Report - sportinnovate.xyz/

Report Overview

Visited public
2025-04-03 23:15:53
Tags
Submit Tags
URL
sportinnovate.xyz/
Finishing URL
sportinnovate.xyz/
IP / ASN
172.67.210.50
#13335 CLOUDFLARENET
Title
Sport

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
img.buzzfeed.com	15252	2002-08-07	2016-02-12	2025-04-01	4.7 kB	2.7 MB	151.101.2.114
sportinnovate.xyz	unknown	2024-11-13	2025-02-26	2025-02-26	6.4 kB	94 kB	104.21.91.44

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed
2025-04-03	medium	sportinnovate.xyz	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	sportinnovate.xyz/	ScriptElement	3.6 kB	2024-10-28	2025-07-16
Pretty URL sportinnovate.xyz/ IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-28 11:36 Last Seen2025-07-16 08:42 Times Seen2293 Hash 44646c74c0f3cc6057b374b25f9174c4 23030f0c8e03e8415d14ae3cf5140fe73afc3b82 58dd21a9e9358c46ae8658565555de40f6b9043ddfd2bb0c766c1266dc350b2b Loading...

	sportinnovate.xyz/_astro/preact.module.NIwkvMQy.js	ImportedModule	10 kB	2025-02-11	2025-07-16
Pretty URL sportinnovate.xyz/_astro/preact.module.NIwkvMQy.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-07-16 08:42 Times Seen1849 Hash 1bff1ff4eaa6a0ec7980b854644752ef f095330ae2791590bdf40df8c0dde616bb92f32e 6bf0886b208c9b4c92e8fc05b8ce440b344696bece86d3d70941e8b43c68ff5f Loading...

	sportinnovate.xyz/_astro/Favicon.CenzvOau.js	ScriptElement	284 B	2025-02-11	2025-06-23
Pretty URL sportinnovate.xyz/_astro/Favicon.CenzvOau.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-06-23 12:42 Times Seen1396 Hash 6cbb70987ce78d7066caf302a370d244 e3c0c44118ab9e8758d19566367bf636053b7d29 71b25793226e26446e9316b1de141596a33b5c9809cbe7a3ab5f8558420f1ed1 Loading...

	sportinnovate.xyz/_astro/index.CiOfAnJ0.js	ImportedModule	1.6 kB	2025-02-23	2025-06-23
Pretty URL sportinnovate.xyz/_astro/index.CiOfAnJ0.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-23 08:23 Last Seen2025-06-23 12:34 Times Seen127 Hash 5e13e46b01452b4ff3c3701a5ec0fb0e 8090bc220a2e9a98a5710ec897e8033c8cf3f90a d59b54916a169b78268b4487cd438afa3ec3191a8106a660cb1906ddf8e34209 Loading...

	sportinnovate.xyz/_astro/jsxRuntime.module.rIB0llmI.js	ImportedModule	431 B	2025-02-11	2025-07-16
Pretty URL sportinnovate.xyz/_astro/jsxRuntime.module.rIB0llmI.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-07-16 08:42 Times Seen1506 Hash e94794479beecd36a2045dcb956b255e 8a8a014ecaf73a18ecc16bf4a20d0a4b7484be27 462d69c43ef7c5e4e9f8d78254c1021eebe67589694f613c2f2cfe6d7f3bce3a Loading...

	sportinnovate.xyz/_astro/hooks.module.C9WLiBQm.js	ImportedModule	2.6 kB	2025-02-11	2025-06-23
Pretty URL sportinnovate.xyz/_astro/hooks.module.C9WLiBQm.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-06-23 12:42 Times Seen1396 Hash 26c2a13c0f56377d024c49f4499db3a1 f08491a18d64f9fac94421abda014285e09c37ab 8a5101bc927602711d5677ad1d1406ee4824c468f3e6ff085978e45cfb8619cb Loading...

	sportinnovate.xyz/_astro/Redirect.DP7tA0t2.js	ScriptElement	398 B	2025-04-03	2025-04-03
Pretty URL sportinnovate.xyz/_astro/Redirect.DP7tA0t2.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-03 23:15 Last Seen2025-04-03 23:15 Times Seen2 Hash a256279faf45553387dc051120007fd3 813f822c076a904f27f043f76e465bd87bf6f117 fd1063ad64e495ccafd6aacb91d28c01c7efd5b76457a36d490473cf134b34f9 Loading...

