823c4f0b162012e9bfcc5ad98 56e1bda002c8336b0e0c9f399899524c6c50bf192d0ea2abb8abca2e290b07aa Loading...

	#106 Eval - d14290574145db771d4cda8c49764f4a	136 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash d14290574145db771d4cda8c49764f4a 7d4d4d5c1a815ed182ccf96b3e660cea8eaf2c26 484b230fde940b3a6720745b8730a1cd1f0432fce5111b7a59e86636ee157462 Loading...

	#107 Eval - ec204418f648b088ab7fbc3e1edf2bea	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash ec204418f648b088ab7fbc3e1edf2bea dc9afb93dcef2eac1b0c5b685fd0c1da531b0bc9 e0954a324316f28c3bc2761a536d01ff2ff90a994fc59a6b22af53dad83acb22 Loading...

	#108 Eval - 510224239d9c6b845817bd87801f508f	567 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 510224239d9c6b845817bd87801f508f 336aee1f47035736bcad67ec761401210a974d23 9e2d89e56c8fc5090abdaeac5fd855b4c07f94bcb7120f3c673369b1b32987fb Loading...

	#109 Eval - 8dab6f55935a6c4f4defd27af1602905	2 B	2023-03-07 17:31	2025-03-25 06:36
Pretty Observations First Seen2023-03-07 17:31 Last Seen2025-03-25 06:36 Times Seen217 Hash 8dab6f55935a6c4f4defd27af1602905 5e73ef48c6234f2757174768799c49c9edd9f46a 291449ad6e701a31138e8a8d41015b06004496d610004a34098ae5410bfb8f96 Loading...

	#110 Eval - 90749cdccc92b64023af65b2c2e09841	52 B	2023-06-30 03:07	2025-01-10 21:02
Pretty Observations First Seen2023-06-30 03:07 Last Seen2025-01-10 21:02 Times Seen37627 Hash 90749cdccc92b64023af65b2c2e09841 c462a67f6bc05d361593fd7bdc0821fc6fbb27b4 23f5d7bca8a3fd67ad081a77c0f5ab552436896346a404b9a58840870ec9eb1d Loading...

	#111 Eval - afffb04a1f2e8f0cc035cfe28bf455a8	131 B	2023-07-02 14:54	2024-08-22 11:17
Pretty Observations First Seen2023-07-02 14:54 Last Seen2024-08-22 11:17 Times Seen20347 Hash afffb04a1f2e8f0cc035cfe28bf455a8 920c52f3e931c79600ab73dca9d4baceaa721aa3 1224c72af04d20c26e9dea6a1295f8703ef495872d17d051e94ac95dab0cf66a Loading...

	#112 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07 01:02	2025-06-18 05:16
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-06-18 05:16 Times Seen45758 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#113 Eval - d445f8b3fd5b70d1e7af551b6b7e4871	741 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash d445f8b3fd5b70d1e7af551b6b7e4871 96c94034e67b5dbbe56d518f0273359e7f49be3e 39d41ab5fac1c575e06ee9d8c71d3fdcc7c1664fb4fc03b4ac194d3fe6220379 Loading...

	#114 Eval - 791c8faabb4af608ce8588393e66c7ff	2 B	2023-03-07 12:04	2025-06-12 18:05
Pretty Observations First Seen2023-03-07 12:04 Last Seen2025-06-12 18:05 Times Seen322 Hash 791c8faabb4af608ce8588393e66c7ff c481be7143d0f9f10318e2dfc79edb7dbc5d08bc 2d57cee310b108489f4dbc7adea2096967c661f60f1c0d84acd45fec4452acbe Loading...

	#115 Eval - 264b306b59c067c891c6e5d967c77915	320 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 264b306b59c067c891c6e5d967c77915 235cff9f8b247d9c5525a00bb4ff3c65d85c9bb3 caafc8cd28a99a451e1b1467441e887d5b6232906212770ea22f8bfa400040ab Loading...

	#116 Eval - 2e43e4ea31531ebf0803515ea4bbb28a	107 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 2e43e4ea31531ebf0803515ea4bbb28a 79d90f85e26cb003ecc52caaa0bbaaf8cf434f06 a2c75d75b3d75552a32320b24f6f39dc5765213a3b90eb2ce9864359fcef4f6d Loading...

	#117 Eval - e4b3d36f25cea4c225c25b6803d8a334	356 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash e4b3d36f25cea4c225c25b6803d8a334 c93c4576daf3cf98e644c33897bf1a5e019a4617 7f311b9a284a407a693ed67918712ff874d68e391ab4a6fc6adcd27fc6c323c4 Loading...

	#118 Eval - 61a6f2652a0b6db05139abddb9b96ab7	38 B	2023-03-11 13:53	2025-06-18 05:38
Pretty Observations First Seen2023-03-11 13:53 Last Seen2025-06-18 05:38 Times Seen40113 Hash 61a6f2652a0b6db05139abddb9b96ab7 05548eab56f32db3c8c42fd2487a3f3b3ccf0ee1 cc6e0d6af3dc4f620458aa79c4f4c0631ebc1bd55a148f5e9a06ea8874885831 Loading...

	#119 Eval - fe756cf950ca6dd8835d29c3e833f8f3	155 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash fe756cf950ca6dd8835d29c3e833f8f3 8bacd3b3d1f7ff5907798b99531b6e6a79f750f4 be2d5b6e1400952ab0da5c6b766d9cb900365a782bc5c4df041f1514e267b40c Loading...

	#120 Eval - ce1d5a2480e0f4a2d1c1c7968cc66c13	2 B	2023-03-08 08:08	2025-04-28 03:57
Pretty Observations First Seen2023-03-08 08:08 Last Seen2025-04-28 03:57 Times Seen516 Hash ce1d5a2480e0f4a2d1c1c7968cc66c13 5644a3f6d24dcd489c4300bdf0bee118eb558724 7ee0a6aea916330f53642770fe109e59c0d7d6139f0bc702609029b0124cce4c Loading...

	#121 Eval - 91033a55d9486cdf70a2bdbc8c568b30	22 B	2024-02-14 10:17	2024-08-20 09:41
Pretty Observations First Seen2024-02-14 10:17 Last Seen2024-08-20 09:41 Times Seen160 Hash 91033a55d9486cdf70a2bdbc8c568b30 20d020d276e2c83213d86f1dcf95cd6e46c851a7 a95bdbdc7c16cc2f4ef4d8349576dbe3a36a6010799b5bb2111025a92d8be76d Loading...

HTTP Transactions (147)

URL IP Response Size

web.desportonews.com/wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar.css?ver=1.0.13

67.205.59.238

200 OK

1.3 kB

URL GET HTTP/2
web.desportonews.com/wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar.css?ver=1.0.13
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1318 bytes)
Hash
cf0850c82fe4af74cb76f5f2308bf6b0
49af61e5d757cc670ea8d55e3cbc33449f8e2965
595c617159c1c0bad404de8ec41ad5e69dd9d5bdec27488c0efbec1a09c98d78

HTTP Headers

GET /wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar.css?ver=1.0.13 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Mon, 22 Jan 2024 09:44:39 GMT
etag: "1f4d-60f85adad9809-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1318
content-type: text/css
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar-icons.css?ver=1.0.13

67.205.59.238

200 OK

439 B

URL GET HTTP/2
web.desportonews.com/wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar-icons.css?ver=1.0.13
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with CRLF line terminators
Size
439 B (439 bytes)
Hash
e8a5fc14c014e89170c3ba61380c8c2d
928118e906a4f65665aae9b19eee78da88032e10
a991de1d93698e6cc2b79d5db259534b0697fc57e1a861505f2bdfba931723c6

HTTP Headers

GET /wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar-icons.css?ver=1.0.13 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Mon, 22 Jan 2024 09:44:39 GMT
etag: "512-60f85adad9809-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 439
content-type: text/css
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/dba8b4b3-a3f8-40d8-b1e2-564b33af847c.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

5.4 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/dba8b4b3-a3f8-40d8-b1e2-564b33af847c.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.4 kB (5426 bytes)
Hash
cd030126a6b2f249dba0ac5239fec2ee
82a04d2969a9e570af66967c27c5af3c9c269c23
6ca0e6ce125480ea34d36a94e46d997b263f42ab7922793dd86ff5e248dc709e

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/dba8b4b3-a3f8-40d8-b1e2-564b33af847c.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 5426
last-modified: Mon, 12 Feb 2024 03:27:29 GMT
expires: Wed, 11 Feb 2026 15:27:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/dba8b4b3-a3f8-40d8-b1e2-564b33af847c.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c56f40055866d385"
vary: Accept
x-nc: MISS arn 2
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

9.4 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
9.4 kB (9388 bytes)
Hash
c288eaecda2254bd7c16f1c8f4c3d594
0a42c84005f6b587c9bb490ef31671d843f401c2
9bc48a240aca4bab9448c22dccfb599a86322a9447c10008cec86bbaa6f1556d

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 9388
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "5849b692ea823af0"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/transferir.webp?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.8 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/transferir.webp?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.8 kB (6832 bytes)
Hash
faf0e902a00bb0b6253803dce1787912
d80da52aa4abcfc3a8c194a1a810a2eb43848534
f5f4a5ac95e51466361b77a1c74c7e61f96f3cded00f6b405923c0a15ecedc44

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/transferir.webp?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6832
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/transferir.webp>; rel="canonical"
x-content-type-options: nosniff
etag: "9d0f6d2f418943b3"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/tewkh235-1024x597-1.webp?resize=220%2C150&ssl=1

192.0.77.2

200 OK

8.2 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/tewkh235-1024x597-1.webp?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.2 kB (8232 bytes)
Hash
fdb5a166c1bffeb5383f5b3bc22ea116
b132d2b0487a2193fe00de11538eb0de5cf735c8
5233ab9ad1b83094550caffb516218d479246d329b906625825808ebdfb9c714

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/12/tewkh235-1024x597-1.webp?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 8232
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/12/tewkh235-1024x597-1.webp>; rel="canonical"
x-content-type-options: nosniff
etag: "5fe5b64669b93e7b"
vary: Accept
x-nc: MISS arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/img_476x2682017_12_02_00_31_00_1340195.jpg?resize=390%2C220&ssl=1

192.0.77.2

200 OK

5.2 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/img_476x2682017_12_02_00_31_00_1340195.jpg?resize=390%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 390x220, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.2 kB (5238 bytes)
Hash
ebedf7e94e979d8061fe5f5b21adf176
f936c38066db1e635675ce1cd17e96f3a36b31fd
08592983d3eee881e2c3db3ad48b2b4c0d8ce5e82dca7e9d2032a5e90b0b2025

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/img_476x2682017_12_02_00_31_00_1340195.jpg?resize=390%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 5238
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/img_476x2682017_12_02_00_31_00_1340195.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "727a19cfcfff6eba"
vary: Accept
x-nc: MISS arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/img_476x2682023_12_22_00_11_04_2203400.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.3 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/img_476x2682023_12_22_00_11_04_2203400.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.3 kB (6258 bytes)
Hash
6b708dc06ad406b1c836e4b1209e3018
8ba09c2afc0093f42264b745e69856f0dd7d38e3
63ba2aef0f39e8ae3a90cf594af17843d26d8e937ac99d34024eb1c29f80db7d

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/12/img_476x2682023_12_22_00_11_04_2203400.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6258
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/12/img_476x2682023_12_22_00_11_04_2203400.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "eca9fb2a29828616"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/1000086483-2.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

3.8 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/1000086483-2.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.8 kB (3784 bytes)
Hash
d087e9bc2e31ddd98ce0c001b1b70aff
77335b5c61d0ffb8728e712fc4941b034835fbea
fc104c7fc60d1d9cfb698ac9d3108f88cd1bd7224c12388673ea896a275aec09

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/10/1000086483-2.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 3784
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/10/1000086483-2.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f9410681465c540a"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/Sofia.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.1 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/Sofia.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.1 kB (6118 bytes)
Hash
970747945251345216cc5843126b822e
a6e0bbf22a43cb2339956b4a067c089e9294278d
d82fe234936a707fef547f319a93671b75597595a491f2fb4c2cbdff4054dcd3

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/10/Sofia.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6118
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/10/Sofia.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "c853c9a0b22fe81b"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/138B6795-06D7-4CDF-AC15-98826220AF85-780x417-1.jpeg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.9 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/138B6795-06D7-4CDF-AC15-98826220AF85-780x417-1.jpeg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.9 kB (6874 bytes)
Hash
3c003eac4805db97eb8fdd4295bde757
10aac518849d874b7b2e183a3835d5a434724d54
b25832ee4bf6b99651a0a3299c9cbf4b7cd62c0ba0e2aaef9cb337d5af38cd78

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/138B6795-06D7-4CDF-AC15-98826220AF85-780x417-1.jpeg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6874
last-modified: Mon, 12 Feb 2024 03:27:29 GMT
expires: Wed, 11 Feb 2026 15:27:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/138B6795-06D7-4CDF-AC15-98826220AF85-780x417-1.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "3cbaf5aba67adde6"
vary: Accept
x-nc: MISS arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/AA1mhnsS.jpeg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

3.5 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/AA1mhnsS.jpeg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.5 kB (3528 bytes)
Hash
d7251d99ae40f41b2451f657d04b5516
5db51165129896a808a3db480149ce94e4a96141
3dac1b91deaa60f525c86290b0080af5f7eb4e4d4de44f82f6998aed0f539546

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/AA1mhnsS.jpeg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 3528
last-modified: Mon, 12 Feb 2024 03:27:29 GMT
expires: Wed, 11 Feb 2026 15:27:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/AA1mhnsS.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "0b07b2e48bf2bb31"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/Jorge-Amaral.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

4.5 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/Jorge-Amaral.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.5 kB (4536 bytes)
Hash
15fadf72911e76ac01660750addad8f2
d20c7747af2c8a03284f97841bef0984572c82ed
a6ed514ca197767cc24bf89c9b65909e9b52c9d05c2cec21136054f8f9d0cb4d

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/10/Jorge-Amaral.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 4536
last-modified: Sat, 02 Dec 2023 20:43:47 GMT
expires: Tue, 02 Dec 2025 08:43:47 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/10/Jorge-Amaral.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a3e79ce69cca1d22"
vary: Accept
x-nc: MISS arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/1000153728.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

4.4 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/1000153728.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.4 kB (4410 bytes)
Hash
67795381dda5dba162b677be3470fa3f
4f4d92e3238dcf75fff14431fcd4a2d02e7c4fa6
79ff8c71eeadf7087af840d345bba74db8b9012e7c9b129a96e596ebcd54832b

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/1000153728.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 4410
last-modified: Wed, 07 Feb 2024 11:17:53 GMT
expires: Fri, 06 Feb 2026 23:17:53 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/1000153728.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "69602f245c000297"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

4.5 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.5 kB (4486 bytes)
Hash
a62e2b41672def6d9951260e89916bab
1c4ee74eb5b475143afa42c7e4eeb4a5f7cd497b
0268f1f50f232c1d82b78100eef7f8215f0fb749eb7d71b00cd9af2142487628

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 4486
last-modified: Wed, 14 Feb 2024 05:57:24 GMT
expires: Fri, 13 Feb 2026 17:57:24 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f7721e521b86e762"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1000148816.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

7.8 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1000148816.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.8 kB (7768 bytes)
Hash
91f2653605044cfec9eb5c37c3484e23
4c7d9f8d0445ea50ad5168a68a0f069fda71a81c
d44a2255a18b4b617388467882805a37fd88dd28fb22c7af1e6f05e44bdd9dd4

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/1000148816.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 7768
last-modified: Tue, 13 Feb 2024 11:45:29 GMT
expires: Thu, 12 Feb 2026 23:45:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/1000148816.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f5ae7e4ff6cecd3a"
vary: Accept
x-nc: MISS arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65ca9b72a2e25.jpg?resize=390%2C220&ssl=1

192.0.77.2

200 OK

13 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65ca9b72a2e25.jpg?resize=390%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 390x220, Scaling: [none]x[none], YUV color, decoders should clamp
Size
13 kB (12778 bytes)
Hash
e5e7f20fea2ca990f8093a8f605ca0a5
133083e8993ed6f00c7cbe42516e0d4991225761
079d01e9ff4ea0bfe0e3b147899c0e9b550f74e268c6d70c0ebc55582374ed53

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/naom_65ca9b72a2e25.jpg?resize=390%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 12778
last-modified: Tue, 13 Feb 2024 08:44:20 GMT
expires: Thu, 12 Feb 2026 20:44:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/naom_65ca9b72a2e25.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "aa04f3e05f2d39bb"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1707804957867.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