	sportinnovate.xyz/_astro/client.BF5YdGWT.js	ScriptElement	2.1 kB	2025-02-11	2025-06-23
Pretty URL sportinnovate.xyz/_astro/client.BF5YdGWT.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-06-23 12:42 Times Seen1398 Hash 0483ce89f3842d2b7a32e21e70170970 fe9a0e241794dfdd59feb7d0197ab2894c70f87b 2f374147566314e1fe1211f2a04af60c638cd5f972842ab7069dc04026c04d6b Loading...

	sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js	ScriptElement	929 B	2025-02-23	2025-06-23
Pretty URL sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-23 08:23 Last Seen2025-06-23 12:34 Times Seen132 Hash 931e61046756c3314dcdc0333130085c d15a59e75d50ad7a48c34a3951be4d2915464fab 17edef81fbc0cbf9100f439417df8b9048581ef2b72eab732a86f6d95e80ee92 Loading...

	sportinnovate.xyz/_astro/useCurrentUrl.DHfNBjYr.js	ImportedModule	439 B	2025-02-11	2025-06-23
Pretty URL sportinnovate.xyz/_astro/useCurrentUrl.DHfNBjYr.js IP 104.21.91.44 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-11 20:09 Last Seen2025-06-23 12:41 Times Seen599 Hash 721ac65bf71a68d2fe1d0fa7a5427725 0c73d2aefa5305f971f8b27a9a6fc2757149e561 90ada2eb3948b2cac7a273b2c3e84c9cf73de1c44853136b88fbb7f88cf4a10d Loading...

HTTP Transactions (23)

URL IP Response Size

GET img.buzzfeed.com/buzzfeed-static/static/2024-05/30/19/enhanced/3b8938b0f44a/original-1676-1717098567-2.jpg?crop=1244:829;0,0&resize=1250:830

151.101.2.114

200 OK

126 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2024-05/30/19/enhanced/3b8938b0f44a/original-1676-1717098567-2.jpg?crop=1244:829;0,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
126 kB (125568 bytes)
Hash
38b73b74b00018c8ce9a7d13be2e3b6b
e9fa46cb902acb3c5f8d3201e2d4c0ff3f42f0e9
099da35d3d7b80f5cad2cb854d67e70a4d97753f754cff37a5203532049e938d

HTTP Headers

GET /buzzfeed-static/static/2024-05/30/19/enhanced/3b8938b0f44a/original-1676-1717098567-2.jpg?crop=1244:829;0,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "Kt83ONFOu3PSuyhcRI/Rg0EkXiXe1dgNmkNCIzIisc0"
fastly-io-info: ifsz=823249 idim=1250x830 ifmt=jpeg ofsz=125568 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010247
fastly-stats: io=1
x-amz-id-2: f70MOTByUncld/+KJUA3NLzK3G/OuRK9etaXcbD/Gdtl2biMdfFJybq9gZ60M3l4rDV4bkIe/g8=
x-amz-request-id: TWA31JG4E781DRCA
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 776767
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200109-IAD, cache-iad-kcgs7200109-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 522, 0
x-timer: S1743722131.654376,VS0,VE1
vary: X-BF-Canary
content-length: 125568
X-Firefox-Spdy: h2

GET sportinnovate.xyz/_astro/client.BF5YdGWT.js

104.21.91.44

200 OK

2.1 kB

URL GET
sportinnovate.xyz/_astro/client.BF5YdGWT.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
JavaScript source, ASCII text, with very long lines (2195), with no line terminators
Size
2.1 kB (2135 bytes)
Hash
1e3bc85f682fa3f1c237232b2674e56d
27f8aec162493e88df300c6f7cf2c600dd796b12
1b7c89278786588222f380ca82b1c1dee254bdf91be20be9ff318379ec1a2839

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/client.BF5YdGWT.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mxkyeS1hikV0NZTe%2FjKZiNMzqhh3wn4sFDI%2BVQ80U9JCDm%2By2MlUGKxZvkH9v%2BjyD7B4aGjkSrO5d2ID3whoC9QB%2F%2FkpwWRTZzkyqiB02p4%2FDft2yJiD9N%2BU%2FAVdHDAX%2FUYLyA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-857"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b9bdafb523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/favicon.ico