46 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1707804957867.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
46 kB (45606 bytes)
Hash
2d14d9567c45fd48b701a36b222bcd48
1c91c378793d61d89fa0388fcaed1f1111679afa
03ba28a135263aadd1fae541bf01324013126aaa47166e189ce8d7ae8b7f4745

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/1707804957867.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 45606
last-modified: Tue, 13 Feb 2024 11:45:29 GMT
expires: Thu, 12 Feb 2026 23:45:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/1707804957867.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "40f54976bc143d92"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/img_476x2682024_02_03_22_39_12_2217641.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

2.9 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/img_476x2682024_02_03_22_39_12_2217641.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.9 kB (2908 bytes)
Hash
560a27448bfed5902361216df173b8e1
9eca0e85244f1e775f17a3be0cb317dfab7a0575
bd0a1408af0ffc66937ce0e5d42d7a11b4a008790ef7c6a2f99a63c0009e579d

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/img_476x2682024_02_03_22_39_12_2217641.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 2908
last-modified: Wed, 07 Feb 2024 07:21:50 GMT
expires: Fri, 06 Feb 2026 19:21:50 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/img_476x2682024_02_03_22_39_12_2217641.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7b047df52d7e783b"
vary: Accept
x-nc: MISS arn 3
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/fernando_alonso_pinto_da_costa.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

5.4 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/fernando_alonso_pinto_da_costa.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.4 kB (5354 bytes)
Hash
a6d5b5c693948352691362a11956f23a
ea6bfb47fe0fa68d5d92305d087a3af2013fa1f2
d2ddf559983c53475ae51490584db73fb2886167d084b4b4447ed46962e09059

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/fernando_alonso_pinto_da_costa.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 5354
last-modified: Tue, 13 Feb 2024 11:45:29 GMT
expires: Thu, 12 Feb 2026 23:45:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/fernando_alonso_pinto_da_costa.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "1d8aed18ed46649f"
vary: Accept
x-nc: MISS arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/conceicao_supertaca_4.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

3.0 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/conceicao_supertaca_4.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.0 kB (3004 bytes)
Hash
85b7446f3ec796d3a63eb401e55570ab
6a08662f5ea446e213b469b1b07a69f941511e27
54d0c6c7a2938c903a38ba39cccfb7781821a3882784090626c70820089baa03

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/conceicao_supertaca_4.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 3004
last-modified: Mon, 12 Feb 2024 03:27:31 GMT
expires: Wed, 11 Feb 2026 15:27:31 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/conceicao_supertaca_4.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9d5d3ff7a2f0e697"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/GridArt_20240126_115722774-scaled.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

8.2 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/GridArt_20240126_115722774-scaled.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.2 kB (8168 bytes)
Hash
7003aec5caac81789319140cdfde8c96
4da722709ac5c57cd382af4334f750a844e8ffc2
9e0b612210270a3c69ca63b29120914f8ca4569628d6a66990e11fae64ddf4ff

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/GridArt_20240126_115722774-scaled.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 8168
last-modified: Mon, 12 Feb 2024 03:27:31 GMT
expires: Wed, 11 Feb 2026 15:27:31 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/GridArt_20240126_115722774-scaled.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9a4dc9d772d56f04"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/20240204_180238-scaled.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

9.8 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/20240204_180238-scaled.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
9.8 kB (9830 bytes)
Hash
87a08bd06db3b828ecdd7735168f7f1f
0e50a7089361155188ab0fb3af987f2599f9f726
4fcaadc2334187c3348ed319529cdf65d3cadb79adae34261966022df5a46e1c

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/20240204_180238-scaled.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 9830
last-modified: Mon, 12 Feb 2024 14:42:29 GMT
expires: Thu, 12 Feb 2026 02:42:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/20240204_180238-scaled.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f020d655f00689d7"
vary: Accept
x-nc: MISS arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/1000141639-1.jpg?resize=390%2C220&ssl=1

192.0.77.2

200 OK

8.2 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/12/1000141639-1.jpg?resize=390%2C220&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 390x220, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.2 kB (8176 bytes)
Hash
953fcee05e46d6a9ed39c69264f3364f
79891c5717c08ea076a47a930926beda915a6876
a89d9cdb51ca425efb616d8c19ec90940845f7d878c14975053fbfdc29f63413

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/12/1000141639-1.jpg?resize=390%2C220&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 8176
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/12/1000141639-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "349172b1ac32d082"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/1000158692.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

7.6 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/1000158692.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
7.6 kB (7648 bytes)
Hash
b4ae491ecf5969a02faf74286f17a38a
e47cdd39cf8a5b387e1810aba79d91204996e718
4329038100255d6f2dc1de684dd5785958d85e2a0f496e4e2ae46c0d2e6df237

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/1000158692.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 7648
last-modified: Mon, 12 Feb 2024 03:27:29 GMT
expires: Wed, 11 Feb 2026 15:27:29 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/1000158692.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "8e05c1655a4fc4e8"
vary: Accept
x-nc: MISS arn 5
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

5.8 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
5.8 kB (5752 bytes)
Hash
39c17ad039876951299a23fa9d7c03f0
e1844715df32eb6b210defbde21f7a40bab6e55c
23b340cbe2316a1c71acd2aebd44335d9f324cafd38ede830a7e147782df8256

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 5752
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b16b42f43903ac80"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/img_920x5192019_12_29_17_04_14_1644133.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.2 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/img_920x5192019_12_29_17_04_14_1644133.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.2 kB (6172 bytes)
Hash
2e5447023780f04571b7b0dc31668cf6
c3b8f627c3c57c64b031c29138b619a071493f53
ce202762eddfecb7465c2b54914f4dbcdb7d4d6fc21b98c793694ec84b057c92

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/10/img_920x5192019_12_29_17_04_14_1644133.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6172
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/10/img_920x5192019_12_29_17_04_14_1644133.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "9a106441db527865"
vary: Accept
x-nc: MISS arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/1246187076-2.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

3.3 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/10/1246187076-2.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
3.3 kB (3348 bytes)
Hash
61b8047e73c6b407745872bb65e2926c
18971f91864b50b329da7e846eb9413e2cc5e4bd
e2c868f91373e3476a504b9fa6656e05545451a7d79669c0456b9ba47d08002c

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/10/1246187076-2.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 3348
last-modified: Wed, 14 Feb 2024 13:22:20 GMT
expires: Sat, 14 Feb 2026 01:22:20 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/10/1246187076-2.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "040da837409f31ab"
vary: Accept
x-nc: MISS arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/css/base.min.css?ver=6.1.3

67.205.59.238

200 OK

8.6 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/css/base.min.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with very long lines (42014)
Size
8.6 kB (8608 bytes)
Hash
c13653d73f200ddb1de26a858c6eaf3f
124eab34f9623ca3740ea52d0b90f33da23149ce
1b48190f6b5b95ba8b42c901a7cfe7f786d19ceb89332eb68a00fd0d74e80134

HTTP Headers

GET /wp-content/themes/jannah/assets/css/base.min.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "a41f-6054f01084977-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8608
content-type: text/css
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=6.1.3

67.205.59.238

200 OK

2.3 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with very long lines (4936), with CRLF line terminators
Size
2.3 kB (2279 bytes)
Hash
f9bc78671494e78c3e8a6fd9bd38bf68
b08974eb0d65657aa762b6291d5b742f052a935b
4879dcab21b2218432075c33aff13cea89de4f392f749eaef3df339f3f694c72

HTTP Headers

GET /wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "2ef2-6054f0108e5b8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2279
content-type: text/css
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/css/widgets.min.css?ver=6.1.3

67.205.59.238

200 OK

8.8 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/css/widgets.min.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with very long lines (47525)
Size
8.8 kB (8775 bytes)
Hash
a2823df2b5fd918a1433bb987497a01f
1292f6ae47d313b2177983ac9829ee8c03946191
9e7ae6c6e13ced8756e3f36d8d3857976b5ceab11e08588adbafc70211889d0c

HTTP Headers

GET /wp-content/themes/jannah/assets/css/widgets.min.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "b9a6-6054f010887f7-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8775
content-type: text/css
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/css/helpers.min.css?ver=6.1.3

67.205.59.238

200 OK

7.9 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/css/helpers.min.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with very long lines (40198)
Size
7.9 kB (7854 bytes)
Hash
e930c2b8315032b1014dff4c5bfce4f8
0359367b7648ff69dce0ec684526f4cab741d08c
fcee59682cffa6913f1d8cdbb0bd1f5632f8e8533c518bec64c88e4d18dadd52

HTTP Headers

GET /wp-content/themes/jannah/assets/css/helpers.min.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "9d07-6054f01084977-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7854
content-type: text/css
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/naom_6514248129d2d.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

6.0 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/01/naom_6514248129d2d.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 220x150, Scaling: [none]x[none], YUV color, decoders should clamp
Size
6.0 kB (6038 bytes)
Hash
1ce2f54ea1660c7dd66dddaee48f2808
1b8af05e751303409b05efcf55845c23563d3ccd
6253202eb966205f07b437fc7f1eb7108276177219d6274080553ce711e889b9

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/01/naom_6514248129d2d.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 6038
last-modified: Mon, 12 Feb 2024 03:27:31 GMT
expires: Wed, 11 Feb 2026 15:27:31 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/01/naom_6514248129d2d.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a49775d03f86a810"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1707763999532.jpg?resize=220%2C150&ssl=1

192.0.77.2

200 OK

43 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/1707763999532.jpg?resize=220%2C150&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
43 kB (42806 bytes)
Hash
e7048190384bb22d65899ecb17a235c3
6a4e4327d92b3e2a0ea9fe9caec29397cd63c111
826681f93915a2b25176cad05fda81a6bde95fc81dfd25e964e57dcf00fe86ef

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/1707763999532.jpg?resize=220%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: image/webp
content-length: 42806
last-modified: Mon, 12 Feb 2024 23:18:36 GMT
expires: Thu, 12 Feb 2026 11:18:36 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/1707763999532.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a352036f05cbccb2"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/uploads/2023/09/Desporto.png

67.205.59.238

200 OK

4.3 kB

URL GET HTTP/2
web.desportonews.com/wp-content/uploads/2023/09/Desporto.png
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
PNG image data, 200 x 50, 8-bit/color RGBA, non-interlaced
Size
4.3 kB (4315 bytes)
Hash
a7b05a9e54d2a45def619f96665df32a
cbb6e9d08b6071289ff8d79784ee5792b3577009
3a1a86a4478456e27cc266b87fcba528b7066af1f4963cedaaf0895b74f58ac4

HTTP Headers

GET /wp-content/uploads/2023/09/Desporto.png HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:38:04 GMT
etag: "10db-6054f4559237c"
accept-ranges: bytes
content-length: 4315
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: User-Agent,Accept-Encoding
content-type: image/png
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/css/fontawesome.css?ver=6.1.3

67.205.59.238

200 OK

12 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/css/fontawesome.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
ASCII text, with very long lines (58661)
Size
12 kB (12522 bytes)
Hash
69591d0b969fde6980bf85aa704a8398
00be791bc56fe7e4d48163d105de4eb2f0740f11
0f79c64f686102f8cc72db584b52c51dbd0720d7ade9a3284a3520bd91dc5328

HTTP Headers

GET /wp-content/themes/jannah/assets/css/fontawesome.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "e526-6054f01084977-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12522
content-type: text/css
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/plugins/eu-cookies-bar/js/eu-cookies-bar.js?ver=6.4.3

67.205.59.238

200 OK

1.9 kB

URL GET HTTP/2
web.desportonews.com/wp-content/plugins/eu-cookies-bar/js/eu-cookies-bar.js?ver=6.4.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
1.9 kB (1940 bytes)
Hash
7f2bc25c742af56923f46a6ec2a19b1c
068dbab8c7a118cc30e7dddab75e86d01b06ffdb
27ebd0e6a03f110a410dedbdb756539871e11fbc32a73279b2ead179e6aa3376

HTTP Headers

GET /wp-content/plugins/eu-cookies-bar/js/eu-cookies-bar.js?ver=6.4.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Mon, 22 Jan 2024 09:44:39 GMT
etag: "2950-60f85adade62a-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1940
content-type: application/javascript
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188

67.205.59.238

200 OK

383 B

URL GET HTTP/2
web.desportonews.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (701), with no line terminators
Size
383 B (383 bytes)
Hash
328b8123661abdd5f4a0c695e7aa9dcc
4164f78bb52e9f2bfbb7ae5fd519b4638063c1f0
27dd9b075cc59cf5f3c0f6ee075f4bd113782d81ce30a4f16aac669ecfdc4fa2

HTTP Headers

GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-image-cdn/dist/image-cdn.js?minify=false&ver=132249e245926ae3e188 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Mon, 12 Feb 2024 08:07:48 GMT
etag: "2bd-6112ac5f9edbc-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 383
content-type: application/javascript
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=6.1.3

67.205.59.238

200 OK

7.4 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (23452)
Size
7.4 kB (7365 bytes)
Hash
8a74f79c4ac1bb971a9dfbf88e1eb099
cb3b6cc3348bdb6f112a762d9cff27049d7d18f9
f52ec3f4d0b043a36683a54caef45ae1158780aede5f886a6a1b63b61668e0d3

HTTP Headers

GET /wp-content/themes/jannah/assets/js/scripts.min.js?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "5b9d-6054f010933d8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7365
content-type: application/javascript
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/js/br-news.js?ver=6.1.3

67.205.59.238

200 OK

1.9 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/js/br-news.js?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (4969)
Size
1.9 kB (1914 bytes)
Hash
39506dac5671f2b65d39481f5c3644b4
a982614aab6d6cd73d85345cd84461b8ef40b0f2
aba848a7cdbe0240e1fdf0b540d3dff72daa9df5b4502e311b3f27a9c85e5759

HTTP Headers

GET /wp-content/themes/jannah/assets/js/br-news.js?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "15da-6054f01092438-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1914
content-type: application/javascript
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/js/parallax.js?ver=6.1.3

67.205.59.238

200 OK

7.6 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/js/parallax.js?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (11127)
Size
7.6 kB (7568 bytes)
Hash
9e03be2b2bf0ee6a76b11aac23d4b60a
d44dd765e2da226b3c9c848a127f4eac81d35acb
d8a5f81391bc3da5244f17db4af427303ebb7bcc09bfe3e5ca14c50eb2a1a66c

HTTP Headers

GET /wp-content/themes/jannah/assets/js/parallax.js?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "5dc4-6054f010933d8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7568
content-type: application/javascript
X-Firefox-Spdy: h2

pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js

172.240.108.76

200 OK

16 kB

URL GET HTTP/1.1
pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjecttoprevenuegate.com
Fingerprint12:98:4D:23:5C:FB:03:A9:39:F4:63:A4:99:4D:79:B2:4A:E2:D3:D1
ValidityTue, 19 Dec 2023 13:19:08 GMT - Mon, 18 Mar 2024 13:19:07 GMT

File type
JavaScript source, ASCII text, with very long lines (45257), with no line terminators
Size
16 kB (16114 bytes)
Hash
abd5871a32591660863d2416c20ddeb9
9846bbf856eb6d61ab098683e8efab701ca25d00
5439962e566c8ff0f69e248ae9291fb0fc5a05a2900045cb955df684944b298c

HTTP Headers

GET /e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js HTTP/1.1
Host: pl22363898.toprevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_FEATURES-1677=1; expires=Fri, 16 Feb 2024 04:20:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5b269ddd5e7a1aa1b34305d0713716f0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=640%2C360&ssl=1

192.0.77.2

200 OK

21 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=640%2C360&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Size
21 kB (21282 bytes)
Hash
15ca7950c946992c644198d153a76283
9da9b0d09a9ae360fe996dfe51c9f55c30d042d3
7d4c550fbe06ce9007ba9017de5435daf6ae7965682bee7edf76e3c64e20b7f7

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg?resize=640%2C360&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/webp
content-length: 21282
last-modified: Wed, 14 Feb 2024 08:07:04 GMT
expires: Fri, 13 Feb 2026 20:07:04 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/naom_59777f977f444.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3e5e1e65e23282b8"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=640%2C360&ssl=1

192.0.77.2

200 OK

46 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=640%2C360&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp
Size
46 kB (46038 bytes)
Hash
15b548b742a0345867e043b2eda1bf40
3363c4ec88073ffd12495cb5f6b4c197c00b89ad
b043b01364722e8c629192d9f1451d46586b3c36f39980aafecf1fdcd664b03d