104.21.91.44

404 Not Found

146 B

URL GET
sportinnovate.xyz/favicon.ico
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sYHuW47rL0YE7Vi2J3zeJ6YIRPOmBGfhfox2th%2F29n58KTQ5M1X9BGcrSTBegTgjbNVB661MEM8aL0naLMYqlJ1O45t5ecYpA9MX6sUOzWFXLcQDYm7pS1jnHk3W%2FI2CYa30MA%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44bb1dbcb523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/24/10/thumb/Nd1bFtRDE.jpg?crop=1245:830;3,0&resize=1250:830

151.101.2.114

200 OK

177 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/24/10/thumb/Nd1bFtRDE.jpg?crop=1245:830;3,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
177 kB (177050 bytes)
Hash
5909970be37528aa843cdcd904f5771c
a112f4a0a284fd69452ed025a2430bc47d80048b
457496f2cf06e348fbaffd2facb367180d8396a9c46e5df8c34298a1a9b51abe

HTTP Headers

GET /buzzfeed-static/static/2025-03/24/10/thumb/Nd1bFtRDE.jpg?crop=1245:830;3,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "rBUvCo54uumiAA0isu3+XEKemy87wXcoTI4Iz4pxRUA"
fastly-io-info: ifsz=664762 idim=1250x830 ifmt=jpeg ofsz=177050 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010231
fastly-stats: io=1
x-amz-id-2: kNORuoPShYWvsKx2VAUiLecN9FezsDNTBNnKDxvEqhEX4pE3jxPEBY8VJ2y0EDAFe1cWc9sc8zk0n8OeY07whHtX2kP8Fw+3
x-amz-request-id: 489XWSS56G9P9464
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 94229
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200083-IAD, cache-iad-kcgs7200083-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 4, 0
x-timer: S1743722131.684057,VS0,VE1
vary: X-BF-Canary
content-length: 177050
X-Firefox-Spdy: h2

GET sportinnovate.xyz/_astro/Redirect.DP7tA0t2.js

104.21.91.44

200 OK

398 B

URL GET
sportinnovate.xyz/_astro/Redirect.DP7tA0t2.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
ASCII text, with very long lines (415), with no line terminators
Size
398 B (398 bytes)
Hash
4478ba1d0404ffe8efeb8fa0e881c0d8
6f1f2d7736273b616d3a1f9a9319f3f3ee1d3e74
d41cfcd40ad00b4ba744339130d06d4018401cf300fbc359f24c89ed9f706dce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/Redirect.DP7tA0t2.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rrOBf4%2BaDwqiLR9ir%2BT%2BjrfEwXO0LhUr4KG5DsDl6ANA0Q%2BgDYDj3Gtc6L2SQcNAXfKKExbb1HzDJcDb72n%2BKn5UTttNMuX92fx0AeMTYq9lfmZAZRPGFK3O4I71waYzJOqs%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-18e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b9bdb0b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/templates/sport/logo.webp

104.21.91.44

404 Not Found

146 B

URL GET
sportinnovate.xyz/templates/sport/logo.webp
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/sport/logo.webp HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mPus%2FF99FX7TIx%2BSVtKbJC7Q0oBeUKqeAvI3u7kYhJOr8aodIVF0KJ%2B%2BR9YVQvYky3lZJ8kqEI68A664rp7aDWYq1aHBfMmYMTHgUZ4iHWNfDJO3IT9rm6%2BZw0Pd%2BirJ9%2BcLrg%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: max-age=1800
cf-cache-status: HIT
age: 1
content-encoding: br
cf-ray: 92ac44b9bdb2b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/_slug_.B3nF77Ry.css

104.21.91.44

200 OK

42 kB

URL GET
sportinnovate.xyz/_astro/_slug_.B3nF77Ry.css
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type

Size
42 kB (41982 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/_slug_.B3nF77Ry.css HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:30 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xQVTKETMVyMJRvzn0HRQbvpjm3cRTPMLglfLFQKqb7Pe8wWDohkAUYh0sRbe%2Fk2bu584dco1H37WqC3G1ZA12mYHSqnYnoropppAnqUS0n4pAssrxCgDjAxWN56jNsagAYPKfA%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:02 GMT
vary: Accept-Encoding
etag: W/"67ee9eb2-a3fe"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b40d79b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET img.buzzfeed.com/buzzfeed-static/static/2025-04/01/08/thumb/gkuQKhzLx.jpg?crop=1245:830;3,0&resize=1250:830

151.101.2.114

200 OK

139 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-04/01/08/thumb/gkuQKhzLx.jpg?crop=1245:830;3,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
139 kB (138573 bytes)
Hash
708ef50da3e07417bcf62add83a0bc7c
39c3c5ee2c65c3af8edf4326e941264c539f2012
9350bd68aad7d137820ca6f54080287a23d7a0c58a7c2ad62cd3536023ad419a

HTTP Headers

GET /buzzfeed-static/static/2025-04/01/08/thumb/gkuQKhzLx.jpg?crop=1245:830;3,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "63HU1yb2xKQjUBRspXF+NJxxsIWYqc3OIq+4QBv59Rg"
fastly-io-info: ifsz=563347 idim=1250x830 ifmt=jpeg ofsz=138573 odim=1250x830 ofmt=jpeg
fastly-io-served-by: img08-us-east4
fastly-stats: io=1
x-amz-id-2: IX3FpIgPaeyLrRdP8OC1k4KdMN3EbWQkS7dQZucdufSZiUEqrX5CXeVP9MII9jnHhhMmWWH65tw=
x-amz-request-id: RGPN9AVPQBXHBS2M
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 182627
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200115-IAD, cache-iad-kcgs7200115-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 126, 0
x-timer: S1743722131.647474,VS0,VE1
vary: X-BF-Canary
content-length: 138573
X-Firefox-Spdy: h2

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/25/10/subbuzz/sMLhMLSTf.png?crop=1096:731;0,37&resize=1250:830

151.101.2.114

200 OK

1.6 MB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/25/10/subbuzz/sMLhMLSTf.png?crop=1096:731;0,37&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
PNG image data, 1250 x 830, 8-bit/color RGB, non-interlaced
Size
1.6 MB (1562682 bytes)
Hash
c09a5854af92db6525fdee48158b6afc
77f7c1c332c0cc5c548d4f0ffcd202a8f985779c
e9a00ed7e6c0ff8f3aa51cc052f56457d4ca167fd7853b82bf2e9d16cc5e8623

HTTP Headers

GET /buzzfeed-static/static/2025-03/25/10/subbuzz/sMLhMLSTf.png?crop=1096:731;0,37&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
etag: "d19VgmFl76WgQ6URWmg3I3qU/GJqRJyTzHr6cqRLHmE"
fastly-io-info: ifsz=2618904 idim=1096x1072 ifmt=png ofsz=1562682 odim=1250x830 ofmt=png
fastly-io-served-by: vpop-kiad7010228
fastly-stats: io=1
x-amz-id-2: UeCVmKks/gVSD9EAchfujqfOcvE+Tj0iNrRvSOyvogkoKSeB3nABHxprwZFebtj8bgOB2e+VmULG1/QqRKUF6urI5NeODVLycmLpVuJWGzE=
x-amz-request-id: X4JTYXDYPP4XBX58
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 351206
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200140-IAD, cache-iad-kcgs7200140-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 131, 0
x-timer: S1743722131.691184,VS0,VE1
vary: X-BF-Canary
content-length: 1562682
X-Firefox-Spdy: h2

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/06/07/thumb/yGieXJzu8.jpg?crop=1245:830;3,0&resize=1250:830

151.101.2.114

200 OK

131 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/06/07/thumb/yGieXJzu8.jpg?crop=1245:830;3,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
131 kB (131079 bytes)
Hash
312e971d7db1a19ff3f58468211ca37e
d0df242b3d4e1965667489c76b492f4bb05675a1
82c60ceaec6b1183926955f55cf1eb352cd28518aa92f4b804148ee902fdefd2