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg?resize=640%2C360&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/webp
content-length: 46038
last-modified: Wed, 14 Feb 2024 08:07:04 GMT
expires: Fri, 13 Feb 2026 20:07:04 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/naom_65a43ae041aaa.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "f8180f450f4b9646"
vary: Accept
x-nc: MISS arn 4
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=780%2C470&ssl=1

192.0.77.2

200 OK

32 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=780%2C470&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 780x470, Scaling: [none]x[none], YUV color, decoders should clamp
Size
32 kB (32540 bytes)
Hash
cb41c4d1966d0c15b88f2af1dfc6b693
e9f73a52f9cfd9a0e6c73185398549ada62d065d
69890eb38e5a5e78674fa0e56384a5f24b7819f5cdf99f9bb52dbdb785937ec3

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg?resize=780%2C470&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/webp
content-length: 32540
last-modified: Tue, 13 Feb 2024 16:37:51 GMT
expires: Fri, 13 Feb 2026 04:37:51 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2024/02/di-maria-jogo-1-thumbnail.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3223866c6bacb707"
vary: Accept
x-nc: MISS arn 7
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/images/bg-dots.png

67.205.59.238

200 OK

942 B

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/images/bg-dots.png
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
PNG image data, 3 x 3, 8-bit/color RGBA, interlaced
Size
942 B (942 bytes)
Hash
8518acf9d97e03fa1193de2e00895222
f36f967a7d36793a0ad0601f36e2c1ef82aa0e45
7bd471aecde4b21a08ff1aec336c2af566c906c53ad6d9020c2c0953a3a2b926

HTTP Headers

GET /wp-content/themes/jannah/assets/images/bg-dots.png HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: sb_rotator_enabled_e503fb214cbd5ef20c99af783994bc76=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:44 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "3ae-6054f010904f8"
accept-ranges: bytes
content-length: 942
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:44 GMT
vary: User-Agent,Accept-Encoding
content-type: image/png
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?v=ext&blog=223525347&post=1015&tz=0&srv=web.desportonews.com&j=1%3A13.1.1&host=web.desportonews.com&ref=&fcp=0&rand=0.062290021871862944

192.0.76.3

200 OK

50 B

URL GET HTTP/2
pixel.wp.com/g.gif?v=ext&blog=223525347&post=1015&tz=0&srv=web.desportonews.com&j=1%3A13.1.1&host=web.desportonews.com&ref=&fcp=0&rand=0.062290021871862944
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
GIF image data, version 89a, 6 x 5
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&blog=223525347&post=1015&tz=0&srv=web.desportonews.com&j=1%3A13.1.1&host=web.desportonews.com&ref=&fcp=0&rand=0.062290021871862944 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

3.79.157.91

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.79.157.91:443
ASN
#16509 AMAZON-02

Requested by
https://web.desportonews.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
14e40cf9413b4eeb59d707d97bf5840d
7acb17553510c21b1ac27c15a68da71f50756683
9aa2147eb427b256fd05a603f1d375981cf05d731b7fe15a8fd43d4b5ad27127

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://web.desportonews.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=a70593fe-4298-4408-9dd0-6c623a2a66ca:1:1; expires=Sun, 12 Feb 2034 04:20:44 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff

67.205.59.238

200 OK

41 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
Web Open Font Format, TrueType, length 40812, version 2.0
Size
41 kB (40812 bytes)
Hash
b5b7e935f421e6ca7967b036fb08afd5
38a99c496548c5d2ee22c6df3b9dfd5081a73332
f1bc17112f84d3e3b9e381a292e9ee6263cfb0706f07e34501396dee3a7c8a2a

HTTP Headers

GET /wp-content/themes/jannah/assets/fonts/tielabs-fonticon/tielabs-fonticon.woff HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/wp-content/themes/jannah/assets/css/helpers.min.css?ver=6.1.3
Cookie: sb_rotator_enabled_e503fb214cbd5ef20c99af783994bc76=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:44 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "9f6c-6054f0108e5b8"
accept-ranges: bytes
content-length: 40812
cache-control: max-age=172800
expires: Sat, 17 Feb 2024 04:20:44 GMT
vary: User-Agent
content-type: font/woff
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/plugins/eu-cookies-bar/fonts/eu-cookies-bar.woff

67.205.59.238

200 OK

1.7 kB

URL GET HTTP/2
web.desportonews.com/wp-content/plugins/eu-cookies-bar/fonts/eu-cookies-bar.woff
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
Web Open Font Format, TrueType, length 1748, version 0.0
Size
1.7 kB (1748 bytes)
Hash
d9940b6455ebd732f55d1871d6f76aba
b838c16dc345946fdc2d9946200736d93c2cfbcb
b2d13feaf02ed845e4a6bb2175e044be733c7c7d38348cd53c1f8619fed98db9

HTTP Headers

GET /wp-content/plugins/eu-cookies-bar/fonts/eu-cookies-bar.woff HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/wp-content/plugins/eu-cookies-bar/css/eu-cookies-bar-icons.css?ver=1.0.13
Cookie: sb_rotator_enabled_e503fb214cbd5ef20c99af783994bc76=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:44 GMT
server: Apache
last-modified: Mon, 22 Jan 2024 09:44:39 GMT
etag: "6d4-60f85adada7a9"
accept-ranges: bytes
content-length: 1748
cache-control: max-age=172800
expires: Sat, 17 Feb 2024 04:20:44 GMT
vary: User-Agent
content-type: font/woff
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=192%2C192&ssl=1

192.0.77.2

200 OK

11 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=192%2C192&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
11 kB (11332 bytes)
Hash
f8538b62bb8a36d75fc82173ecffcf2a
79769155cb0141500179a8de053ff9cdcdd03be2
f322b50db174969d6aaa336d3644060891b43e0bb7446711581ce73c6eb7b360

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/webp
content-length: 11332
last-modified: Sun, 31 Dec 2023 06:41:30 GMT
expires: Tue, 30 Dec 2025 18:41:30 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "ff8570ff2f9fcebc"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

i0.wp.com/web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=32%2C32&ssl=1

192.0.77.2

200 OK

1.1 kB

URL GET HTTP/2
i0.wp.com/web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=32%2C32&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.1 kB (1136 bytes)
Hash
0c201a26807370dcfea825e72475744b
c06e2a6d06bfd2e04c840a810f9165283d246f99
ea6c17309470758828e1cd3a0a51698f412e92a4d2352ec95be0161a578bc378

HTTP Headers

GET /web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:44 GMT
content-type: image/webp
content-length: 1136
last-modified: Sun, 31 Dec 2023 06:41:30 GMT
expires: Tue, 30 Dec 2025 18:41:30 GMT
cache-control: public, max-age=63115200
link: <https://web.desportonews.com/wp-content/uploads/2023/09/cropped-unnamed-1.png>; rel="canonical"
x-content-type-options: nosniff
etag: "d45c91acb0010aea"
vary: Accept
x-nc: HIT arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/webfont/1/webfont.js

142.250.74.74

200 OK

5.4 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1/webfont.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
JavaScript source, ASCII text, with very long lines (2134)
Size
5.4 kB (5437 bytes)
Hash
7c96a5f11d9741541d5e3c42ff6380d7
d3fa2564c021cf730e58ffddb138cf6b57ed126e
81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee

HTTP Headers

GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:52:38 GMT
expires: Fri, 14 Feb 2025 03:52:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 1686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.youtube.com/vi/bYfp13VoGuQ/maxresdefault.jpg

142.250.74.142

200 OK

64 kB

URL GET HTTP/2
img.youtube.com/vi/bYfp13VoGuQ/maxresdefault.jpg
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3
Size
64 kB (63819 bytes)
Hash
bd56b71aca98bfee7db327e5b054bde7
b50e0856900bd0a395c0c4775972e7e2066a337a
e9b82f577df6d461ab9213889c443de44e26fa7b947a5f23fe89d37bc7fa6419

HTTP Headers

GET /vi/bYfp13VoGuQ/maxresdefault.jpg HTTP/1.1
Host: img.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 63819
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:20:44 GMT
expires: Thu, 15 Feb 2024 06:20:44 GMT
cache-control: public, max-age=7200
etag: "1441872340"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Cairo:600,regular%7CCairo:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,800,800italic,900,900italic&subset=latin,latin&display=swap

216.58.207.234

200 OK

69 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Cairo:600,regular%7CCairo:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,800,800italic,900,900italic&subset=latin,latin&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
gzip compressed data, max compression
Size
69 kB (69175 bytes)
Hash
ebaf3069d61b2fe22ea771795f0d6a87
0781688adcd352dce1a09c1839360e3d734d0bda
4fc2485c3d4426b71aac1945aa93657a7a59b18dda6f7ce4f7af13cba694d35c

HTTP Headers

GET /css?family=Cairo:600,regular%7CCairo:100,100italic,300,300italic,regular,italic,500,500italic,700,700italic,800,800italic,900,900italic&subset=latin,latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Feb 2024 04:20:44 GMT
date: Thu, 15 Feb 2024 04:20:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

utilizeimplore.com/sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1

192.243.61.227

200 OK

8.0 kB

URL GET HTTP/1.1
utilizeimplore.com/sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type
JSON text data
Size
8.0 kB (7990 bytes)
Hash
bf47c54eb29ea25792ab56163d9ccf20
e6ac95315423b36a4714bab86b35fc5f93075265
eba3e9bf75bd892961b11c5f692f89cf87e080acb09589edbc91ce57e7db480e

HTTP Headers

GET /sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:45 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://web.desportonews.com
Access-Control-Allow-Origin: https://web.desportonews.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22263399; expires=Fri, 16 Feb 2024 04:20:44 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 16 Feb 2024 04:20:45 GMT; secure; SameSite=None
uncs=1; expires=Fri, 16 Feb 2024 04:20:45 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 16 Feb 2024 04:20:45 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 16 Feb 2024 04:20:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8d74bb06548f31745d4156be6f88d3b4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.youtube.com/s/player/5683fc5e/www-player.css

142.250.74.142

200 OK

48 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/www-player.css
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
48 kB (48183 bytes)
Hash
101ce6bec017fdeda83aaca342362aaa
3495e40a0e1427dfe2668d100b748e3b2be51c13
52535a880872c1c5273500b7f045580dfffb0fe2a02852223e9e63db92d41cc3

HTTP Headers

GET /s/player/5683fc5e/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48183
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:00:54 GMT
expires: Fri, 14 Feb 2025 04:00:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 1191
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1

142.250.74.142

200 OK

55 kB

URL GET HTTP/3
www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (58088)
Size
55 kB (54586 bytes)
Hash
0f437834d0b48899c8b8e60e58cbe836
5776977499a8effbfaa1d2dd84558df25a060366
2112c25ea1e40888057f70101cdd3dc9979a3a26f5d205d8ac51f00e34a72114

HTTP Headers

GET /embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Feb 2024 04:20:45 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=v493kkK-5iM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=fyH01yOOGhU; Domain=.youtube.com; Expires=Tue, 13-Aug-2024 04:20:45 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIEo%3D; Domain=.youtube.com; Expires=Tue, 13-Aug-2024 04:20:45 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+245; expires=Sat, 14-Feb-2026 04:20:45 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/5683fc5e/www-embed-player.vflset/www-embed-player.js

142.250.74.142

200 OK

97 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/www-embed-player.vflset/www-embed-player.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (682)
Size
97 kB (96927 bytes)
Hash
90b2edab5f6c6fee4e5964643cdd202c
c588cef0c4c81ac6568a9e14ac40c3860fa2db75
e30eb44d1bd919de19f5884ded89d326c05c5537aed690c6aac1175dc4aa6179

HTTP Headers

GET /s/player/5683fc5e/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 96927
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:02:12 GMT
expires: Fri, 14 Feb 2025 04:02:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1113
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/base.js

142.250.74.142

200 OK

794 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/base.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (555)
Size
794 kB (794425 bytes)
Hash
e0adeb81a95b5ce2d852b1da7cea4528
b56e9345a734c0c35fbd05ab042686698544b3af
88d25b8c03e76364c6c7bbdd74f9686429648ee83a9367ee8347f8ed9e5acb11

HTTP Headers

GET /s/player/5683fc5e/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 794425
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:11:05 GMT
expires: Fri, 14 Feb 2025 04:11:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 580
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:55:46 GMT
expires: Fri, 14 Feb 2025 03:55:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 1499
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:43:48 GMT
expires: Fri, 14 Feb 2025 03:43:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 2217
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.wp.com/e-202407.js

192.0.76.3

200 OK

36 kB

URL GET HTTP/2
stats.wp.com/e-202407.js
IP
192.0.76.3:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7329), with no line terminators
Size
36 kB (36252 bytes)
Hash
bd2d67186594b0e32223b293fdfcca55
b797a9d012c850b53a7ccc12211adcfbcd9ae0be
4f9f4e2e225088f9cf3b6b54aa421e0f776d1802255505d2f752e1f83f441641

HTTP Headers

GET /e-202407.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356443.5398
content-encoding: br
expires: Mon, 10 Feb 2025 15:57:12 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2

216.58.207.227

200 OK

34 kB

URL GET HTTP/2
fonts.gstatic.com/s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 33588, version 1.0
Size
34 kB (33588 bytes)
Hash
ead8e97c01f0448365969c144c8c5fe8
4ff4d355eeaace00eeaf2ae15cc50d01ac2bfa98
1355605c748ba06b91514ca27feaa9c0c97ac33eb32fed979fc9fabb623d9023

HTTP Headers

GET /s/cairo/v28/SLXVc1nY6HkvangtZmpQdkhzfH5lkSscRiyS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:49:58 GMT
expires: Fri, 14 Feb 2025 03:49:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 14:52:02 GMT
content-type: font/woff2
age: 1848
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

utilizeimplore.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j0%2Fumfcw7IxiQTjJiZZ9LZUV9VMylR3NVXd05Ocgguyx9F%2FwM43yQZ10V0QBcFFJwsegsKOpxzMQf8DhT1Lj4OjD6ree%2FV9Bd%2F78dFRdkk8ZPRi%2BR19IJWii82qW7n%2BvufdqKzLOOtX%2Bi3%2Frt%2B4UTG9N9p%2B1X218pZge3qx5nqu67leZVUa0dH9xRKETB62vWrbrTZqVa%2FZQN%2F8P7eZA0sd8N4leRmSjxeeOlcg2Qhx9GhZ2L1UJ6%2BtRJmiqTbo8dM78V6s8xjRLOwYB534dMqGts9Wn0DHJxO50L1%2FiaEcE%2BenJwjj06lIhL3jic5QQcQI%2BQvIeyMINYKkIzB9D5I%2FIwDjuL2BOHpwW5uc7v%2BD0hIdk4Xnf0HmY7Lw2xXE0ZdLSvYr21plqdSxRb9TQPZHkN0RkuwM6YEDmZ%2BBpR9C8l%2FI4vN1xNHxhlUakheT2qUcQXZGUGIAah1k5ZEOso6DLHEQ8YsK8zwvcDmjbqvNWJ0HIvS569Gg41HP9VvIWClvgDQZgKkBmDlEYg6xJwcw2Q%2BwuwUsd2DTMXHePUSPF8gFQW4JckqQS4I8Jch7xQlXtmaLB1zZLPSmvjb19WKo0%2B4RPdFpV8QE1AyOkkvyUtkbZ%2FubLvbERUU03XonrHkNFvKm6NRc1m7TTtCqt9uNkAU%2BrPxqdeXWzp2tle3XPT8I7nqQdm5S%2FYEck%2BaPnyKRY%2FLK798ipGew6gxMzoNm10DzYVBzQXeHjZaLg%2FjrXIRVLmyiTapjkdsq0xG4LpCkC0j3nSN1Sa5ORre28RiCnd%2F8oz4xMFMgMQU%2BkE8Juur%2BcEvn5HhL55Y83khSGckDWo51O6WpmP%2F8bbGfa8PXlu3gs1usBMrw4Y6w6TqNuYy7lnyxJDkXZlUbJsj3a%2FY9EW5mdncpM3GWrG%2B%2BuboWJUZYK3U8Ai039E8DJsfkxas7k429%2Ft0mpBnBZAWi7JxMDVKPwJJD2GSm32oCo2acMHGQZ8XQ1MLZo5IESsxyGhaw%2F8nDWTw0tPxNZXFk76Nr5kDTe4ijAj1ToKcKUDWAzeaHaWLOb%2F46lRGquWGozNxxqIz6ZNLm8noEKy8qQb3uUr%2Fd9IKAiiBs1Fod3%2BOU1hp%2BzfdpHakdi58%2FvvY3AAAA%2F%2F8BAAD%2F%2F%2BPJWjqLBAAA