HTTP Headers

GET /buzzfeed-static/static/2025-03/06/07/thumb/yGieXJzu8.jpg?crop=1245:830;3,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "MAklKjOnCko4HvSl0jYb49+x5xIC7OrCysiUyC5PsXg"
fastly-io-info: ifsz=631611 idim=1250x830 ifmt=jpeg ofsz=131079 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010226
fastly-stats: io=1
x-amz-id-2: z20pLCdUhMoLHU6Tll6abBbq36+0gBM9tfb7O54NOvhdcTGdiJiCKxpngpSpDHIMugxwUHCmfYw5BliaroSUXwKxVNGKVsLSh/MfyZ1FEPg=
x-amz-request-id: KG0YFBG0JH8H19PN
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 978267
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200160-IAD, cache-iad-kcgs7200160-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 938, 0
x-timer: S1743722131.684308,VS0,VE1
vary: X-BF-Canary
content-length: 131079
X-Firefox-Spdy: h2

GET sportinnovate.xyz/_astro/hooks.module.C9WLiBQm.js

104.21.91.44

200 OK

2.6 kB

URL GET
sportinnovate.xyz/_astro/hooks.module.C9WLiBQm.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
JavaScript source, ASCII text, with very long lines (2656), with no line terminators
Size
2.6 kB (2647 bytes)
Hash
e04ea0a30e4789b41a9ef7ff2b6ed3f8
f07a516f5311e3c82e0bbe88b8cf6ee1e526431d
ddaac1d1e04d107db227920dc337144bebca59e1f1541fd17e9f486b2739194d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/hooks.module.C9WLiBQm.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/_astro/Favicon.CenzvOau.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8BkBWczCSlnraRCv2MJiwpuwOKID36RYcktP1q9ZJTzIbN7db%2FB8D6b6fV0p2gDHM9VkF5liyhsQlfnhqkXk%2FeVcGhfQ6h6vJuBACXZsU9066LldoSFv6%2FlhrLVNv4owhPNFBg%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-a57"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44ba6db4b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/jsxRuntime.module.rIB0llmI.js

104.21.91.44

200 OK

431 B

URL GET
sportinnovate.xyz/_astro/jsxRuntime.module.rIB0llmI.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
JavaScript source, ASCII text, with very long lines (440), with no line terminators
Size
431 B (431 bytes)
Hash
31e5ca68f23b677c46a911221281656b
11f8f4d945f9832b60b5a973afa1e6be877e9362
c1b0a22b38fb09b26711dc3df677851b137d96c62a37dd5b1762da5827a694db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/jsxRuntime.module.rIB0llmI.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEf6HdA28q7UMTPIBn4Ub5WvklKdJZVneIy2gJr6G%2Be7IjQ42JaTQWz8AUNuVvIRJQLZY9W7c6MzyXZGu2zug6TcnM%2Ft73JR85HhOY%2BNNrYajxEieQW3CrQFBPqWoSVyw97Euw%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-1af"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44ba7db8b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/21/13/subbuzz/y8Fasuysg.jpg?crop=4412:2941;120,269&resize=1250:830

151.101.2.114

200 OK

97 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/21/13/subbuzz/y8Fasuysg.jpg?crop=4412:2941;120,269&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
97 kB (96847 bytes)
Hash
25d40d0bbd4d955f4300d324ee0274db
99d3ecef55578c43c409c6f7be2f56fe915a7f28
de8706dd3bf3099abc0a9ffee0798cb03ed4b45b90e75ab17e6799458527b8db

HTTP Headers

GET /buzzfeed-static/static/2025-03/21/13/subbuzz/y8Fasuysg.jpg?crop=4412:2941;120,269&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "MsFRxTjSoqIDqhy1B3pxsDCB5ALHgVG67EpQckDiNhQ"
fastly-io-info: ifsz=7776390 idim=6000x3997 ifmt=jpeg ofsz=96847 odim=1250x830 ofmt=jpeg
fastly-io-served-by: img02-us-east4
fastly-stats: io=1
x-amz-id-2: BAlXYo9ydwKoKwoIbxppJo/OIFn7mW5GhrXB7PWus3amwN9KTfHCaAUUj4rPhr2X1HYWw/cOIbM=
x-amz-request-id: KJBZ7HQRYNDXZK0D
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 501295
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200170-IAD, cache-iad-kcgs7200170-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 104, 0
x-timer: S1743722131.654648,VS0,VE1
vary: X-BF-Canary
content-length: 96847
X-Firefox-Spdy: h2