192.243.61.227

200 OK

7 B

URL GET HTTP/1.1
utilizeimplore.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j0%2Fumfcw7IxiQTjJiZZ9LZUV9VMylR3NVXd05Ocgguyx9F%2FwM43yQZ10V0QBcFFJwsegsKOpxzMQf8DhT1Lj4OjD6ree%2FV9Bd%2F78dFRdkk8ZPRi%2BR19IJWii82qW7n%2BvufdqKzLOOtX%2Bi3%2Frt%2B4UTG9N9p%2B1X218pZge3qx5nqu67leZVUa0dH9xRKETB62vWrbrTZqVa%2FZQN%2F8P7eZA0sd8N4leRmSjxeeOlcg2Qhx9GhZ2L1UJ6%2BtRJmiqTbo8dM78V6s8xjRLOwYB534dMqGts9Wn0DHJxO50L1%2FiaEcE%2BenJwjj06lIhL3jic5QQcQI%2BQvIeyMINYKkIzB9D5I%2FIwDjuL2BOHpwW5uc7v%2BD0hIdk4Xnf0HmY7Lw2xXE0ZdLSvYr21plqdSxRb9TQPZHkN0RkuwM6YEDmZ%2BBpR9C8l%2FI4vN1xNHxhlUakheT2qUcQXZGUGIAah1k5ZEOso6DLHEQ8YsK8zwvcDmjbqvNWJ0HIvS569Gg41HP9VvIWClvgDQZgKkBmDlEYg6xJwcw2Q%2BwuwUsd2DTMXHePUSPF8gFQW4JckqQS4I8Jch7xQlXtmaLB1zZLPSmvjb19WKo0%2B4RPdFpV8QE1AyOkkvyUtkbZ%2FubLvbERUU03XonrHkNFvKm6NRc1m7TTtCqt9uNkAU%2BrPxqdeXWzp2tle3XPT8I7nqQdm5S%2FYEck%2BaPnyKRY%2FLK798ipGew6gxMzoNm10DzYVBzQXeHjZaLg%2FjrXIRVLmyiTapjkdsq0xG4LpCkC0j3nSN1Sa5ORre28RiCnd%2F8oz4xMFMgMQU%2BkE8Juur%2BcEvn5HhL55Y83khSGckDWo51O6WpmP%2F8bbGfa8PXlu3gs1usBMrw4Y6w6TqNuYy7lnyxJDkXZlUbJsj3a%2FY9EW5mdncpM3GWrG%2B%2BuboWJUZYK3U8Ai039E8DJsfkxas7k429%2Ft0mpBnBZAWi7JxMDVKPwJJD2GSm32oCo2acMHGQZ8XQ1MLZo5IESsxyGhaw%2F8nDWTw0tPxNZXFk76Nr5kDTe4ijAj1ToKcKUDWAzeaHaWLOb%2F46lRGquWGozNxxqIz6ZNLm8noEKy8qQb3uUr%2Fd9IKAiiBs1Fod3%2BOU1hp%2BzfdpHakdi58%2FvvY3AAAA%2F%2F8BAAD%2F%2F%2BPJWjqLBAAA
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j0%2Fumfcw7IxiQTjJiZZ9LZUV9VMylR3NVXd05Ocgguyx9F%2FwM43yQZ10V0QBcFFJwsegsKOpxzMQf8DhT1Lj4OjD6ree%2FV9Bd%2F78dFRdkk8ZPRi%2BR19IJWii82qW7n%2BvufdqKzLOOtX%2Bi3%2Frt%2B4UTG9N9p%2B1X218pZge3qx5nqu67leZVUa0dH9xRKETB62vWrbrTZqVa%2FZQN%2F8P7eZA0sd8N4leRmSjxeeOlcg2Qhx9GhZ2L1UJ6%2BtRJmiqTbo8dM78V6s8xjRLOwYB534dMqGts9Wn0DHJxO50L1%2FiaEcE%2BenJwjj06lIhL3jic5QQcQI%2BQvIeyMINYKkIzB9D5I%2FIwDjuL2BOHpwW5uc7v%2BD0hIdk4Xnf0HmY7Lw2xXE0ZdLSvYr21plqdSxRb9TQPZHkN0RkuwM6YEDmZ%2BBpR9C8l%2FI4vN1xNHxhlUakheT2qUcQXZGUGIAah1k5ZEOso6DLHEQ8YsK8zwvcDmjbqvNWJ0HIvS569Gg41HP9VvIWClvgDQZgKkBmDlEYg6xJwcw2Q%2BwuwUsd2DTMXHePUSPF8gFQW4JckqQS4I8Jch7xQlXtmaLB1zZLPSmvjb19WKo0%2B4RPdFpV8QE1AyOkkvyUtkbZ%2FubLvbERUU03XonrHkNFvKm6NRc1m7TTtCqt9uNkAU%2BrPxqdeXWzp2tle3XPT8I7nqQdm5S%2FYEck%2BaPnyKRY%2FLK798ipGew6gxMzoNm10DzYVBzQXeHjZaLg%2FjrXIRVLmyiTapjkdsq0xG4LpCkC0j3nSN1Sa5ORre28RiCnd%2F8oz4xMFMgMQU%2BkE8Juur%2BcEvn5HhL55Y83khSGckDWo51O6WpmP%2F8bbGfa8PXlu3gs1usBMrw4Y6w6TqNuYy7lnyxJDkXZlUbJsj3a%2FY9EW5mdncpM3GWrG%2B%2BuboWJUZYK3U8Ai039E8DJsfkxas7k429%2Ft0mpBnBZAWi7JxMDVKPwJJD2GSm32oCo2acMHGQZ8XQ1MLZo5IESsxyGhaw%2F8nDWTw0tPxNZXFk76Nr5kDTe4ijAj1ToKcKUDWAzeaHaWLOb%2F46lRGquWGozNxxqIz6ZNLm8noEKy8qQb3uUr%2Fd9IKAiiBs1Fod3%2BOU1hp%2BzfdpHakdi58%2FvvY3AAAA%2F%2F8BAAD%2F%2F%2BPJWjqLBAAA HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:46 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f78b478cd790fbacd45e6547b10a183c
Strict-Transport-Security: max-age=0; includeSubdomains

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.106

200 OK

0 B

URL OPTIONS HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Feb 2024 04:20:46 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.106

200 OK

41 kB

URL OPTIONS HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
JSON text data
Size
41 kB (40670 bytes)
Hash
831479aab19c217a318ca0a045000e70
50bad3b0a95dfcf2c6cd0319ced0dd9d89ea3097
8ee05703018ee1688d38418e12477fe2d32a959601c3e1e1ef9b2644101cc859

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Feb 2024 04:20:46 GMT
server: ESF
cache-control: private
content-length: 40670
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

web.desportonews.com/wp-content/themes/jannah/assets/css/style.min.css?ver=6.1.3

67.205.59.238

200 OK

59 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/css/style.min.css?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
gzip compressed data, from Unix
Size
59 kB (59217 bytes)
Hash
31f3132030f0f59d3fa0c04eb9723325
8dd586d5219e754efaf79117cda519a2d2574db9
f4349748a06322eb1e04dc50af139d68250f0762488c4e70fcc7c92f2d66b50a

HTTP Headers

GET /wp-content/themes/jannah/assets/css/style.min.css?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "25904-6054f010887f7-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/css
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html

45.133.44.4

200 OK

4.7 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint0F:4E:8E:BE:C9:40:4B:09:BB:C5:73:C2:49:28:4D:F3:D4:95:2F:A3
ValidityWed, 10 Jan 2024 03:01:07 GMT - Tue, 09 Apr 2024 03:01:06 GMT

File type
gzip compressed data, from Unix
Size
4.7 kB (4721 bytes)
Hash
8e6df3798c8a8fddb71f7d5b5835b9a9
924c3e57addcda3def42f5c07ede36365beacfe0
8076fb11646f0e3a8c485c60b48a909074de8775b4b80b81baee09f999a1a863

HTTP Headers

GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:46 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 15 Feb 2024 05:20:46 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

www.google.com/js/th/hOSL3wzhZnRWQZflrkUXLpKtCz5jphagNS89mbfJREc.js

142.250.74.132

200 OK

20 kB

URL GET HTTP/2
www.google.com/js/th/hOSL3wzhZnRWQZflrkUXLpKtCz5jphagNS89mbfJREc.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint5D:23:4F:47:50:A1:0C:C2:BD:E0:26:27:45:EA:E2:C7:F5:34:61:5B
ValidityTue, 09 Jan 2024 06:31:40 GMT - Tue, 02 Apr 2024 06:31:39 GMT

File type
JavaScript source, ASCII text, with very long lines (50834)
Size
20 kB (19938 bytes)
Hash
6b742a0e049c73773304ce985ef94ce0
af78a543b7bc6c9bb7de6f0664136c03fddc7a0f
84e48bdf0ce16674564197e5ae45172e92ad0b3e63a616a0352f3d99b7c94447

HTTP Headers

GET /js/th/hOSL3wzhZnRWQZflrkUXLpKtCz5jphagNS89mbfJREc.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 19938
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:46:18 GMT
expires: Fri, 14 Feb 2025 03:46:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Feb 2024 17:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 2068
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

c0.wp.com/p/jetpack/13.1.1/css/jetpack.css

192.0.77.37

200 OK

20 kB

URL GET HTTP/2
c0.wp.com/p/jetpack/13.1.1/css/jetpack.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
20 kB (19696 bytes)
Hash
11620f93d587d3d94135551f0cbccbef
aa2e1c8558514f1886720122c50d9abfcdd3f00e
705110851e09c9f6cb085ea3f01e720444f320eab7499dcb5937af0c9ddeecad

HTTP Headers

GET /p/jetpack/13.1.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 30 Jan 2024 21:34:03 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

216.58.207.234

200 OK

114 B

URL OPTIONS HTTP/3
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
JSON text data
Size
114 B (114 bytes)
Hash
52255d18a9f0e1b86e7d9e8452cf8529
213af699049e326a67b2c314cb287a634e0086aa
d4d6344951256ac1925724047a8a12da8962448111d36e169a07b91088065841

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 934
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Feb 2024 04:20:47 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png

172.64.160.4

200 OK

591 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:47 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 55291
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xpy1XEU5bBoWbUWIHllNRs0E1ThtZRj81CxgZaE0Xcy2jrAoUF9oLAeYuEjOHRkI8MqHFamq2CtBjnQrXUvKmXjV7QoHhwY8SnuYxHJ5ORkZZRK7%2BhHQ1rUXGR8hHIcUjOvjBCsKLkti"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2a47f19886b-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.youtube.com/youtubei/v1/player?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false

142.250.74.142

200 OK

31 kB

URL POST HTTP/3
www.youtube.com/youtubei/v1/player?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JSON text data
Size
31 kB (31339 bytes)
Hash
c4b93e13770556bf19e20112d159cdcd
58311fbf40f04b759f5476c16f9039ed0788256e
9958049dc17e2bfdd7ae899b8290b505355a24e32037211a54131455cbc1c22a

HTTP Headers

POST /youtubei/v1/player?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240212.01.00
Content-Length: 3067
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 15 Feb 2024 04:20:47 GMT
server: scaffolding on HTTPServer2
content-length: 31339
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+018; expires=Sat, 14-Feb-2026 04:20:47 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 15 Feb 2024 04:20:47 GMT
cache-control: private

cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png

45.133.44.10

200 OK

16 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
16 kB (16093 bytes)
Hash
14cf262fabfd850855c42847d14fe775
2fafa28f167f018a0fb1f261f47380c8810803c9
972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af

HTTP Headers

GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:47 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Sat, 17 Feb 2024 04:20:47 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

216.58.207.234

200 OK

717 B

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
ASCII text
Size
717 B (717 bytes)
Hash
5e48f11f5e65274412215f94f73f8c49
4dd35e5b5136df76bd7ff9da1f119d0ec0e57ff7
40992eb57d95a0165a6d56399cd9afd60cc2cac6f06579b8d87079ccaab91e29

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Feb 2024 04:20:47 GMT
date: Thu, 15 Feb 2024 04:20:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/api/stats/qoe?fmt=244&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.018:B,0.024:S,0.566:S,0.566:S&cat=streaming&cmt=0.018:0.000,0.024:0.000,0.566:0.000&vfs=0.566:244:247::r&view=0.566:1216:653&bwe=0.566:130000&vis=0.566:0&bh=0.566:0.000

142.250.74.142

204 No Content

0 B

URL POST HTTP/3
www.youtube.com/api/stats/qoe?fmt=244&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.018:B,0.024:S,0.566:S,0.566:S&cat=streaming&cmt=0.018:0.000,0.024:0.000,0.566:0.000&vfs=0.566:244:247::r&view=0.566:1216:653&bwe=0.566:130000&vis=0.566:0&bh=0.566:0.000
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/stats/qoe?fmt=244&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAE&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&vps=0.000:N,0.018:B,0.024:S,0.566:S,0.566:S&cat=streaming&cmt=0.018:0.000,0.024:0.000,0.566:0.000&vfs=0.566:244:247::r&view=0.566:1216:653&bwe=0.566:130000&vis=0.566:0&bh=0.566:0.000 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1216%2C653&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js

172.64.160.4

200 OK

19 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
ASCII text
Size
19 kB (19219 bytes)
Hash
0013fbb3bd9e7300fa1bc9f62501dcf0
447e4a8994979e2e158b9beff79b94e7d1b29508
4cf18df81115ddab6967dc82096077ee024223dac3c6ffc9b810bffb7780a20e

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:47 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 33664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2XZxCobBvNFQJkOOMkAtD8%2FoVl7uUQdiGOwTION8qxNoog1T4itIvINnXBg5DYiw9aURxG5jYu1Yj5A87ihKbEI3vrTwWPY09zQ6ZiN6H5NOu%2FqMn%2FuWG8SShm5PNzwvDDGi1cRLvgeY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2a63ea5385b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css

172.64.160.4

200 OK

4.9 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
ASCII text
Size
4.9 kB (4869 bytes)
Hash
3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:47 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 33664
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7knEyUheDHjnwgbYn8FOViZSeGlcJz42xlMrt3pFkFJ3c1HcsAAe%2BaVgrqjsWo9ox4%2BTK6Y4TRIIPWASBJtnJ6FjAiXPn2VneVDZMk%2BAkzhSVRbE1LWeBQeQp4zSnvF6mZ7lSI87%2FmK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2a47d72385b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.3/wp-includes/js/imagesloaded.min.js

192.0.77.37

200 OK

10 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/js/imagesloaded.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4358)
Size
10 kB (10153 bytes)
Hash
6823120876c9afc8929418c9a6f8e343
90b0adb37d70ffec5f9189c36bb0027c310c9502
b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1

HTTP Headers

GET /c/6.4.3/wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 11 Aug 2023 18:18:26 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js

172.64.160.4

200 OK

58 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
JavaScript source, ASCII text, with very long lines (32025)
Size
58 kB (58179 bytes)
Hash
4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:47 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 55291
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eePdJBXW6k8whJzqtU%2B5XaJUf9H9qc0Mg%2FJousnA4E35EYQ1%2BKyt5vuT3bNgNpYSwKEp4ZnVD5vTptlX3rlicCEpFB2q8oBry4%2BI4gd9%2FQLz%2BUY5WwP5s3rMS51cv8P%2BuFeXp%2F5uDY4B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2a47f0d886b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-233797&rn=1&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

234 kB

URL POST HTTP/1.1
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-233797&rn=1&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
234 kB (233870 bytes)
Hash
11c4c2ee8768c6f0d34602fee49e254b
8a854c3cb4c53a5264042d4240e7c3a403eb527e
693323ef9fe3d39e1ca8a25ad3e5ac409490c182ba027caf7fd24c264a80ee10

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-233797&rn=1&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Mon, 05 Sep 2016 03:35:42 GMT
Content-Type: application/vnd.yt-ump
Date: Thu, 15 Feb 2024 04:20:47 GMT
Expires: Thu, 15 Feb 2024 04:20:47 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Restrict-Formats-Hint: None
X-Content-Type-Options: nosniff
Server: gvs 1.0

utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:48:35 GMT
expires: Fri, 14 Feb 2025 03:48:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 1933
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:55:29 GMT
expires: Fri, 14 Feb 2025 03:55:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 1519
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/youtubei/v1/next?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false

142.250.74.142

200 OK

5.9 kB

URL POST HTTP/3
www.youtube.com/youtubei/v1/next?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JSON text data
Size
5.9 kB (5859 bytes)
Hash
8f336fedff12a2663d3fda18bd74e9f5
64ff94c4d4c1b9db7b377f78578afcc4ffdf1540
f9d78438b520725f5ce4b1f508fb85edae93cba38028eddc5ad5be224038847c