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/18/15/subbuzz/W9ilpvI6y.jpg?crop=2670:1780;0,383&resize=1250:830

151.101.2.114

200 OK

210 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/18/15/subbuzz/W9ilpvI6y.jpg?crop=2670:1780;0,383&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
210 kB (210445 bytes)
Hash
85bd2c7ae211f71ba0b02371a744ef94
a5441c3431cfe790ccc733b6540a3632f8f11748
0808009c050088c4468029b2aef2d9054bec614f5a4ed2694279282e9e07eab6

HTTP Headers

GET /buzzfeed-static/static/2025-03/18/15/subbuzz/W9ilpvI6y.jpg?crop=2670:1780;0,383&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "1Ln+IqkIMCZinTDrqGStviLLasUe9wEBlTpNNxqOEws"
fastly-io-info: ifsz=6483247 idim=2670x4004 ifmt=jpeg ofsz=210445 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010248
fastly-stats: io=1
x-amz-id-2: 6LAml1LJvW4L4H6F2IZjhwTvyYylUly/SwQ6z59HnKoZKbGCZmBN9qZ4r9VnjWBoItS4dbWaQ3Y=
x-amz-request-id: Q1ZRTM8SR4GAX3W5
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
date: Thu, 03 Apr 2025 23:15:30 GMT
age: 617968
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kcgs7200126-IAD, cache-iad-kcgs7200126-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 113, 10
x-timer: S1743722131.658173,VS0,VE0
vary: X-BF-Canary
content-length: 210445
X-Firefox-Spdy: h2

GET sportinnovate.xyz/_astro/Favicon.CenzvOau.js

104.21.91.44

200 OK

284 B

URL GET
sportinnovate.xyz/_astro/Favicon.CenzvOau.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
ASCII text, with no line terminators
Size
284 B (284 bytes)
Hash
dd90f1ad48229a8500635448d52e1420
cc99d163fecd7199177e8ef3393ed1dceb182fe4
0c36f3939db058ee3628463949d950fb413635f9d120b5ff669d74427be89df1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/Favicon.CenzvOau.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dvDF6MC5ly6xG%2FjSZEniYzEq0lQ2Ol1Yb1XsjV2L2pkQFtZK932a3w%2FhlKXulD0C5IoRIxuyiR6acYtki551hdEF9%2BQgL94AXSDjOD5TIieXr1gwadevga5xGi4rEy9QpX9LMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-11c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b9bdaeb523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/useCurrentUrl.DHfNBjYr.js

104.21.91.44

200 OK

439 B

URL GET
sportinnovate.xyz/_astro/useCurrentUrl.DHfNBjYr.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
ASCII text, with very long lines (454), with no line terminators
Size
439 B (439 bytes)
Hash
f513f3c2695295b9509962374b1a192a
532732b67e9821ef0a50d7fb6183d1fd302617b3
0e8dd1cf4c8a02b4a6c55fea570a108d9f92ad1b0e6d4696b007f42e15745c5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/useCurrentUrl.DHfNBjYr.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LDbQCXhSKaLw0lF%2BF%2BU%2F%2BqZcGfinC%2BNWXZF7dOIO5YEwczE5RWtfLcXc42jIIlVp3bugi%2FCrBWRIdoRwEcrHjfJ7fZFl8wW%2BxdcZeGa4BDxkOvi8mo0hO6thwHQeQcahUbVi8w%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-1b7"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44ba7db9b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js

104.21.91.44

200 OK

929 B

URL GET
sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
ASCII text, with very long lines (972), with no line terminators
Size
929 B (929 bytes)
Hash
81f63ec8e2815066eeb49d7ca8fc7198
0174756e6a7fac85e2a6a263e859fbe8f3303654
141f0151bce99f1c3db43db65a70d6174c06035f396432e2f103d97b1a881136

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/HomePageSport.C0HGI-ez.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=08pQ2FJcivC3vSfbeUGmO87uD%2FKywt7NWhWpOPfGInQIxl7lUZtQU6zCJAfbXP59ruDz8WZEajweap8ipGgF%2BfW1zKKSgYvpThDa%2BmW9tnPNy2rP4UjHIrM2ZzyB1EI8B2XuCw%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-3a1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b9bdb1b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/preact.module.NIwkvMQy.js

104.21.91.44

200 OK

10 kB

URL GET
sportinnovate.xyz/_astro/preact.module.NIwkvMQy.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
JavaScript source, ASCII text, with very long lines (10404)
Size
10 kB (10405 bytes)
Hash
1bff1ff4eaa6a0ec7980b854644752ef
f095330ae2791590bdf40df8c0dde616bb92f32e
6bf0886b208c9b4c92e8fc05b8ce440b344696bece86d3d70941e8b43c68ff5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/preact.module.NIwkvMQy.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/_astro/Favicon.CenzvOau.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OeH%2BvelDl6y3bS0Swbu7rlrtMQMqw22FQvv6DOAD0Tpavo1S4OxtieC1%2BJYeyR%2B3%2BmD0VN%2Bds2K7uZ62y%2BIDJihs%2BxZELc43Zkojv2S77uWm%2BNYcZokH3PdUgFnRra76C77pIg%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-28a5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44ba6db5b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/_astro/index.CiOfAnJ0.js

104.21.91.44

200 OK

1.6 kB

URL GET
sportinnovate.xyz/_astro/index.CiOfAnJ0.js
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
Unicode text, UTF-8 text, with very long lines (1710), with no line terminators
Size
1.6 kB (1616 bytes)
Hash
bb9caab559819e5f0cbbdbca378c5e48
39288c56da3aed11d943dcf037783cf245748fa1
525ddd27c59d0b472b7500e24e0a14d2feed216280c88c3bc6bb0ad89bbc7b80

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_astro/index.CiOfAnJ0.js HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/_astro/HomePageSport.C0HGI-ez.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Apr 2025 23:15:31 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yXwizU91uEe8mL3tjQZ5MBPSy19iHvXYUIG%2BuhfW8HAM6o8%2Bd8IdgVV2GfzS8NiHYr3nS508%2FU2SxtbuM6BrT7n4u9fIj0mlqyELAONWnLKt7rWlCUDxBfJATwJnyBAY%2FhqPow%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 03 Apr 2025 14:44:03 GMT
vary: Accept-Encoding
etag: W/"67ee9eb3-650"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44ba6db7b523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

GET sportinnovate.xyz/

104.21.91.44

200 OK

22 kB

URL User Request GET
sportinnovate.xyz/
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type

Size
22 kB (22462 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Apr 2025 23:15:29 GMT
content-type: text/html
last-modified: Thu, 03 Apr 2025 14:44:08 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UN4q4%2FjXOp6zB7d9aW8QFK6PE%2BLr0UwssXnaQ0EQLdpTILYv%2BZutUFGzcKCC7g2p8vrUeFJFFlhYukQvYkHbOTEcQMkVdz4kltOmFhUkj6sX%2B86gkeXo5P4DWN2HKxn%2FLvMc7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92ac44af8f415695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1659&min_rtt=581&rtt_var=2100&sent=9&recv=12&lost=0&retrans=1&sent_bytes=3320&recv_bytes=1257&delivery_rate=3888988&cwnd=255&unsent_bytes=0&cid=7073f218d5203307&ts=98&x=0"
X-Firefox-Spdy: h2

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/28/18/thumb/vfgqaD9GM.jpg?crop=1245:830;3,0&resize=1250:830

151.101.2.114

200 OK

124 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/28/18/thumb/vfgqaD9GM.jpg?crop=1245:830;3,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
124 kB (123866 bytes)
Hash
8af86ecf24211141a48f39cf8bcf9596
f84d23633aaa97c50853987d9831a9104c949606
e7541252700b25dd0c2ca1a169b3ad620dab9c17497ecd9d3fee75907624d09f

HTTP Headers

GET /buzzfeed-static/static/2025-03/28/18/thumb/vfgqaD9GM.jpg?crop=1245:830;3,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "+gNMbTi6v/xVmtm/TxKXXSAa0u3AWNPEIWVFH7/EjVA"
fastly-io-info: ifsz=450173 idim=1250x830 ifmt=jpeg ofsz=123866 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010228
fastly-stats: io=1
x-amz-id-2: VjNE1IG+pfBCsGadiV969MkFG/M6fkNIL8GRG5Ha/8bSn3+0RjACMfK7fs6rkCQHJncMBxfcXmpKwab0/0LtXJvxJ4ODbl3v
x-amz-request-id: M04FG1W7GA9WYEPM
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 531123
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kiad7000173-IAD, cache-iad-kiad7000173-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 614, 0
x-timer: S1743722131.666436,VS0,VE1
vary: X-BF-Canary
content-length: 123866
X-Firefox-Spdy: h2