HTTP Headers

POST /youtubei/v1/next?key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8&prettyPrint=false HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-Youtube-Bootstrap-Logged-In: false
X-Youtube-Client-Name: 56
X-Youtube-Client-Version: 1.20240212.01.00
Content-Length: 2636
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 15 Feb 2024 04:20:48 GMT
server: scaffolding on HTTPServer2
content-length: 5859
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+823; expires=Sat, 14-Feb-2026 04:20:47 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private

www.youtube.com/api/stats/playback?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.04&fmt=244&fs=0&rt=0.924&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=927&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=60.021&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&rtn=5&afmt=250&size=1216%3A653&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC

142.250.74.142

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/api/stats/playback?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.04&fmt=244&fs=0&rt=0.924&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=927&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=60.021&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&rtn=5&afmt=250&size=1216%3A653&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/stats/playback?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.04&fmt=244&fs=0&rt=0.924&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=927&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=60.021&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&rtn=5&afmt=250&size=1216%3A653&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1216%2C653&vis=1&wgl=true&ca_type=image
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/ptracking?html5=1&video_id=bYfp13VoGuQ&cpn=MNc-lZ1a_rjPqtj6&ei=H5HNZbr4FdS-0u8PypSzuAQ&ptk=youtube_single&oid=qUEHMaDotk0euYX4vZ-0BA&ptchn=ilPIl-SwFbtsoH8WLnvlfA&pltype=content

142.250.74.142

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/ptracking?html5=1&video_id=bYfp13VoGuQ&cpn=MNc-lZ1a_rjPqtj6&ei=H5HNZbr4FdS-0u8PypSzuAQ&ptk=youtube_single&oid=qUEHMaDotk0euYX4vZ-0BA&ptchn=ilPIl-SwFbtsoH8WLnvlfA&pltype=content
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ptracking?html5=1&video_id=bYfp13VoGuQ&cpn=MNc-lZ1a_rjPqtj6&ei=H5HNZbr4FdS-0u8PypSzuAQ&ptk=youtube_single&oid=qUEHMaDotk0euYX4vZ-0BA&ptchn=ilPIl-SwFbtsoH8WLnvlfA&pltype=content HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1216%2C653&vis=1&wgl=true&ca_type=image
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+186; expires=Sat, 14-Feb-2026 04:20:48 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

utilizeimplore.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j2%2Fxz0sG5NIMG5ikkVvS%2F3qSZnqrqaqe3qSU3BB9jj6D9j5JtmgLroLoiC46GTBQ1DY8ZSDOeh%2FoLBnmXFw9EHVe6%2B%2Br%2BB7Pz46yi5JgIxeLL9jDpTWdLFe9kvX3w%2BCG6V1FWe9Uq%2FVuNuo3SjZ7hvtRtl%2FtfSW5HtmseIHvh%2F4QWlVWRma3uIYhEoetoNy2y%2FXKuWgXkPP%2Fj93mQdHPYjuJXkZSowWnnpXoPgQcfRoWbq91CSvrUSZpqmx6IrTO%2FFebPIY0SwMrYcwPp2yYdyz1Scw8clELkz3XyJTI%2BL99AQsPp2KBOseT3QyDRmDiReQd4eQeghFh%2BDmHpR4RgAucHsDcfTgtrE53f8HpWN0RBae%2FwWVj8jCb1cQR18uadUrbRudpcrEDr2wgOoNoTpDJNkZ0gMPKj8DTz%2BEEr%2BQxefriKPjDacNlCgmtSs1hAqH0LIP6jxk46M8ZKGHLPEQiYsSD4Kg6QtO%2FVab86poStYQfkCbYUADv9FCxsfy%2BkiTPrjug9tDJPYQe6oPm%2F0At1vACQ8uHRHv3UN0RYFcEuSOIKcEuSLIU4K8W5wI7SqueCC0y1gw9ZWprxYDk3aO6IlJOzImoLZ%2FlFySl8a98ba%2F6WBPXpRk3a%2BGrBLUOBN1GVZ83m7TsNmqtts1xpsNOPXV6sqtnTtbK9uvB41m824A5eYm1R%2BoEan%2F%2BCkSNSKv%2FP4tGD2D02fgah40uwaaD5oVH3R3UGv5OIi%2FziUrC%2BkSY1MTy9yVuYkgTIEkXUC67x3pS3J1Mrq1jceQ%2FPzmH9WJgdsCiS3wgXpK0NH3B1smJ8dbJnfk8UaSqkgd0PFYt1OayvnP35b7ubFibdn1P7vFx8A4fLgjXbpOY6HijiNfLCkhpF01lkvy%2FZp7T7LNzO0uZTbOkvXNN1fXosRK55SJh6DjDf3TgqsRefHqzmRjr3%2B3CWWHsFmBKDsnU4MyQ%2FDkEC6Z6XeGwOoZhyUe8qwY2AqbPWpFoOUsp6yA%2B0%2FOZvHA0vFvqoojdx8dOwea3kMcFejaAl1dgOo%2BXDY%2FSBN7fvPXqQym5wZM27ljpq3%2BZNLm8fUITl2Uqr5oMhnKJpO1ei2UXLB6nfk85KwqWi2O1I3kzx9f%2BxsAAP%2F%2FAQAA%2F%2F9jHY%2FSiwQAAA%3D%3D

192.243.61.227

200 OK

7 B

URL GET HTTP/1.1
utilizeimplore.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j2%2Fxz0sG5NIMG5ikkVvS%2F3qSZnqrqaqe3qSU3BB9jj6D9j5JtmgLroLoiC46GTBQ1DY8ZSDOeh%2FoLBnmXFw9EHVe6%2B%2Br%2BB7Pz46yi5JgIxeLL9jDpTWdLFe9kvX3w%2BCG6V1FWe9Uq%2FVuNuo3SjZ7hvtRtl%2FtfSW5HtmseIHvh%2F4QWlVWRma3uIYhEoetoNy2y%2FXKuWgXkPP%2Fj93mQdHPYjuJXkZSowWnnpXoPgQcfRoWbq91CSvrUSZpqmx6IrTO%2FFebPIY0SwMrYcwPp2yYdyz1Scw8clELkz3XyJTI%2BL99AQsPp2KBOseT3QyDRmDiReQd4eQeghFh%2BDmHpR4RgAucHsDcfTgtrE53f8HpWN0RBae%2FwWVj8jCb1cQR18uadUrbRudpcrEDr2wgOoNoTpDJNkZ0gMPKj8DTz%2BEEr%2BQxefriKPjDacNlCgmtSs1hAqH0LIP6jxk46M8ZKGHLPEQiYsSD4Kg6QtO%2FVab86poStYQfkCbYUADv9FCxsfy%2BkiTPrjug9tDJPYQe6oPm%2F0At1vACQ8uHRHv3UN0RYFcEuSOIKcEuSLIU4K8W5wI7SqueCC0y1gw9ZWprxYDk3aO6IlJOzImoLZ%2FlFySl8a98ba%2F6WBPXpRk3a%2BGrBLUOBN1GVZ83m7TsNmqtts1xpsNOPXV6sqtnTtbK9uvB41m824A5eYm1R%2BoEan%2F%2BCkSNSKv%2FP4tGD2D02fgah40uwaaD5oVH3R3UGv5OIi%2FziUrC%2BkSY1MTy9yVuYkgTIEkXUC67x3pS3J1Mrq1jceQ%2FPzmH9WJgdsCiS3wgXpK0NH3B1smJ8dbJnfk8UaSqkgd0PFYt1OayvnP35b7ubFibdn1P7vFx8A4fLgjXbpOY6HijiNfLCkhpF01lkvy%2FZp7T7LNzO0uZTbOkvXNN1fXosRK55SJh6DjDf3TgqsRefHqzmRjr3%2B3CWWHsFmBKDsnU4MyQ%2FDkEC6Z6XeGwOoZhyUe8qwY2AqbPWpFoOUsp6yA%2B0%2FOZvHA0vFvqoojdx8dOwea3kMcFejaAl1dgOo%2BXDY%2FSBN7fvPXqQym5wZM27ljpq3%2BZNLm8fUITl2Uqr5oMhnKJpO1ei2UXLB6nfk85KwqWi2O1I3kzx9f%2BxsAAP%2F%2FAQAA%2F%2F9jHY%2FSiwQAAA%3D%3D
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuTnITBGUPwrIwxxV00j2%2Fxz0sG5NIMG5ikkVvS%2F3qSZnqrqaqe3qSU3BB9jj6D9j5JtmgLroLoiC46GTBQ1DY8ZSDOeh%2FoLBnmXFw9EHVe6%2B%2Br%2BB7Pz46yi5JgIxeLL9jDpTWdLFe9kvX3w%2BCG6V1FWe9Uq%2FVuNuo3SjZ7hvtRtl%2FtfSW5HtmseIHvh%2F4QWlVWRma3uIYhEoetoNy2y%2FXKuWgXkPP%2Fj93mQdHPYjuJXkZSowWnnpXoPgQcfRoWbq91CSvrUSZpqmx6IrTO%2FFebPIY0SwMrYcwPp2yYdyz1Scw8clELkz3XyJTI%2BL99AQsPp2KBOseT3QyDRmDiReQd4eQeghFh%2BDmHpR4RgAucHsDcfTgtrE53f8HpWN0RBae%2FwWVj8jCb1cQR18uadUrbRudpcrEDr2wgOoNoTpDJNkZ0gMPKj8DTz%2BEEr%2BQxefriKPjDacNlCgmtSs1hAqH0LIP6jxk46M8ZKGHLPEQiYsSD4Kg6QtO%2FVab86poStYQfkCbYUADv9FCxsfy%2BkiTPrjug9tDJPYQe6oPm%2F0At1vACQ8uHRHv3UN0RYFcEuSOIKcEuSLIU4K8W5wI7SqueCC0y1gw9ZWprxYDk3aO6IlJOzImoLZ%2FlFySl8a98ba%2F6WBPXpRk3a%2BGrBLUOBN1GVZ83m7TsNmqtts1xpsNOPXV6sqtnTtbK9uvB41m824A5eYm1R%2BoEan%2F%2BCkSNSKv%2FP4tGD2D02fgah40uwaaD5oVH3R3UGv5OIi%2FziUrC%2BkSY1MTy9yVuYkgTIEkXUC67x3pS3J1Mrq1jceQ%2FPzmH9WJgdsCiS3wgXpK0NH3B1smJ8dbJnfk8UaSqkgd0PFYt1OayvnP35b7ubFibdn1P7vFx8A4fLgjXbpOY6HijiNfLCkhpF01lkvy%2FZp7T7LNzO0uZTbOkvXNN1fXosRK55SJh6DjDf3TgqsRefHqzmRjr3%2B3CWWHsFmBKDsnU4MyQ%2FDkEC6Z6XeGwOoZhyUe8qwY2AqbPWpFoOUsp6yA%2B0%2FOZvHA0vFvqoojdx8dOwea3kMcFejaAl1dgOo%2BXDY%2FSBN7fvPXqQym5wZM27ljpq3%2BZNLm8fUITl2Uqr5oMhnKJpO1ei2UXLB6nfk85KwqWi2O1I3kzx9f%2BxsAAP%2F%2FAQAA%2F%2F9jHY%2FSiwQAAA%3D%3D HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:48 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 82b9aca9021f31b106ad37e6c1d71287
Strict-Transport-Security: max-age=0; includeSubdomains

yt3.ggpht.com/a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s88-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

6.1 kB

URL GET HTTP/3
yt3.ggpht.com/a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s88-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint4C:49:15:AB:96:AB:97:59:50:57:8F:6A:A0:72:90:34:89:C7:8F:B5
ValidityTue, 09 Jan 2024 06:31:19 GMT - Tue, 02 Apr 2024 06:31:18 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 88x88, components 3
Size
6.1 kB (6070 bytes)
Hash
371101d59b47b8f0dab7765f04448a00
27b1905a2b1406576a34e03e19912ae3111442c2
e7c79a84830eeecd1dd8be4a39cc3a8fd395137c70720de4fc865bd9a58d5688

HTTP Headers

GET /a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s88-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 6070
x-xss-protection: 0
date: Thu, 15 Feb 2024 00:27:08 GMT
expires: Fri, 16 Feb 2024 00:27:08 GMT
cache-control: public, max-age=86400, no-transform
age: 14020
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

utilizeimplore.com/pixel/sbs?c=1

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
utilizeimplore.com/pixel/sbs?c=1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 15 Feb 2024 04:20:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

142.250.74.142

200 OK

31 B

URL POST HTTP/3
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JSON text data
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1707970848105
Content-Type: application/json
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1216%2C653&vis=1&wgl=true&ca_type=image
Content-Length: 17113
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 15 Feb 2024 04:20:48 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+436; expires=Sat, 14-Feb-2026 04:20:48 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=467157-552038&rn=5&rbuf=4516&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

85 kB

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=467157-552038&rn=5&rbuf=4516&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
85 kB (84946 bytes)
Hash
d3146da4c56ba7948aed069861fc5a1f
9706e828006a38a2f37b917e0b9af83e6e411aad
ee8f7eaf40b52b528701b8c24b774ab37bfab4a39647083391980f072d9326b6

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=467157-552038&rn=5&rbuf=4516&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:48 GMT
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

unseenreport.com/pxf.gif?uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e503fb214cbd5ef20c99af783994bc76&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e503fb214cbd5ef20c99af783994bc76&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint18:C3:E7:4B:C5:EA:23:FC:38:62:D0:43:31:B5:79:2E:62:86:60:9E
ValiditySun, 21 Jan 2024 08:27:47 GMT - Sat, 20 Apr 2024 08:27:46 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=e503fb214cbd5ef20c99af783994bc76&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:48 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2a06671aad30f51f6cdfe68bf18783d5
Strict-Transport-Security: max-age=0; includeSubdomains

www.youtube.com/api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.001&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=3802&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&rtn=15&afmt=250&idpj=-6&ldpj=-3&rti=5&size=1491%3A1239&st=0&et=0.04&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC

142.250.74.142

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.001&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=3802&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&rtn=15&afmt=250&idpj=-6&ldpj=-3&rti=5&size=1491%3A1239&st=0&et=0.04&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.001&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=3802&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&rtn=15&afmt=250&idpj=-6&ldpj=-3&rti=5&size=1491%3A1239&st=0&et=0.04&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1491%2C1239&vis=1&wgl=true&ca_type=image
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/api/stats/atr?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.474&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=4276&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=61&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&afmt=250&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC

142.250.74.142

204 No Content

0 B

URL POST HTTP/3
www.youtube.com/api/stats/atr?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.474&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=4276&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=61&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&afmt=250&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/stats/atr?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=5.474&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=4276&cl=606756184&mos=1&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&epm=1&splay=1&hl=en_US&cr=NO&len=61&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&afmt=250&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1491%2C1239&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 1984
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js?&psid=FEATURES-1677_1_rotator

172.240.108.76

200 OK

16 kB

URL GET HTTP/1.1
pl22363898.toprevenuegate.com/e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js?&psid=FEATURES-1677_1_rotator
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjecttoprevenuegate.com
Fingerprint12:98:4D:23:5C:FB:03:A9:39:F4:63:A4:99:4D:79:B2:4A:E2:D3:D1
ValidityTue, 19 Dec 2023 13:19:08 GMT - Mon, 18 Mar 2024 13:19:07 GMT

File type
JavaScript source, ASCII text, with very long lines (45261), with no line terminators
Size
16 kB (16117 bytes)
Hash
9be511e04a0dc5fe6769736432d6998c
753869fab80b8f87177cfd4ff85d867f1e874467
ae9c5bba54542de319edec7de5cc77035544d076f85c2cc83c61b48a3af5d12d

HTTP Headers

GET /e5/03/fb/e503fb214cbd5ef20c99af783994bc76.js?&psid=FEATURES-1677_1_rotator HTTP/1.1
Host: pl22363898.toprevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_FEATURES-1677=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7cd0ce530aaeefb5191e0c74538609e4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

friendshipmale.com/sfp.js

104.21.234.33

200 OK

35 kB

URL GET HTTP/3
friendshipmale.com/sfp.js
IP
104.21.234.33:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerCloudflare, Inc.
Subjectfriendshipmale.com
Fingerprint77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
ValidityThu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
35 kB (35327 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 15 Feb 2024 04:20:53 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 9a6d7cdabcecc28456b2d3f35572f902
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 15 Feb 2024 04:20:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bM0n4EwolnopF9BKvg40uwz9q%2FYGrboNA%2BtKLLnAFQydbmFWDMTtv5wXs9BwsfWxXZE91rRzecwhSzuDth0oDCHhVtmfZJQsvhgfk5YwrIxgR7eBxbyVJODd%2BjuU4CteubR8Cj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2c76a1a4182-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png

172.64.160.4

200 OK

591 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Size
591 B (591 bytes)
Hash
9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 15 Feb 2024 04:20:54 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 55303
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9F6OnQ7agqmldsnpk8xQc9WMWO%2B9QeLKwf6iA3vvI47NlFHK4VEEL8NZnqbJfpmiiED1paELW35SzZcE1ZSemUz96aXwYH49yCp6HaCAgMBSQ0SU9L%2BiR0SxOZckcOkZe3Lbgg9qIJSB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2cdba63638e-LHR
alt-svc: h3=":443"; ma=86400

cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png

45.133.44.10

200 OK

16 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
16 kB (16093 bytes)
Hash
14cf262fabfd850855c42847d14fe775
2fafa28f167f018a0fb1f261f47380c8810803c9
972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af

HTTP Headers

GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:54 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Sat, 17 Feb 2024 04:20:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css

172.64.160.4

200 OK

5.4 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
ASCII text
Size
5.4 kB (5372 bytes)
Hash
3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 15 Feb 2024 04:20:53 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 37228
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bSA7D%2BG4LeKqYXRmyBo5%2F%2BYbVnuv6ixPOZ488VjfBswJqv72SbMmGvKJTqZmtK5YhU0EmuonfAx4g7N72YmNifVadDrbkC2qKZ%2BCgP%2FRpGURrjtz7S9NQTQ0WYDwYMataFqik0QASQzp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2ccecfd24db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

roamparadeexpel.com/ren.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vdM9M9bQ4hMVlZXLMhm6C3UF1VM1tudVdT1T092VMwIjmO%2FgP2vNls%2FBEkATEgGLQT8LAoZDztwT3of6CQs%2FRkcbSg%2B%2Fu%2B976G149Xn0zyI%2BIip4cX3tO7Uim62m05zdMfuO6Z5oZM8lFz1POv%2B50zTTN8K%2FRbzhvNdwTb0aue4zqO67jNNWlEX49WaxIyvRe6rdBpdbyW2%2B1gZP4%2F23wJli6BD4%2FIy5B8tvykcRKSVUji%2BxeE3cl0%2BubFOFc00wZDfvdaspPoIkG8aPumgX5y93gb2j5dewSd3JnLhR7%2BuxjJGWn8%2FAhRcvdYJKLh3lxnpCASRPwFFMMKQlWQtALTtyD5UwIwjkubSOL9S9oU9MZzltbsjCw%2F%2BxuymJHl308iib85r%2BSouaVVnkmdWIz6JeSoghxUSPMK2W4DsngMln0EyX8lq882kMR7m1ZpSH74Gg2cbtjui5WOF%2FZWOh2ntxJy7qz4zPfa1KO%2Bz%2BjcICkryH4FJcagtoG8fmQDeb%2BBPG0g5odN5rpu4HBGnV7IWJsHIvK549Kg71LX8XvIWf0PY2TpGEyNwczHe3nC7MT9IuXb2c7QC%2Fcyk4v9GvTCibv%2FHJ6DSM1N7MgxTP4j7HYJyxuwGcGQlygEQWEJCkpQSIIiIyiG5R2urGfLfa5sHrnH1Tuu7XKqs8GE3tHZQCQE1Iwn6RF5qba5sfXdADvisCm6TrsfeW6HRbwr%2Bp7DwpD2g147DDsRC3xY%2BXDt4rmr165c3Fpx%2FSC47l43OpsHSNqluVe7cka6P32OVM7IK388REQfw6rHYPIEaP4qaDENPAd0e9rpOdhNvi1E1OLCptpkOhGFbTEdg%2BsSabaM7EZjoo7IqXka1jcfQLCDs3%2B25wfMlEhNiQ%2FlE4KBuj29oguyd0UXljzYTDMZy11aJ2Uro5k48dW74kahDV%2B%2FYMdfnmM1Ubf3rgqbbdCEy2RgydfnJefCrGnDBPlh3b4vosu53T6fmyRPNy6%2FvbYep0ZYK3VSgdah%2F8uAyRl58dTV%2BSU4%2Ff1lSFPB5CXi%2FIAcH0hdgaU3YdOFfqsJjFrsRGkDRV5OjRctQCUJlFjMNCph%2FzNHi35qaP01leXE3sbALIFmt5DEJYamxFCVoGoMm5%2BYZqk5OPvbsYxILU0jZZb2ImXUZ3Ob69d9WHnYDNpth%2Fph1w0CKoKo4%2FX6vssp9Tq%2B5%2Fu0jczOxC%2Bfvv4PAAAA%2F%2F8BAAD%2F%2F9OXWBLeBAAA

172.240.108.92

200 OK

7 B

URL GET HTTP/1.1
roamparadeexpel.com/ren.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vdM9M9bQ4hMVlZXLMhm6C3UF1VM1tudVdT1T092VMwIjmO%2FgP2vNls%2FBEkATEgGLQT8LAoZDztwT3of6CQs%2FRkcbSg%2B%2Fu%2B976G149Xn0zyI%2BIip4cX3tO7Uim62m05zdMfuO6Z5oZM8lFz1POv%2B50zTTN8K%2FRbzhvNdwTb0aue4zqO67jNNWlEX49WaxIyvRe6rdBpdbyW2%2B1gZP4%2F23wJli6BD4%2FIy5B8tvykcRKSVUji%2BxeE3cl0%2BubFOFc00wZDfvdaspPoIkG8aPumgX5y93gb2j5dewSd3JnLhR7%2BuxjJGWn8%2FAhRcvdYJKLh3lxnpCASRPwFFMMKQlWQtALTtyD5UwIwjkubSOL9S9oU9MZzltbsjCw%2F%2BxuymJHl308iib85r%2BSouaVVnkmdWIz6JeSoghxUSPMK2W4DsngMln0EyX8lq882kMR7m1ZpSH74Gg2cbtjui5WOF%2FZWOh2ntxJy7qz4zPfa1KO%2Bz%2BjcICkryH4FJcagtoG8fmQDeb%2BBPG0g5odN5rpu4HBGnV7IWJsHIvK549Kg71LX8XvIWf0PY2TpGEyNwczHe3nC7MT9IuXb2c7QC%2Fcyk4v9GvTCibv%2FHJ6DSM1N7MgxTP4j7HYJyxuwGcGQlygEQWEJCkpQSIIiIyiG5R2urGfLfa5sHrnH1Tuu7XKqs8GE3tHZQCQE1Iwn6RF5qba5sfXdADvisCm6TrsfeW6HRbwr%2Bp7DwpD2g147DDsRC3xY%2BXDt4rmr165c3Fpx%2FSC47l43OpsHSNqluVe7cka6P32OVM7IK388REQfw6rHYPIEaP4qaDENPAd0e9rpOdhNvi1E1OLCptpkOhGFbTEdg%2BsSabaM7EZjoo7IqXka1jcfQLCDs3%2B25wfMlEhNiQ%2FlE4KBuj29oguyd0UXljzYTDMZy11aJ2Uro5k48dW74kahDV%2B%2FYMdfnmM1Ubf3rgqbbdCEy2RgydfnJefCrGnDBPlh3b4vosu53T6fmyRPNy6%2FvbYep0ZYK3VSgdah%2F8uAyRl58dTV%2BSU4%2Ff1lSFPB5CXi%2FIAcH0hdgaU3YdOFfqsJjFrsRGkDRV5OjRctQCUJlFjMNCph%2FzNHi35qaP01leXE3sbALIFmt5DEJYamxFCVoGoMm5%2BYZqk5OPvbsYxILU0jZZb2ImXUZ3Ob69d9WHnYDNpth%2Fph1w0CKoKo4%2FX6vssp9Tq%2B5%2Fu0jczOxC%2Bfvv4PAAAA%2F%2F8BAAD%2F%2F9OXWBLeBAAA
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vdM9M9bQ4hMVlZXLMhm6C3UF1VM1tudVdT1T092VMwIjmO%2FgP2vNls%2FBEkATEgGLQT8LAoZDztwT3of6CQs%2FRkcbSg%2B%2Fu%2B976G149Xn0zyI%2BIip4cX3tO7Uim62m05zdMfuO6Z5oZM8lFz1POv%2B50zTTN8K%2FRbzhvNdwTb0aue4zqO67jNNWlEX49WaxIyvRe6rdBpdbyW2%2B1gZP4%2F23wJli6BD4%2FIy5B8tvykcRKSVUji%2BxeE3cl0%2BubFOFc00wZDfvdaspPoIkG8aPumgX5y93gb2j5dewSd3JnLhR7%2BuxjJGWn8%2FAhRcvdYJKLh3lxnpCASRPwFFMMKQlWQtALTtyD5UwIwjkubSOL9S9oU9MZzltbsjCw%2F%2BxuymJHl308iib85r%2BSouaVVnkmdWIz6JeSoghxUSPMK2W4DsngMln0EyX8lq882kMR7m1ZpSH74Gg2cbtjui5WOF%2FZWOh2ntxJy7qz4zPfa1KO%2Bz%2BjcICkryH4FJcagtoG8fmQDeb%2BBPG0g5odN5rpu4HBGnV7IWJsHIvK549Kg71LX8XvIWf0PY2TpGEyNwczHe3nC7MT9IuXb2c7QC%2Fcyk4v9GvTCibv%2FHJ6DSM1N7MgxTP4j7HYJyxuwGcGQlygEQWEJCkpQSIIiIyiG5R2urGfLfa5sHrnH1Tuu7XKqs8GE3tHZQCQE1Iwn6RF5qba5sfXdADvisCm6TrsfeW6HRbwr%2Bp7DwpD2g147DDsRC3xY%2BXDt4rmr165c3Fpx%2FSC47l43OpsHSNqluVe7cka6P32OVM7IK388REQfw6rHYPIEaP4qaDENPAd0e9rpOdhNvi1E1OLCptpkOhGFbTEdg%2BsSabaM7EZjoo7IqXka1jcfQLCDs3%2B25wfMlEhNiQ%2FlE4KBuj29oguyd0UXljzYTDMZy11aJ2Uro5k48dW74kahDV%2B%2FYMdfnmM1Ubf3rgqbbdCEy2RgydfnJefCrGnDBPlh3b4vosu53T6fmyRPNy6%2FvbYep0ZYK3VSgdah%2F8uAyRl58dTV%2BSU4%2Ff1lSFPB5CXi%2FIAcH0hdgaU3YdOFfqsJjFrsRGkDRV5OjRctQCUJlFjMNCph%2FzNHi35qaP01leXE3sbALIFmt5DEJYamxFCVoGoMm5%2BYZqk5OPvbsYxILU0jZZb2ImXUZ3Ob69d9WHnYDNpth%2Fph1w0CKoKo4%2FX6vssp9Tq%2B5%2Fu0jczOxC%2Bfvv4PAAAA%2F%2F8BAAD%2F%2F9OXWBLeBAAA HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 88608b4d976f679f9645260d9f6e8a5e
Strict-Transport-Security: max-age=0; includeSubdomains

roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589

172.240.108.92

200 OK

0 B

URL GET HTTP/1.1
roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589 HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html

45.133.44.4

200 OK

440 B

URL GET HTTP/2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint0F:4E:8E:BE:C9:40:4B:09:BB:C5:73:C2:49:28:4D:F3:D4:95:2F:A3
ValidityWed, 10 Jan 2024 03:01:07 GMT - Tue, 09 Apr 2024 03:01:06 GMT

File type
HTML document, ASCII text
Size
440 B (440 bytes)
Hash
f6990569c7ffeac1f4a3f6d9eee5da44
e7d5e37acf89a8faee252c36fc2c9d6615501d76
cc2a9756c81bd570fff8b32e48a413687c33f8abe9c934e743a0769178b4f690

HTTP Headers

GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:53 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 15 Feb 2024 05:20:53 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css

172.64.160.4

200 OK

961 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
IP
172.64.160.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint49:C8:A4:CE:31:56:FC:06:71:93:06:7A:69:DD:ED:B2:EF:C9:41:97
ValidityTue, 19 Dec 2023 15:02:46 GMT - Mon, 18 Mar 2024 15:02:45 GMT

File type
ASCII text
Size
961 B (961 bytes)
Hash
039a6734d79ed9aa51cf81c52479c5fe
9cf29c4ea1a3880681d50c7228374f8073b7778b
a15bad73fc8907795285b78a4a1a1bf5e7f68b4d39988b9bb165444819cf9eb1

HTTP Headers

GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 15 Feb 2024 04:20:53 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 37227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XOmivFp5k0R%2FfD6A6q6zg5SBGQcWIbDMp%2FTNYjyzs%2F0pQ8nSz%2FmAxt0u3XaF0lfi30bRdqgVBSWqGD4je2drDzctAGb2lTm%2FNQud9U7AZ3DooIonKVvrd4FoD3e0E5rqgk6Dc1F3HnXG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 855ac2ccfd0224db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:48:35 GMT
expires: Fri, 14 Feb 2025 03:48:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 1939
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint9D:25:7E:5C:DF:C3:E5:5B:00:4F:04:97:A3:48:A3:30:60:9A:DB:48
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:55:29 GMT
expires: Fri, 14 Feb 2025 03:55:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 1525
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1742847-3296259&rn=7&rbuf=8519&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

1.6 MB

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1742847-3296259&rn=7&rbuf=8519&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
1.6 MB (1553592 bytes)
Hash
1d25a04640459149a0f0a4b608725c6d
f45e75d269dbc0aeb9186edfc0dc1f9dd9f91662
937e8bbdfec9e5ddb4a52ce2612a00e92398370642e6f3918deb1517d97e0f3a

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1742847-3296259&rn=7&rbuf=8519&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:48 GMT
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

roamparadeexpel.com/impr.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vd87PNISQmK4trNmQT9BbqV8%2BWW9PVVHVPT%2FYUjEiOo%2F%2BAPW82G38ESUAMCAbtBDwsChlPe3AP%2Bh8o5Cw9WRwt6P6%2B772v4fXj1SeT7Ij4yOjhhffMrtKarrYbXv30B75%2Fpr6h4mxUH%2FU61zutM3U7fCvsNLw36u9IvmNWA8%2F3PN%2Fz62vKysiMVisSKrkX%2Bo3Qa7SCht9uYWT%2FP7tsCY4uQQyPyMtQYrb8pHYSipeIB%2FcvSLeTmuTNi4NM09RYDMXda%2FFObPIYg0Ub2Rqi%2BO7xNox7uvYIJr4zlwsz%2FHeRqRmp%2FfwILL57LBJsuDfXyTRkDCZeQD4sIXUJRUtwcwtKPCUAF7i0iXiwf8nYnN54ztKKnZHlZ39D5TOy%2FPtJxINvzms1qm8ZnaXKxA6jqIAalVD9EklWIt2tQeWPwdOPoMSvZPXZBuLB3qbTBkocvka7XjtsRnKlFYS9lVbL662EQngrHd4JmjSgnQ6nc4OUKqGiElqOQV0NWfWoGrKohiypYSAO69z3%2Fa4nOPV6IedN0ZWsIzyfdiOf%2Bl6nh4xX%2FzBGmozB9RjcfryXxdxN%2FC8SsZ3uDINwL7WZ3K%2FAIJz4%2B8%2FhOYjE3sSOGsNmP8JtF3CiBpcSDEWBXBLkjiCnBLkiyFOCfFjcEdoFrtgX2mXMP67BcW0WU5P2J%2FSOSfsyJqB2PEmOyEuVzbWt7%2FrYkYd12faaEQv8FmeiLaPA42FIo26vGYYtxrsdOPVw7eK5q9euXNxa8Tvd7nX%2FujXpPEDKLc292lUz0v7pcyRqRl754yEYfQynH4OrE6DZq6D5tBt4oNvTVs%2FDbvxtLllDSJcYm5pY5q7BzQDCFEjSZaQ3ahN9RE7N07C%2B%2BQCSH5z9szk%2F4LZAYgt8qJ4Q9PXt6RWTk70rJnfkwWaSqoHapVVStlKayhNfvStv5MaK9Qtu%2FOU5XhFVe%2B%2BqdOkGjYWK%2B458fV4JIe2asVySH9bd%2B5Jdztz2%2BczGWbJx%2Be219UFipXPKxCVoFfq%2FLLiakRdPXZ1fgtPfX4ayJWxWYJAdkOMDZUrw5CZcstDvDIHVix2W1JBnxdQGbAFqRaDlYqasgPvPzBb91NLqa6qKibuNvl0CTW8hHhQY2gJDXYDqMVx2Ypom9uDsb8cymF6aMm2X9pi2%2BrO5zdXrPpw6rDc90WUykl0mW%2B1WJLlg7TbzeMRZU%2FR6HKmbyV8%2Bff0fAAAA%2F%2F8BAAD%2F%2F1NDjfreBAAA

172.240.108.92

200 OK

7 B

URL GET HTTP/1.1
roamparadeexpel.com/impr.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vd87PNISQmK4trNmQT9BbqV8%2BWW9PVVHVPT%2FYUjEiOo%2F%2BAPW82G38ESUAMCAbtBDwsChlPe3AP%2Bh8o5Cw9WRwt6P6%2B772v4fXj1SeT7Ij4yOjhhffMrtKarrYbXv30B75%2Fpr6h4mxUH%2FU61zutM3U7fCvsNLw36u9IvmNWA8%2F3PN%2Fz62vKysiMVisSKrkX%2Bo3Qa7SCht9uYWT%2FP7tsCY4uQQyPyMtQYrb8pHYSipeIB%2FcvSLeTmuTNi4NM09RYDMXda%2FFObPIYg0Ub2Rqi%2BO7xNox7uvYIJr4zlwsz%2FHeRqRmp%2FfwILL57LBJsuDfXyTRkDCZeQD4sIXUJRUtwcwtKPCUAF7i0iXiwf8nYnN54ztKKnZHlZ39D5TOy%2FPtJxINvzms1qm8ZnaXKxA6jqIAalVD9EklWIt2tQeWPwdOPoMSvZPXZBuLB3qbTBkocvka7XjtsRnKlFYS9lVbL662EQngrHd4JmjSgnQ6nc4OUKqGiElqOQV0NWfWoGrKohiypYSAO69z3%2Fa4nOPV6IedN0ZWsIzyfdiOf%2Bl6nh4xX%2FzBGmozB9RjcfryXxdxN%2FC8SsZ3uDINwL7WZ3K%2FAIJz4%2B8%2FhOYjE3sSOGsNmP8JtF3CiBpcSDEWBXBLkjiCnBLkiyFOCfFjcEdoFrtgX2mXMP67BcW0WU5P2J%2FSOSfsyJqB2PEmOyEuVzbWt7%2FrYkYd12faaEQv8FmeiLaPA42FIo26vGYYtxrsdOPVw7eK5q9euXNxa8Tvd7nX%2FujXpPEDKLc292lUz0v7pcyRqRl754yEYfQynH4OrE6DZq6D5tBt4oNvTVs%2FDbvxtLllDSJcYm5pY5q7BzQDCFEjSZaQ3ahN9RE7N07C%2B%2BQCSH5z9szk%2F4LZAYgt8qJ4Q9PXt6RWTk70rJnfkwWaSqoHapVVStlKayhNfvStv5MaK9Qtu%2FOU5XhFVe%2B%2BqdOkGjYWK%2B458fV4JIe2asVySH9bd%2B5Jdztz2%2BczGWbJx%2Be219UFipXPKxCVoFfq%2FLLiakRdPXZ1fgtPfX4ayJWxWYJAdkOMDZUrw5CZcstDvDIHVix2W1JBnxdQGbAFqRaDlYqasgPvPzBb91NLqa6qKibuNvl0CTW8hHhQY2gJDXYDqMVx2Ypom9uDsb8cymF6aMm2X9pi2%2BrO5zdXrPpw6rDc90WUykl0mW%2B1WJLlg7TbzeMRZU%2FR6HKmbyV8%2Bff0fAAAA%2F%2F8BAAD%2F%2F1NDjfreBAAA
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RTz4scRRit2exNEJQchCDMQSGCO9vd87PNISQmK4trNmQT9BbqV8%2BWW9PVVHVPT%2FYUjEiOo%2F%2BAPW82G38ESUAMCAbtBDwsChlPe3AP%2Bh8o5Cw9WRwt6P6%2B772v4fXj1SeT7Ij4yOjhhffMrtKarrYbXv30B75%2Fpr6h4mxUH%2FU61zutM3U7fCvsNLw36u9IvmNWA8%2F3PN%2Fz62vKysiMVisSKrkX%2Bo3Qa7SCht9uYWT%2FP7tsCY4uQQyPyMtQYrb8pHYSipeIB%2FcvSLeTmuTNi4NM09RYDMXda%2FFObPIYg0Ub2Rqi%2BO7xNox7uvYIJr4zlwsz%2FHeRqRmp%2FfwILL57LBJsuDfXyTRkDCZeQD4sIXUJRUtwcwtKPCUAF7i0iXiwf8nYnN54ztKKnZHlZ39D5TOy%2FPtJxINvzms1qm8ZnaXKxA6jqIAalVD9EklWIt2tQeWPwdOPoMSvZPXZBuLB3qbTBkocvka7XjtsRnKlFYS9lVbL662EQngrHd4JmjSgnQ6nc4OUKqGiElqOQV0NWfWoGrKohiypYSAO69z3%2Fa4nOPV6IedN0ZWsIzyfdiOf%2Bl6nh4xX%2FzBGmozB9RjcfryXxdxN%2FC8SsZ3uDINwL7WZ3K%2FAIJz4%2B8%2FhOYjE3sSOGsNmP8JtF3CiBpcSDEWBXBLkjiCnBLkiyFOCfFjcEdoFrtgX2mXMP67BcW0WU5P2J%2FSOSfsyJqB2PEmOyEuVzbWt7%2FrYkYd12faaEQv8FmeiLaPA42FIo26vGYYtxrsdOPVw7eK5q9euXNxa8Tvd7nX%2FujXpPEDKLc292lUz0v7pcyRqRl754yEYfQynH4OrE6DZq6D5tBt4oNvTVs%2FDbvxtLllDSJcYm5pY5q7BzQDCFEjSZaQ3ahN9RE7N07C%2B%2BQCSH5z9szk%2F4LZAYgt8qJ4Q9PXt6RWTk70rJnfkwWaSqoHapVVStlKayhNfvStv5MaK9Qtu%2FOU5XhFVe%2B%2BqdOkGjYWK%2B458fV4JIe2asVySH9bd%2B5Jdztz2%2BczGWbJx%2Be219UFipXPKxCVoFfq%2FLLiakRdPXZ1fgtPfX4ayJWxWYJAdkOMDZUrw5CZcstDvDIHVix2W1JBnxdQGbAFqRaDlYqasgPvPzBb91NLqa6qKibuNvl0CTW8hHhQY2gJDXYDqMVx2Ypom9uDsb8cymF6aMm2X9pi2%2BrO5zdXrPpw6rDc90WUykl0mW%2B1WJLlg7TbzeMRZU%2FR6HKmbyV8%2Bff0fAAAA%2F%2F8BAAD%2F%2F1NDjfreBAAA HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1c24fae7d9acbe2aa9f91f7b14758cc1
Strict-Transport-Security: max-age=0; includeSubdomains

roamparadeexpel.com/pixel/sbs?c=1

172.240.108.92

200 OK

0 B

URL GET HTTP/1.1
roamparadeexpel.com/pixel/sbs?c=1
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

216.58.207.234

200 OK

8.3 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint6F:81:CD:1A:A2:80:8C:76:2C:D8:63:D0:74:1B:DD:35:C8:79:84:20
ValidityTue, 09 Jan 2024 06:30:50 GMT - Tue, 02 Apr 2024 06:30:49 GMT

File type
gzip compressed data, max compression
Size
8.3 kB (8286 bytes)
Hash
0fabedb2f0d46fb8e52661a3cee7f0be
05be125ea32bb37e8fad6ba970f5e572dae97e3d
adcf2bda94a58f7dd5a6fb181daf39c5da66573d5b8b3c7f7a5a3778a31a3809

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Feb 2024 04:20:54 GMT
date: Thu, 15 Feb 2024 04:20:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=15&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=13801&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&afmt=250&idpj=-6&ldpj=-3&rti=15&size=1491%3A1239&st=0.08&et=0.08&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC

142.250.74.142

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=15&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=13801&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&afmt=250&idpj=-6&ldpj=-3&rti=15&size=1491%3A1239&st=0.08&et=0.08&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/stats/watchtime?ns=yt&el=embedded&cpn=MNc-lZ1a_rjPqtj6&ver=2&cmt=0.08&fmt=247&fs=0&rt=15&euri=https%3A%2F%2Fweb.desportonews.com%2F&lact=13801&cl=606756184&state=paused&volume=100&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&autoplay=1&splay=1&hl=en_US&cr=NO&len=61&afmt=250&idpj=-6&ldpj=-3&rti=15&size=1491%3A1239&st=0.08&et=0.08&muted=1&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&of=gB5TKodgad5lQWtKP5ApuA&vm=CAEQARgEOjJBSHFpSlRKREp0QkQtSjBuZHc5b1NLaGp0aktwcl9CTjY1Y01VNmcyN1I0amF2WjJDZ2JwQVBta0tES3N1dFlVNkItR2hOZ25uZUdvZXpqcWw0ekotYUhJa2lYSDBKVE5jZ2dtNmNlV25kc2pwQlFVUnJiaEJUQlJ5dC1rTzF3Z1pYbDhiU3hnZGtXcXhyM3RGVVlkcjZMNm95YlZyVVM3WHVMdWgC HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1491%2C1239&vis=1&wgl=true&ca_type=image
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:21:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=5393412-7490563&rn=9&rbuf=25710&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

2.1 MB

URL
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=5393412-7490563&rn=9&rbuf=25710&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:0
ASN
#50304 Blix Solutions AS

Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
2.1 MB (2102696 bytes)
Hash
163c0a1a3833eb10457bdd335b8f0f9e
2f40b800455b7ce91611eaf9c9078b4abfe99139
fe2a2d3d65ca713538781c0b1d73173b8a05b8ea607f1942d82c4eb25511d4ca

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=5393412-7490563&rn=9&rbuf=25710&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:21:07 GMT
expires: Thu, 15 Feb 2024 04:21:07 GMT
cache-control: private, max-age=21280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

142.250.74.142

200 OK

31 B

URL POST HTTP/3
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JSON text data
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1707970874446
Content-Type: application/json
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970845710&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1491%2C1239&vis=1&wgl=true&ca_type=image
Content-Length: 874
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 15 Feb 2024 04:21:14 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+421; expires=Sat, 14-Feb-2026 04:21:14 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 15 Feb 2024 04:21:14 GMT
cache-control: private

c0.wp.com/c/6.4.3/wp-includes/css/dist/block-library/style.min.css

192.0.77.37

200 OK

110 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/css/dist/block-library/style.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type

Size
110 kB (110147 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c/6.4.3/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 24 Jan 2024 19:02:28 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.ytimg.com/vi_webp/bYfp13VoGuQ/maxresdefault.webp

216.58.207.214

200 OK

33 kB

URL GET HTTP/2
i.ytimg.com/vi_webp/bYfp13VoGuQ/maxresdefault.webp
IP
216.58.207.214:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintB6:9B:CA:95:C6:1A:07:80:E8:13:9C:B3:44:AD:02:47:A4:7A:D0:48
ValidityTue, 09 Jan 2024 06:25:07 GMT - Tue, 02 Apr 2024 06:25:06 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp
Size
33 kB (32716 bytes)
Hash
ad4343107515a8889fcbe5f2a7e40996
95440c4f86a9d46426fe3dfb64e8cebbe7e375cb
76c9bf3fa5eafec1ffdbebe55c8ec4d0423392368c809566e78c773f8c0584c7

HTTP Headers

GET /vi_webp/bYfp13VoGuQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 32716
date: Thu, 15 Feb 2024 04:20:46 GMT
expires: Thu, 15 Feb 2024 06:20:46 GMT
cache-control: public, max-age=7200
etag: "1441872340"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

yt3.ggpht.com/a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

4.3 kB

URL GET HTTP/2
yt3.ggpht.com/a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint4C:49:15:AB:96:AB:97:59:50:57:8F:6A:A0:72:90:34:89:C7:8F:B5
ValidityTue, 09 Jan 2024 06:31:19 GMT - Tue, 02 Apr 2024 06:31:18 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3
Size
4.3 kB (4281 bytes)
Hash
a3584bd8d088d624ad9145fa26946932
5c7fb3f455f72c34512c43e9aab839b48020ebfc
f9eb751423e1c3f0390a4d0d1ed75833937f18cba793535e26d274483d9e0b0f

HTTP Headers

GET /a0wiQkiXec8biQwhCjz8wITShS1hmjyWfms7iF4LAGpa3gn4Xco8N1mxfvSbDIqDVHr_M3o7=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 4281
x-xss-protection: 0
date: Thu, 15 Feb 2024 00:49:05 GMT
expires: Fri, 16 Feb 2024 00:49:05 GMT
cache-control: public, max-age=86400, no-transform
age: 12701
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32

172.240.108.92

200 OK

0 B

URL GET HTTP/1.1
roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=32 HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.youtube.com/iframe_api

142.250.74.110

200 OK

993 B

URL GET HTTP/2
www.youtube.com/iframe_api
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (1025), with no line terminators
Size
993 B (993 bytes)
Hash
97088850c827a0b76a14845601f754d1
9f228e6da138d45c80304b7e89679d4fb7cdfd0f
49e1e9596bcef6eac093fd5f7bc8988c09b97571f1597ec24a3add96bb6f76d3

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 15 Feb 2024 04:20:44 GMT
date: Thu, 15 Feb 2024 04:20:44 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=IddOCfpvnYY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=0lM8sM9DDoA; Domain=.youtube.com; Expires=Tue, 13-Aug-2024 04:20:44 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICw%3D; Domain=.youtube.com; Expires=Tue, 13-Aug-2024 04:20:44 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+465; expires=Sat, 14-Feb-2026 04:20:44 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube.com/generate_204?uwEYQA

142.250.74.142

204 No Content

0 B

URL GET HTTP/3
www.youtube.com/generate_204?uwEYQA
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /generate_204?uwEYQA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 15 Feb 2024 04:20:47 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
utilizeimplore.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=589 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=233798-467156&rn=3&rbuf=2258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

233 kB

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=233798-467156&rn=3&rbuf=2258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
233 kB (233433 bytes)
Hash
ba088c38a12fd087b69d70bd8790f2fa
914ce14a7c99eb3f2502a1afcbccb3aa26964320
ebd51edc5be06e1ac66dafdf615117d5149a50b79969fb1e8a841cf31675da62

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=244&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=6239829&dur=59.960&lmt=1473046542015073&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgPdZZd6Q6pOrexZk9mtu4ZqRtNJpK7soRHwx9nfC3-vwCIAfGG7lltIYPtFq9z7hTduFtlowGkU9lvJfeHzI4vQ42&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=233798-467156&rn=3&rbuf=2258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:48 GMT
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

web.desportonews.com/

67.205.59.238

200 OK

114 kB

URL User Request GET HTTP/2
web.desportonews.com/
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type

Size
114 kB (114260 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
vary: Accept-Encoding,Cookie,User-Agent
last-modified: Thu, 15 Feb 2024 04:16:28 GMT
cache-control: max-age=3, must-revalidate, max-age=600
expires: Thu, 15 Feb 2024 04:30:42 GMT
content-encoding: gzip
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2

www.youtube.com/api/stats/qoe?fmt=247&afmt=250&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=2&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.573:250::i&user_intent=0&vfs=1.096:247:247:244:r&view=1.096:1491:1239&vps=1.096:S,1.096:S&bwm=1.096:580310:0.917&bwe=1.096:428918&cmt=1.096:0.080&bh=1.096:4.459&df=1.096:0

142.250.74.142

204 No Content

0 B

URL POST HTTP/3
www.youtube.com/api/stats/qoe?fmt=247&afmt=250&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=2&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.573:250::i&user_intent=0&vfs=1.096:247:247:244:r&view=1.096:1491:1239&vps=1.096:S,1.096:S&bwm=1.096:580310:0.917&bwe=1.096:428918&cmt=1.096:0.080&bh=1.096:4.459&df=1.096:0
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/stats/qoe?fmt=247&afmt=250&cpn=MNc-lZ1a_rjPqtj6&el=embedded&ns=yt&fexp=v1%2C23983296%2C21348%2C2602%2C73492%2C54572%2C250418%2C53633%2C60173%2C24564%2C36318%2C6271%2C26439494%2C4054%2C7111%2C9369%2C10825%2C16149%2C9954%2C27688%2C1598%2C3460%2C1908%2C2%2C1153%2C2865%2C1685%2C1866%2C278%2C849%2C9072%2C245&cl=606756184&seq=2&docid=bYfp13VoGuQ&ei=H5HNZbr4FdS-0u8PypSzuAQ&event=streamingstats&plid=AAYRY_Ollo5fF4K3&referrer=https%3A%2F%2Fwww.youtube.com%2Fembed%2FbYfp13VoGuQ%3Fautohide%3D1%26rel%3D0%26autoplay%3D0%26iv_load_policy%3D3%26modestbranding%3D1%26controls%3D0%26showinfo%3D0%26disablekb%3D1%26enablejsapi%3D1%26origin%3Dhttps%253A%252F%252Fweb.desportonews.com%26widgetid%3D1&qclc=ChBNTmMtbFoxYV9yalBxdGo2EAI&embargoed=0&cbr=Firefox&cbrver=96.0&c=WEB_EMBEDDED_PLAYER&cver=1.20240212.01.00&cplayer=UNIPLAYER&cos=X11&cplatform=DESKTOP&afs=0.573:250::i&user_intent=0&vfs=1.096:247:247:244:r&view=1.096:1491:1239&vps=1.096:S,1.096:S&bwm=1.096:580310:0.917&bwe=1.096:428918&cmt=1.096:0.080&bh=1.096:4.459&df=1.096:0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Visitor-Id: CgtmeUgwMXlPT0doVSidorauBjIOCgJOTxIIEgQSAgsMIEo%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240212.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1707970846241&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1491%2C1239&vis=1&wgl=true&ca_type=image
Content-Type: application/x-www-form-urlencoded
Content-Length: 226
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
content-type: text/html; charset=UTF-8
date: Thu, 15 Feb 2024 04:20:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
x-content-type-options: nosniff
server: Video Stats Server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

c0.wp.com/c/6.4.3/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css

192.0.77.37

200 OK

11 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11256), with no line terminators
Size
11 kB (11256 bytes)
Hash
2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646

HTTP Headers

GET /c/6.4.3/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery.min.js

192.0.77.37

200 OK

88 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /c/6.4.3/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=3296260-5393411&rn=8&rbuf=15936&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

2.1 MB

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=3296260-5393411&rn=8&rbuf=15936&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type

Size
2.1 MB (2097373 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=3296260-5393411&rn=8&rbuf=15936&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:57 GMT
expires: Thu, 15 Feb 2024 04:20:57 GMT
cache-control: private, max-age=21290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1047096-1742846&rn=6&rbuf=5258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

696 kB

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1047096-1742846&rn=6&rbuf=5258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
696 kB (695860 bytes)
Hash
0b16f1679d59c94bc58cd82161d2691b
f3ebd1a80bc16496d0ce1efcd3030bfe42c11f58
003aadd111da758fa928e91231b8f9c05ca0a2f96976268044fbcec3ac6d9dfe

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=1047096-1742846&rn=6&rbuf=5258&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:48 GMT
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/annotations_module.js

142.250.74.142

200 OK

70 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/annotations_module.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (1115)
Size
70 kB (70212 bytes)
Hash
514ad110bc80335d740f841920309159
e7c4111b6dfae323d6cc62224f30a47464c55913
f9e3ee44eddf9e6b2580bdc7fa903423e32205d00e414d6c21089b64e06cfa9c

HTTP Headers

GET /s/player/5683fc5e/player_ias.vflset/en_US/annotations_module.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18878
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:46:31 GMT
expires: Fri, 14 Feb 2025 03:46:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 2056
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

c0.wp.com/c/6.4.3/wp-includes/js/mediaelement/wp-mediaelement.min.css

192.0.77.37

200 OK

4.2 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4186), with no line terminators
Size
4.2 kB (4186 bytes)
Hash
ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe

HTTP Headers

GET /c/6.4.3/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery-migrate.min.js

192.0.77.37

200 OK

14 kB

URL GET HTTP/2
c0.wp.com/c/6.4.3/wp-includes/js/jquery/jquery-migrate.min.js
IP
192.0.77.37:443
ASN
#2635 AUTOMATTIC

Requested by
https://web.desportonews.com/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /c/6.4.3/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 15 Feb 2024 04:20:42 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
content-encoding: br
expires: Fri, 14 Feb 2025 04:20:42 GMT
cache-control: max-age=31536000
alt-svc: h3=":443"; ma=86400, h3=":443"; ma=86400
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2

roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644

172.240.108.92

200 OK

0 B

URL GET HTTP/1.1
roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=644 HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=250&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=27510&dur=60.001&lmt=1473046158547379&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIgFqqko9lHETwyLQGFlh6QNX6x7TzYNl26zT9_ElirfZgCIQCDe4rf-TNVtR2hAGaAG2ZdrQlsV3DQVlT-Hul_KvMM0Q%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-27509&rn=2&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

28 kB

URL POST HTTP/1.1
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=250&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=27510&dur=60.001&lmt=1473046158547379&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIgFqqko9lHETwyLQGFlh6QNX6x7TzYNl26zT9_ElirfZgCIQCDe4rf-TNVtR2hAGaAG2ZdrQlsV3DQVlT-Hul_KvMM0Q%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-27509&rn=2&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
28 kB (27567 bytes)
Hash
fbd4657edcdfc2e9ecdc795da53e8024
2a5f6639c06532ab6ba31c04f965e2b134dfa5db
baf9fb791d88dce8cbb557125247c51d56caef094f01c8bc621efbe44ba67b2f

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=250&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=audio%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=27510&dur=60.001&lmt=1473046158547379&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Citag%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRQIgFqqko9lHETwyLQGFlh6QNX6x7TzYNl26zT9_ElirfZgCIQCDe4rf-TNVtR2hAGaAG2ZdrQlsV3DQVlT-Hul_KvMM0Q%3D%3D&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-27509&rn=2&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Last-Modified: Mon, 05 Sep 2016 03:29:18 GMT
Content-Type: application/vnd.yt-ump
Date: Thu, 15 Feb 2024 04:20:47 GMT
Expires: Thu, 15 Feb 2024 04:20:47 GMT
Cache-Control: private, max-age=21300
Transfer-Encoding: chunked
Connection: keep-alive
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
Access-Control-Allow-Origin: https://www.youtube.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://www.youtube.com
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Server: gvs 1.0

utilizeimplore.com/sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1_rotator&uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca%3A1%3A1

192.243.61.227

200 OK

13 kB

URL GET HTTP/1.1
utilizeimplore.com/sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1_rotator&uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca%3A1%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectutilizeimplore.com
FingerprintB4:44:F2:8E:19:57:28:8B:02:D6:40:52:86:19:B7:CB:10:A7:53:FE
ValidityTue, 06 Feb 2024 19:15:49 GMT - Mon, 06 May 2024 19:15:48 GMT

File type
JSON text data
Size
13 kB (13219 bytes)
Hash
ab489901f1c233de050077187e26963e
e466773bfe2bff4c0126f8e84c3175fc501978d6
8a86d880c1c49822c750ae1a4db5510583c3931eb793fd5e86354d0024c3ab99

HTTP Headers

GET /sbar.json?key=e503fb214cbd5ef20c99af783994bc76&psid=FEATURES-1677_1_rotator&uuid=a70593fe-4298-4408-9dd0-6c623a2a66ca%3A1%3A1 HTTP/1.1
Host: utilizeimplore.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.desportonews.com
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Cookie: u_pl=22263399; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:53 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://web.desportonews.com
Access-Control-Allow-Origin: https://web.desportonews.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a70593fe-4298-4408-9dd0-6c623a2a66ca:1:1; expires=Thu, 22 Feb 2024 04:20:53 GMT; secure; SameSite=None
uncs=2; expires=Fri, 16 Feb 2024 04:20:53 GMT; secure; SameSite=None
uncs29=2; expires=Fri, 16 Feb 2024 04:20:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ee658b534d292ff1600093972b8df164
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=6.1.3

67.205.59.238

200 OK

82 kB

URL GET HTTP/2
web.desportonews.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=6.1.3
IP
67.205.59.238:443
ASN
#26347 DREAMHOST-AS

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectwww.web.desportonews.com
Fingerprint5B:7B:5D:D4:64:D0:F6:EF:5D:54:0D:43:5D:E3:3F:61:1E:46:4B:2E
ValidityWed, 03 Jan 2024 23:13:58 GMT - Tue, 02 Apr 2024 23:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (2026)
Size
82 kB (81460 bytes)
Hash
0aad6ea4c36a9be1a344f4c666ad8dd2
10a11da088f2ba67524c52070c54306bdf0bb47c
f0df5bac42e20b19dafbdf42b5480133ffdf8885bf9d4fd9a8fa3043e3efd2ae

HTTP Headers

GET /wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=6.1.3 HTTP/1.1
Host: web.desportonews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 15 Feb 2024 04:20:42 GMT
server: Apache
last-modified: Thu, 14 Sep 2023 10:18:58 GMT
etag: "13e34-6054f0108e5b8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 16 Mar 2024 04:20:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
X-Firefox-Spdy: h2

www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/endscreen.js

142.250.74.142

200 OK

34 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/endscreen.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (607)
Size
34 kB (34096 bytes)
Hash
d34fa1a4e706d1903d672fbefd77c123
8557c2fccf139e973c184a9158b87d8705f9c270
ebb28d49644d82c01ee501157c4324c32f646e8e382c94334f3f878f8b99a7b2

HTTP Headers

GET /s/player/5683fc5e/player_ias.vflset/en_US/endscreen.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Feb 2024 08:33:40 GMT
expires: Thu, 13 Feb 2025 08:33:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 71227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/embed.js

142.250.74.142

200 OK

55 kB

URL GET HTTP/3
www.youtube.com/s/player/5683fc5e/player_ias.vflset/en_US/embed.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (3391)
Size
55 kB (54653 bytes)
Hash
7a57dd415af9aa4cf97e19c09103b6f6
0dd64654e81edc92346bddfcd87451ebdbfe5303
5e8c7255c99441c92156a5f1b40520c4fa563b2edf94dc7101d0e33fa7bec3ed

HTTP Headers

GET /s/player/5683fc5e/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 16779
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:01:52 GMT
expires: Fri, 14 Feb 2025 04:01:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Feb 2024 05:24:59 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1133
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube.com/s/player/b854ee52/www-widgetapi.vflset/www-widgetapi.js

142.250.74.142

200 OK

221 kB

URL GET HTTP/3
www.youtube.com/s/player/b854ee52/www-widgetapi.vflset/www-widgetapi.js
IP
142.250.74.142:443
ASN
#15169 GOOGLE

Requested by
https://web.desportonews.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintDF:05:FB:30:BA:54:42:04:71:C1:1A:75:85:24:13:73:7B:1B:44:B9
ValidityTue, 09 Jan 2024 06:25:08 GMT - Tue, 02 Apr 2024 06:25:07 GMT

File type
JavaScript source, ASCII text, with very long lines (530)
Size
221 kB (221072 bytes)
Hash
8c99722f60807bc11c3ec75a6c29adeb
9b82b130d08d08fa6649b336347e68a6956a312c
1fbdd98fefbe45e2e9e0e93a882743d369ef28a47ccfa9ed76ae1c9ac330f08e

HTTP Headers

GET /s/player/b854ee52/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 68420
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 04:14:29 GMT
expires: Fri, 14 Feb 2025 04:14:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Feb 2024 05:20:10 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 376
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-438&rn=4&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1

91.90.45.173

200 OK

494 B

URL POST HTTP/3
rr2---sn-capm-vnae.googlevideo.com/videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-438&rn=4&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1
IP
91.90.45.173:443
ASN
#50304 Blix Solutions AS

Requested by
https://www.youtube.com/embed/bYfp13VoGuQ?autohide=1&rel=0&autoplay=0&iv_load_policy=3&modestbranding=1&controls=0&showinfo=0&disablekb=1&enablejsapi=1&origin=https%3A%2F%2Fweb.desportonews.com&widgetid=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.googlevideo.com
FingerprintFC:88:26:2E:80:45:26:CA:52:A7:A6:F8:40:6D:98:2A:5D:10:C2:D7
ValidityTue, 16 Jan 2024 14:30:52 GMT - Tue, 26 Mar 2024 14:30:51 GMT

File type
data
Size
494 B (494 bytes)
Hash
20fc14e538f8e92bcc69c95f8cf2adfe
62b10e918748bbbee8a14746f52df8cf8d9c2a47
63bada81fd37b8b10b4be0fd41d3c5fd36b8e6817d76000390e6ecbfec5349f2

HTTP Headers

POST /videoplayback?expire=1707992447&ei=H5HNZbr4FdS-0u8PypSzuAQ&ip=91.90.42.154&id=o-ABdph8fwL2bqLIXCsEk_fKO-udppCCm-o9bS8dI0WR6y&itag=247&aitags=133%2C134%2C135%2C136%2C137%2C160%2C242%2C243%2C244%2C247%2C248%2C271%2C278%2C313&source=youtube&requiressl=yes&xpc=EgVo2aDSNQ%3D%3D&mh=Dq&mm=31%2C29&mn=sn-capm-vnae%2Csn-5goeenez&ms=au%2Crdu&mv=m&mvi=2&pcm2cms=yes&pl=21&initcwndbps=1523750&spc=UWF9f1yJt-4NAVUBoa7rRqZk-kU9YHU7ayXINMr42vziUOo&vprv=1&svpuc=1&mime=video%2Fwebm&ns=8mAcKk2JoTitOoJf52mfThcQ&gir=yes&clen=12431264&dur=59.960&lmt=1473046542419248&mt=1707970371&fvip=1&keepalive=yes&fexp=24007246&c=WEB_EMBEDDED_PLAYER&sefc=1&n=q8PCA3DZTV8fFg&sparams=expire%2Cei%2Cip%2Cid%2Caitags%2Csource%2Crequiressl%2Cxpc%2Cspc%2Cvprv%2Csvpuc%2Cmime%2Cns%2Cgir%2Cclen%2Cdur%2Clmt&sig=AJfQdSswRAIgB0gKvgFM-GtkRYenL3hjfc7eF9BbowVQRnLDypTNlMcCIHPEKDU036lrafxaieDWRDNpAWP4OM9Axl1-tRAq_X0C&lsparams=mh%2Cmm%2Cmn%2Cms%2Cmv%2Cmvi%2Cpcm2cms%2Cpl%2Cinitcwndbps&lsig=APTiJQcwRQIga96jlKL_zY6YYmPoQ871OsOGl7baK_wOzLiEOaslZycCIQDEJRxD_5ItMJ9J6_0JpCsoL32r45Qc2aj0e9abiLyiQA%3D%3D&alr=yes&cpn=MNc-lZ1a_rjPqtj6&cver=1.20240212.01.00&range=0-438&rn=4&rbuf=0&pot=Mnk6VvpHQTa6hTptZTVqiVVWyO-SosJJm0-NCQn_nCZ-SGd91s2U3iF2ZfrAwfL90_EqA7Bhe8kVY8GOpMsLZy3ZgQSDV_0tiVXMFytRAyJKtOX93d4T_2F0XX3qbei0aHv_fLuQZtBObT_yiNHJSj7SesKklzqEf68k&ump=1&srfvp=1 HTTP/1.1
Host: rr2---sn-capm-vnae.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.youtube.com/
Content-Length: 2
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
last-modified: Mon, 05 Sep 2016 03:35:42 GMT
content-type: application/vnd.yt-ump
date: Thu, 15 Feb 2024 04:20:48 GMT
expires: Thu, 15 Feb 2024 04:20:48 GMT
cache-control: private, max-age=21299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,quic=":443"; ma=2592000; v="46"
client-protocol: quic
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
vary: Origin
cross-origin-resource-policy: cross-origin
x-restrict-formats-hint: None
x-content-type-options: nosniff
server: gvs 1.0

roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591

172.240.108.92

200 OK

0 B

URL GET HTTP/1.1
roamparadeexpel.com/pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591
IP
172.240.108.92:443
ASN
#7979 SERVERS-COM

Requested by
https://web.desportonews.com/
Certificate
IssuerLet's Encrypt
Subjectroamparadeexpel.com
FingerprintE5:4B:27:AB:57:00:67:B1:3D:64:73:70:1E:4F:6C:AD:0A:11:61:2A
ValidityMon, 05 Feb 2024 17:58:40 GMT - Sun, 05 May 2024 17:58:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.7.5053&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=591 HTTP/1.1
Host: roamparadeexpel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://web.desportonews.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 15 Feb 2024 04:20:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (163)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by