GET img.buzzfeed.com/buzzfeed-static/static/2025-03/19/20/thumb/nrzFKjycLN.jpg?crop=1992:1328;4,0&resize=1250:830

151.101.2.114

200 OK

92 kB

URL GET
img.buzzfeed.com/buzzfeed-static/static/2025-03/19/20/thumb/nrzFKjycLN.jpg?crop=1992:1328;4,0&resize=1250:830
IP
151.101.2.114:443
ASN
#54113 FASTLY

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGlobalSign nv-sa
Subject*.buzzfeed.com
Fingerprint00:7D:75:13:17:09:CF:27:1D:F5:A7:5A:28:09:00:72:D1:77:29:42
ValidityMon, 23 Sep 2024 21:56:03 GMT - Sat, 25 Oct 2025 21:56:02 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1250x830, components 3
Size
92 kB (91465 bytes)
Hash
28d7c990a985643be5df11376ee5e02a
9ccb3f37e0692387f756e5559b6b5d48f89c58ac
b00cad2adce538a76b6302fb5dc72afe59bd462980f75cd0503ce75d9584be45

HTTP Headers

GET /buzzfeed-static/static/2025-03/19/20/thumb/nrzFKjycLN.jpg?crop=1992:1328;4,0&resize=1250:830 HTTP/1.1
Host: img.buzzfeed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
etag: "6Nq/xewUOHRCKYASTJvNKPHXHEqws+SoyX4d3hRAf7I"
fastly-io-info: ifsz=768987 idim=2000x1328 ifmt=jpeg ofsz=91465 odim=1250x830 ofmt=jpeg
fastly-io-served-by: vpop-kiad7010214
fastly-stats: io=1
x-amz-id-2: Bdy1nZObLnDRrm+O2ya5/pu+ROo+dbqcu/HrNAzP7IFtvDwU/4gYMPFIuP3L168lvLp1IjHwGXU=
x-amz-request-id: KA3FJA89RG0N7ZCZ
x-amz-server-side-encryption: AES256
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
server: FastlyIO
cache-control: public, max-age=86400
accept-ranges: bytes
age: 641666
date: Thu, 03 Apr 2025 23:15:30 GMT
timing-allow-origin: *
access-control-allow-origin: *
x-served-by: cache-iad-kjyo7100034-IAD, cache-iad-kjyo7100034-IAD, cache-hel1410022-HEL
x-cache: MISS, HIT, HIT
x-cache-hits: 0, 207, 0
x-timer: S1743722131.671955,VS0,VE1
vary: X-BF-Canary
content-length: 91465
X-Firefox-Spdy: h2

GET sportinnovate.xyz/templates/sport/logo.webp

104.21.91.44

404 Not Found

146 B

URL GET
sportinnovate.xyz/templates/sport/logo.webp
IP
104.21.91.44:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sportinnovate.xyz/
Certificate
IssuerGoogle Trust Services
Subjectsportinnovate.xyz
FingerprintE6:02:EE:8F:B8:28:C0:C3:BD:A0:E8:95:F6:32:DA:2E:9A:01:E1:FF
ValidityTue, 11 Mar 2025 12:16:47 GMT - Mon, 09 Jun 2025 13:15:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /templates/sport/logo.webp HTTP/1.1
Host: sportinnovate.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sportinnovate.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 03 Apr 2025 23:15:30 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kssCXEWHn81pvm8wxWhCzyRSdK%2FFQ24N5dvKwNhdnzqqqXQDgfp1JZpZJTL3kWlqyKgO6XrfSjJQpjJjok1L6jYRd4DS4STdh61e713PZertMWK48gvBVdN1zDqM4QumNAD0%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: max-age=1800
cf-cache-status: MISS
content-encoding: br
cf-ray: 92ac44b42d7bb523-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML