{"report_id":"11d4f00f-a88e-4dc3-beec-81f449aa7684","version":6,"status":"done","tags":[],"date":"2025-09-08T00:21:09Z","url":{"schema":"http","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"172.67.180.8","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"title":"Sports Schedule \u0026 Stream"},"submit":{"url":{"schema":"http","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"172.67.180.8","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-13T00:21:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"slickhoarfrost.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"castweb.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"gleecheeftoo.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"kk.baumiereosinic.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"zg.ursamonel.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"bvtpk.com","ip":{"addr":"104.21.5.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-03-16","domain_rank":37068,"first_seen":"2025-05-21T11:34:02.786268Z","last_seen":"2025-09-02T11:31:35.993012Z","alert_count":0,"request_count":2,"received_data":221697,"sent_data":816,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"adexchangeclear.com","ip":{"addr":"172.67.223.87","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2015-04-27","domain_rank":24943,"first_seen":"2025-07-16T08:40:02.47428Z","last_seen":"2025-09-03T16:51:25.407722Z","alert_count":0,"request_count":3,"received_data":4913,"sent_data":2931,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}]},{"fqdn":"a.espncdn.com","ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2008-07-30","domain_rank":24819,"first_seen":"2012-06-20T05:34:04Z","last_seen":"2025-09-02T10:33:39.006273Z","alert_count":0,"request_count":11,"received_data":471349,"sent_data":4948,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"preferencenail.com","ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":20606,"first_seen":"2025-07-08T12:55:47.271261Z","last_seen":"2025-09-02T21:58:08.747598Z","alert_count":0,"request_count":1,"received_data":85963,"sent_data":413,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"castweb.xyz","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2025-06-15","domain_rank":742719,"first_seen":"2025-06-19T05:09:31.33127Z","last_seen":"2025-09-05T14:20:48.687092Z","alert_count":3,"request_count":3,"received_data":0,"sent_data":1593,"comment":"","tags":null,"fingerprints":null},{"fqdn":"weirdopt.com","ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-07-01","domain_rank":37519,"first_seen":"2025-07-08T12:55:47.272157Z","last_seen":"2025-09-03T05:15:01.027628Z","alert_count":0,"request_count":1,"received_data":377,"sent_data":418,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"skinnycrawlinglax.com","ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2024-09-01","domain_rank":38609,"first_seen":"2025-07-09T22:28:05.771371Z","last_seen":"2025-09-04T01:09:44.182659Z","alert_count":1,"request_count":1,"received_data":520,"sent_data":499,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"s17.chatango.com","ip":{"addr":"208.93.230.195","port":8081,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"domain_registered":"2004-05-23","domain_rank":0,"first_seen":"2012-10-13T22:43:56Z","last_seen":"2025-09-06T13:44:40.222682Z","alert_count":0,"request_count":1,"received_data":129,"sent_data":559,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ust.chatango.com","ip":{"addr":"208.93.230.22","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"domain_registered":"2004-05-23","domain_rank":468722,"first_seen":"2012-12-10T16:31:50Z","last_seen":"2025-09-06T11:59:41.812187Z","alert_count":0,"request_count":1,"received_data":483,"sent_data":471,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"slickhoarfrost.com","ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2025-05-28","domain_rank":7219886,"first_seen":"2025-09-06T13:44:39.162506Z","last_seen":"2025-09-06T13:44:39.162506Z","alert_count":1,"request_count":1,"received_data":110929,"sent_data":451,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"gizokraijaw.net","ip":{"addr":"104.21.65.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2024-11-06","domain_rank":156158,"first_seen":"2024-11-27T06:54:34.804318Z","last_seen":"2025-09-02T08:28:49.297747Z","alert_count":0,"request_count":1,"received_data":165077,"sent_data":415,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"i.ibb.co","ip":{"addr":"45.43.142.2","port":443,"asn":215751,"as":"Mikhail Fedorov","country":"Israel","country_code":"IL"},"domain_registered":"2010-07-20","domain_rank":21643,"first_seen":"2018-11-25T10:13:48Z","last_seen":"2025-09-07T21:30:13.247298Z","alert_count":0,"request_count":1,"received_data":1588,"sent_data":435,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"acscdn.com","ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2020-05-05","domain_rank":18769,"first_seen":"2020-05-06T08:07:13Z","last_seen":"2025-09-06T05:27:33.957332Z","alert_count":0,"request_count":3,"received_data":333442,"sent_data":1246,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}]},{"fqdn":"usrpubtrk.com","ip":{"addr":"172.67.186.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-16","domain_rank":6824,"first_seen":"2025-06-17T13:34:00.105327Z","last_seen":"2025-09-03T03:17:34.169187Z","alert_count":0,"request_count":1,"received_data":530,"sent_data":489,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"kk.baumiereosinic.com","ip":{"addr":"23.109.170.94","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-03-11","domain_rank":4132682,"first_seen":"2025-07-18T16:16:00.333447Z","last_seen":"2025-09-06T13:44:40.471692Z","alert_count":1,"request_count":1,"received_data":1450,"sent_data":429,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"zg.ursamonel.com","ip":{"addr":"23.109.170.98","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"domain_registered":"2025-06-10","domain_rank":0,"first_seen":"2025-08-13T22:56:54.010835Z","last_seen":"2025-09-06T13:44:39.832012Z","alert_count":1,"request_count":1,"received_data":1479,"sent_data":426,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"flushpersist.com","ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"domain_registered":"2025-07-01","domain_rank":23810,"first_seen":"2025-07-08T10:43:12.76905Z","last_seen":"2025-09-02T21:55:29.156182Z","alert_count":0,"request_count":1,"received_data":496,"sent_data":766,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"epicmartial.xyz","ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-06-30","domain_rank":5326814,"first_seen":"2025-08-26T06:44:35.743457Z","last_seen":"2025-09-06T13:44:39.716371Z","alert_count":0,"request_count":2,"received_data":110893,"sent_data":1130,"comment":"","tags":null,"fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"ShareThis","description":"ShareThis provides free engagement and growth tools (e.g., share buttons, follow buttons, and reaction buttons) for site owners.","website":"https://sharethis.com","common_platform_enumeration":"","icon":"ShareThis.png","categories":["Widgets"]},{"name":"Chatango","description":"Chatango is a website used for connecting to a large selection of users.","website":"https://chatango.com","common_platform_enumeration":"","icon":"Chatango.png","categories":["Widgets"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}]},{"fqdn":"fleraprt.com","ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-01-14","domain_rank":17838,"first_seen":"2022-01-14T22:55:14Z","last_seen":"2025-09-07T03:42:13.657536Z","alert_count":0,"request_count":2,"received_data":908,"sent_data":1171,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"p2yn.com","ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-03-18","domain_rank":40878,"first_seen":"2025-04-23T09:18:49.672335Z","last_seen":"2025-09-03T03:46:55.891429Z","alert_count":0,"request_count":2,"received_data":1660,"sent_data":1188,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"tzegilo.com","ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-01-14","domain_rank":18163,"first_seen":"2022-01-14T15:27:15Z","last_seen":"2025-09-03T08:38:25.179771Z","alert_count":0,"request_count":1,"received_data":18657,"sent_data":410,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"st.chatango.com","ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"domain_registered":"2004-05-23","domain_rank":442176,"first_seen":"2012-06-04T02:57:52Z","last_seen":"2025-09-02T03:26:46.233017Z","alert_count":0,"request_count":5,"received_data":791744,"sent_data":2421,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"professionaltrafficmonitor.com","ip":{"addr":"3.78.68.13","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2025-01-23","domain_rank":16376,"first_seen":"2025-01-25T08:56:07.448138Z","last_seen":"2025-09-05T14:56:19.912818Z","alert_count":0,"request_count":1,"received_data":424,"sent_data":453,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gleecheeftoo.net","ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2025-02-10","domain_rank":531523,"first_seen":"2025-03-15T15:38:27.766488Z","last_seen":"2025-09-03T08:37:12.933701Z","alert_count":3,"request_count":3,"received_data":10612,"sent_data":2354,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"my.rtmark.net","ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-10-29","domain_rank":43911,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2025-09-04T19:47:25.0413Z","alert_count":0,"request_count":2,"received_data":1701,"sent_data":919,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"475b250d20616589d7e0eda21dbd650f","sha1":"f5d02178374fb09d38735de9b9aaa361e655823b","sha256":"14eea7db6ec3a035f7e427184d433c7c68f6bc099541c345374f4e9f78e36cda","sha512":"6c855239fdc6fc2fe8f6d1b35fcbd21cc4064f14d8de1f066a0e67ce47add6b29757aa586c04581a24b2f243cd62f3d77da6655d035426e80e917bbcd4dcdab2","ssdeep":"","tlshash":"f3c08ccb40839d75076210b5cb073228b2d394af048ad802b69cd6d8bf2463b87c6b8e","size":172,"data":"","first_seen":"2025-08-26T06:44:44.110526Z","last_seen":"2025-09-08T00:21:14.784317Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"104.21.5.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c3ba595e32792fe9b6b315b5ec44b6d5","sha1":"6ecb8e5331c869c78cf35a3e5105179716121925","sha256":"548b38de91e35e854eaf8546861d4d0465880028f5a2f9129d99f9364d76a22c","sha512":"c7a261f59def44139a23aa8cf8cdaa879877f5ce81b504eb29ae3b691dbe570f26f88af3a9fe554b384cc99c9f0b703ce2b42225510bdb86007b7ba0aa17e7c4","ssdeep":"1536:F6KpKfzIHKJYl2MGRCYwNZ2ClqIZPgAz0Sjf654+DIVV2P6O2e:IK5KJe2Gn2ncr0Sz6+3o6O2e","tlshash":"63b32aca226a241612bf80344457ed1db5aecd81048dcdb8e0e5b8762d78b16d3fbfd9","size":109669,"data":"","first_seen":"2025-09-05T13:55:27.56661Z","last_seen":"2025-09-08T02:15:45.551424Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"3243c0841916ec8412445cf28dc213e1","sha1":"e03e2b55026c2d5a48478b494038ac237a570356","sha256":"43809cbb40cf2c409373635a089746ebaf238092ec2dd2c0880e5ff57b729f99","sha512":"a0d730bbc3c90f7292f18725f4de9b9570dcd6ecfa9992120eab10a07bf7c5d40162892477221c2c1ce534912e5936b9733f9d1f26c0d5b3b2fcd6dec2b4c52a","ssdeep":"","tlshash":"e651d95cd27b48ab69253c6027249f1f8f84ccd3b742d05eaade0dcc305ea47b588931","size":2817,"data":"","first_seen":"2023-03-07T01:18:53Z","last_seen":"2026-04-03T20:52:09.478914Z","times_seen":1422,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"104.21.5.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c3ba595e32792fe9b6b315b5ec44b6d5","sha1":"6ecb8e5331c869c78cf35a3e5105179716121925","sha256":"548b38de91e35e854eaf8546861d4d0465880028f5a2f9129d99f9364d76a22c","sha512":"c7a261f59def44139a23aa8cf8cdaa879877f5ce81b504eb29ae3b691dbe570f26f88af3a9fe554b384cc99c9f0b703ce2b42225510bdb86007b7ba0aa17e7c4","ssdeep":"1536:F6KpKfzIHKJYl2MGRCYwNZ2ClqIZPgAz0Sjf654+DIVV2P6O2e:IK5KJe2Gn2ncr0Sz6+3o6O2e","tlshash":"63b32aca226a241612bf80344457ed1db5aecd81048dcdb8e0e5b8762d78b16d3fbfd9","size":109669,"data":"","first_seen":"2025-09-05T13:55:27.56661Z","last_seen":"2025-09-08T02:15:45.551424Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","size":17879,"data":"","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-03T20:52:09.458634Z","times_seen":6339,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"29cced465f1ee9da2f70ced95a88f7cb","sha1":"9449f587764488220670d8daf570f476252dd35e","sha256":"6d5202fb885e3d1d4a1282234b62408ba61f9754f3f85df263482118b72c9b1b","sha512":"a3cc61afc1e3f1724b5744da9d5627401390de93adc08bb4170495366cbec29f00e8ae375263cbe23948343a53417195ba6f749054791056b113235066673e2c","ssdeep":"1536:99lqT7pRlHciRxEukde2PPSm4n/QXucATcCMFqROiPAY48++6g3HqeWkb12v9TCO:cLB4DkjcDTp+GH","tlshash":"a893ab97c05800838a5954b8a2a7164ff7a3528bae81bc25b74dc705bf4f6bf71f118e","size":93451,"data":"","first_seen":"2025-09-07T22:46:13.950771Z","last_seen":"2025-09-08T00:21:14.785484Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"19720c164d56f7e7dfe6748e376f868e","sha1":"0387db7b6a453b71114985d199838b7a3928c76b","sha256":"56e50d855741d508ab6465d3860ef0ad117ab967993b9111caeaec90f64e912b","sha512":"92c957c0af072acc16b029e12b727004dc62c1e88297a9710cb90584299c0158b9033b8d31a44e234488940489c8695dd372cdda93ed83b1dfd062542496a252","ssdeep":"","tlshash":"b07000080000802800228200002ab2a028220008200220020888800080a0800208ac02","size":19,"data":"","first_seen":"2023-03-07T01:18:54Z","last_seen":"2026-04-03T20:52:09.471373Z","times_seen":1918,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"441a378db25abb5c4db8560de9b87189","sha1":"4801220a00826fb7fb65f2753204881f393e69dd","sha256":"25ebf35db1f4166c31ae3ed946d1c1d436c4d5bbc9e1cdb791d4c892773e7dfe","sha512":"c65e50b9e12b349a60894fc1eedf1b2ca55ced6365cace11675fb8ac52334f577ea691a03776896d99c91832b071870df22b7dce036a89854ed32b9c4d858ec5","ssdeep":"","tlshash":"64a002a9021bd761860204d993447751640c5653936decb778cf2b3c4f40520724a0c5","size":68,"data":"","first_seen":"2023-03-07T01:18:54Z","last_seen":"2026-04-03T20:52:09.48699Z","times_seen":1417,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"841583fb7e8bd2fefd61f356542b2189","sha1":"b56d0665e1d061024ae2b13e333e607b8fda82c3","sha256":"d0692817ef19a4bb4e04985a32644345711bc34591cd56b91d06f845d255f71c","sha512":"90bdc4d843a5dff3cf7364fe617137b13e9d32cb884bd1d2faf42e2da71bc1fa5fccf3eb910d08c4345789c5fb3657adda59cf5c0e9f4915a107db31f2f186ed","ssdeep":"384:l/YCCyFYgu0StrKZOmHZx9dfPIDP5q8P5qvfO+shi0SN:Ns0StrKZxxnICWVgrN","tlshash":"f692098bb2623167e262f0f4047f411a1277a549a89582ac349eede41e7dc2c3377f38","size":21140,"data":"","first_seen":"2025-06-09T00:27:14.505281Z","last_seen":"2025-09-20T16:46:31.487811Z","times_seen":184,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","size":85386,"data":"","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kk.baumiereosinic.com/rwY1BEOZaSWH/116032","fqdn":"kk.baumiereosinic.com","domain":"baumiereosinic.com","tld":"com"},"ip":{"addr":"23.109.170.94","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","size":5,"data":"","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-03T23:51:28.172598Z","times_seen":14773,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"eff3f58493fb5beb1f684a5e4b2bbb8d","sha1":"e8ec4af1ce9e77d08f346f58382dc75e75418aba","sha256":"9e7733cba7032f0c092b27ff6a2f4424673cb57d1ff89640858f4c6f91f14175","sha512":"19beb77793d1de0ad76214a34cc3fba515723d5f2293804473962424c96054f1a2c7ca710a010688100a334d98284fb2f1683acb9352a67ce59e0b4f84abf366","ssdeep":"","tlshash":"cbc012b9386466340cb914aa7036d7e87db330147e526810805dc8689ab4ee74c52c5d","size":189,"data":"","first_seen":"2025-08-13T22:57:00.901535Z","last_seen":"2025-09-27T14:09:45.629705Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33d8486d39082eba60457a6607eb0dd4","sha1":"7a9c2896c7755fe6eaabfcb23990c3985b9cb44c","sha256":"e6ad604dad2d6243fd2929f69e6c0aa128be3395f31e7ebb081ce20d30edceb9","sha512":"e4f7adeaf5052ed21519484f07ab1958b2c785b51fb7099e832a5a9f2eda0f257d0e0721f914a17d1add18e75d9c6f01281bb1f4fe23d95b50273dcfaeffaf05","ssdeep":"768:OlR2Z0x7RdbGPLDUC4+9CZafnhKSSqRyDEWSdVx83mjtIVZWJxKP0wnJhpdd52/F:iBCv7P9CQPfR+EWM62/bh6Q","tlshash":"c183f8d9766630568252e4f4907f040b627b79aaf8448abc718cecd96d74c6c123bfbc","size":86528,"data":"","first_seen":"2025-08-22T23:09:13.726643Z","last_seen":"2025-09-08T23:57:50.000874Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"91f04c82f8ed2966419daeaa933c1d8a","sha1":"cbf9e3a46414a034e1ee0c1b0106aec0682cb7e2","sha256":"8bc9682027e04d9dd88ebe645f4307a633dc4bae17ea83c98d7129ee9beebb85","sha512":"8d40a0f947a876dd80b51f9d97438fd94c7d7307b5ccaa82e35d437776d4d45529834844f321b9a422f20363de33a4da71a0f38996d8e17c5dc4acc9e71a899e","ssdeep":"6144:5EFstbyL36x6+lKRMkm/5jALRPXQZl+lGX6z3IaqgPpJ+jgYFY79xjKoGYMp25Xt:5k6x6+Y6/GLRPM1fFY79xCYv9t","tlshash":"7ea4e79db7623365d1a3e2f4406b2165723b519caa045a6cb24dcdf4fd3482c227bfb8","size":470865,"data":"","first_seen":"2025-06-09T00:27:14.546534Z","last_seen":"2025-09-20T16:46:31.540713Z","times_seen":294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:A1VdZYqhPnjpWx4/eTe8qSMbqaQd6VL2Jyt9LdJoyayCVPVD5wdBfQPfCHiUr3:AXdZYqNjpU4yPqSMbqaQGL2QfdDayCZC","tlshash":"a6a1dc9939fb50210233b1bd1bafa918b23895236208dd61b98c9364bf94437d7f1fc9","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-04T00:29:52.73279Z","times_seen":769097,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"51c06619951fa550760ad54048fa0b98","sha1":"18b18a23e8454584c8468b20608774f3678a5894","sha256":"976e8dfa76f94c12aa882439baebef91bfaf8e6b5940a03f135722a234d119c7","sha512":"834f9973270018b2a16f3979c9d37664b8394744722c13028580f718a486ce6120b33a6dc32e0db20edc4248bd63d4cf677c0ba602a344dd6fe945971bfdc3e8","ssdeep":"","tlshash":"516000033cf0033c00000000cf00000000000003000c0c0c000c3c0000000f00c0003c","size":13,"data":"","first_seen":"2023-03-07T01:29:22Z","last_seen":"2026-04-03T20:52:09.465508Z","times_seen":838,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"73497a37c3561adbd8ce84e4f017b368","sha1":"9193ae73cb3dd2833be8c942714d5544bfb628c9","sha256":"9312a1adbbf0a4c05fc296d158ec3bd39acfe50e9e98ff02688139aad6fc3351","sha512":"b265a65f30fa9ffac3fb7ffca07326823466dcd67a238a47091a497c7f2b2d13e09603cbb8e85dce136efeb8bbb9d246e4894d6f672dededc47c88a1a85d9a5b","ssdeep":"","tlshash":"c150000003000003030c0000c000000000000003000030c000c0000000000000000000","size":9,"data":"","first_seen":"2023-03-07T01:03:23Z","last_seen":"2026-04-03T20:52:09.472739Z","times_seen":5303,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zg.ursamonel.com/tuk9TvDQfwpsey/101680","fqdn":"zg.ursamonel.com","domain":"ursamonel.com","tld":"com"},"ip":{"addr":"23.109.170.98","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","size":5,"data":"","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-03T23:40:17.382879Z","times_seen":13605,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/js/gz/emb.js","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1216a3a69b3aa0ad561270fccb345b5a","sha1":"e833ed525fccb68151cbac332e7b111bff805e3b","sha256":"02161a410fda39a497e13bbbfe8c24d1413034a9d7340b4710d0b0f76b8e100f","sha512":"49b9b944adb62a14c79c4dca51572fedff9cd073a9ff3ed3d1cec1fe18071fa6c6cbebb40ba6099419d0ce871a1bd5da034c61431122090a9309c7eff76c8599","ssdeep":"1536:HZ/fvf0QYlkQd39ZQ2xcGpX0YfkHoQ0MMgB6GLwl9Vevk:9f0QYJHkHoQP6IK9Vevk","tlshash":"b56309c9734274a68262e0f6402f054b7236b469f54885bcb19cdce52c789a9237ff7c","size":69564,"data":"","first_seen":"2025-08-22T23:09:13.696058Z","last_seen":"2025-09-08T23:57:49.949336Z","times_seen":136,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/sandbox%20eval%20code","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"34c08ca3e74026ae2a1166b2b810e003a2866b015aa78402b00a003b1441fe21aaa1a8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-04-04T00:29:52.732311Z","times_seen":770638,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"0dc20996a506cb49171b87e5764395d0","sha1":"ef9d6e7c00f1dc95763c66ebead35bb9afc0a758","sha256":"c6119f02df658143a75c39687761de3a54766eb8078d6a228f5f852a6502cbf5","sha512":"3803437ef3461bea2bdec4e1efc527fd5240c89edbcc0ab8d5bad68e11f53e5a0e013f2b46b433eac86d6375b6357f28099c625d8940c93a9963f94fc41e1c26","ssdeep":"1536:6jOD4JiYbPuPABi6POoV04XDbSZKU8C9Ydpd2HOboTqGBJl+PR2Va/:jWPuPIhPb04TbSZKU8C96pd2HObch+","tlshash":"4d83e65ff220346a91a3f0f8512f124a5637a55a9981833c399cdce55eb8c1d33bbb78","size":81394,"data":"","first_seen":"2025-08-22T23:09:13.742238Z","last_seen":"2025-09-08T23:57:50.022963Z","times_seen":137,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"eval","is_inline":false,"md5":"4395967497ebdb934e3f3935fc66f45c","sha1":"81975da843b45edba946b362faf93a5194289061","sha256":"2048f4896901de7ddf1b82bee635fd2c4c1585c45be334bae0d945a43450052c","sha512":"3f60a8f4a8dbb587c98b0bc24c3590e4b816c08a132e05a4ce66835fcceef318e0dc06beec3cd524e852d5694255fd9a8d571eb4c8772c82f24ccaa22b8258e8","ssdeep":"","tlshash":"d241ec7b1664353b9d2850c7dd70eaec6ae0307aa69284aca08cedd9f00cd9029b3631","size":2090,"data":"","first_seen":"2025-06-13T22:56:03.590944Z","last_seen":"2025-09-20T16:46:31.475505Z","times_seen":180,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/aclib.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c4a61f7fd980e63c940475731d6b2c09","sha1":"3d54ab589cf77d966d76313e41cb4543f03664c2","sha256":"2c90513e96889753b8c0aba761a15821342b4f9431073871c233dbdc50e8c71c","sha512":"b795dff08a71edb05d542c74d43cf836b55737298407fdf914db518d8489067f2c72a19a6a3791e3a30099a058f16788c99f88e3b4a4d09f18712ccc105500d1","ssdeep":"3072:G068+RhI8FvQeXO0AFQM4MmMnTQwvS1kK/P/h:B6phN1DFoSXXh","tlshash":"3ce3e849bad2b0f867e261e4942f9646e1371624740e98d5f6fac5d1a879ecf0033e3c","size":146805,"data":"","first_seen":"2025-09-02T17:05:36.787597Z","last_seen":"2025-09-11T06:46:03.245891Z","times_seen":209,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a208a612bcb17e4ad6cec48c4ecb9350","sha1":"d94303f00f222dc872ca73aa72399094e693743c","sha256":"9fa8da1d2be84ab6498279f4c3ca6efefd0750f25bd06ab90b6fcf3009202a7d","sha512":"601f4ca3e7e63292b8829a42858b9c8d4976196dabbec15fc21b4ed97f111485c61fc381885a661ce03562343b1b7c2a06d05f9bdac9f1b7ffe3c9c6748e94ee","ssdeep":"","tlshash":"f690026a01a1c1151666240c891d9d7d51790447880c69c53f9d41a89b1a0955416905","size":56,"data":"","first_seen":"2025-09-07T22:46:13.960323Z","last_seen":"2025-09-27T14:09:45.632864Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gizokraijaw.net/401/9283842","fqdn":"gizokraijaw.net","domain":"gizokraijaw.net","tld":"net"},"ip":{"addr":"104.21.65.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3f2710dc29b86bfcf09a3bbe8700558f","sha1":"19e179c61eede4db40a607dc25c2efe6eb2a4f9a","sha256":"d39562287a43b76f472adb21a0befdce3ca9e46adc128fccb4f6c9e7c7a816cb","sha512":"ee19ea985812e094b198b712c35d16b656fb989ebb1559f062a0673301a8a709c4885886664af121fa5ac9ff7c19c1e0c1d3d090b4cf3f49f7669fc25d1a5167","ssdeep":"3072:BID4/1rm0a9bved9BV+obRj7dTvKy6/PK6xxyScqe//ru9llOSBs:BcI+obRj7dTv96/PK6xx6RYlcSO","tlshash":"b5f3d9c97691b4562a73b030122fad5fb92b9d20544e8d04e2a6f0e97f3845ba353dfc","size":164192,"data":"","first_seen":"2025-09-04T16:01:58.940924Z","last_seen":"2025-09-08T00:21:14.757368Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slickhoarfrost.com/18/27/bf/1827bfcf8a1c98afd937f673030b07a5.js","fqdn":"slickhoarfrost.com","domain":"slickhoarfrost.com","tld":"com"},"ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"introduction_type":"scriptElement","is_inline":false,"md5":"4311ab9cb0ecf6dd77716c50a8308b9a","sha1":"8834e626c41af12d90a3116f2a24fbdb2db8d80b","sha256":"8a515a11aa038effc9e6c2d34ca63e6d04dee7c1659849ae613fd8baba5a469b","sha512":"d5fdb767b5582322db65898aa53ea57b4f3080c1171e541cc3cf3b6a585124a15dcd24070cbf6ac1dd8519635fb87d585469673be73f06022e7fe8f167e455c2","ssdeep":"1536:x8FO2Og6h8Z1zbcz7eg3Z+FhVO1TOCo8PkiYYo170BTEtl0Jxn3I:TD8vCGVIl+RMEtlV","tlshash":"91b3b7887f80f56c115630b2232fa05af2e91e41a8ccd548f557fde92a2d377b439a78","size":110119,"data":"","first_seen":"2025-09-07T22:46:13.919207Z","last_seen":"2025-09-08T00:21:14.73772Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"ff7740eb4626a42bc3c5931080184792","sha1":"8eae299530fe6b2aa2f48d3af8e7c2566e10cd81","sha256":"6b8a3c1db7301e1456b3e8324242f1d31b27dda2e945211bec25519eef3181ca","sha512":"ec96a8f9d9153f3cad9e8e286476bd8fd913e1382433cd9f9d1be6c821bf30f92cb53f70ba79b59e027f4bc8cc71a8f9e49d320626be8edcd69cc36969bec075","ssdeep":"","tlshash":"56f09e4a352754824563d5ef27f38208acb2670b2440d5727b1c86981f404dd04975fc","size":500,"data":"","first_seen":"2023-03-07T01:18:54Z","last_seen":"2026-04-03T20:52:09.490419Z","times_seen":1386,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/suv5.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b1e8496f75078e3a1afbf0ef51374084","sha1":"1c352391d76c0a3aa8083c08451991d660d8bef8","sha256":"3b6e64453469fe2c735736e33f8e1519e7b38d46c1a4e696f8e8ea245836fd52","sha512":"67aba7acb82b6f45a1b6d056cfebb42edfde4a74f59813630295faa2d586eb8ddfec5ae24b13efeb46ebcf244bc7303e7d8fc2cc792cd27448b5277d4cc061fb","ssdeep":"1536:LOFHKIV5GuKbOPNXN6ibR+6ry6j/IYOHSD/u/NNU48WQGFW4gkzwi/OsWVhL/Tyw:LYqmzIOVg6W6jUHSDm/NWP4hzihp","tlshash":"1693c649bad2f0e86be365e4842f5646e1772a24740d98d5fab6c5c19839ecf4033e3c","size":96855,"data":"","first_seen":"2025-09-02T17:05:36.719751Z","last_seen":"2025-09-11T07:26:20.061453Z","times_seen":165,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/inpagepush.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"def312f002f83d2cfddc908e4e799e5d","sha1":"16b6eec350f764cc21d8ed6e6ee2a3c3b70f7839","sha256":"41a847c68c651879a8afb0bad367e64abb287d491f0a95d1bae9c9b6d7f5f503","sha512":"6feaf93c57c74c8a240e5ddf1082d2407844b0b65669b69b4e7f2a2af1430a4d1a7443f05f93e77b4a617038d6968c194d1bcdf2744cd52fe9f057d30fb38127","ssdeep":"1536:9cXjRdWAcYh5lfkW+Ym7mm3S0fWMxdD35gMocYbKIVFCdBxovoE8fKe7Jn4XhVko:Oj31NxthCWMx7gMocYOMCdBxovoE8fhC","tlshash":"2e83964dfad2b0f91be265e4952f9646e0772a28340d98d1eab6c1c19879d8f0077e3c","size":87193,"data":"","first_seen":"2025-09-02T19:46:14.306561Z","last_seen":"2025-09-10T18:42:54.217747Z","times_seen":69,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"2a3d64c5bb9b8ee41021bb8cd994467f","sha1":"8e76ff7690869c17c6e551abd5f8247506acc862","sha256":"9e715a8ca9c43b1b603baf59d190bccc2fd84f7a5816a51df297ede397b429a4","sha512":"c9b25c25a06873e764e58ebef0ce616317a258146e981901dc703acf918ffc780bd2e18da03b38ce88c75649f28ab166ea4eb3ab192efecd34513103c3b993fb","ssdeep":"","tlshash":"81e0ab0999e706384cf639440039ca3a34fc78a08a63d057515cc82dc939fc40c04aec","size":428,"data":"","first_seen":"2025-08-13T22:57:00.90982Z","last_seen":"2025-09-27T14:09:45.635646Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"slickhoarfrost.com/18/27/bf/1827bfcf8a1c98afd937f673030b07a5.js","fqdn":"slickhoarfrost.com","domain":"slickhoarfrost.com","tld":"com"},"ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"slickhoarfrost.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 27 Jul 2025 19:56:06 GMT","end":"Sat, 25 Oct 2025 19:56:05 GMT"},"fingerprint":{"sha1":"8A:4E:74:26:BD:1F:22:49:10:15:0D:8D:6B:56:C4:70:9F:06:40:4A","sha256":"BD:AF:9F:D9:46:23:F7:86:9D:A5:73:1A:39:19:B8:80:12:06:88:48:D1:BB:56:F3:19:BB:8F:58:0F:D1:BA:C7"}}},"request":{"raw":"GET /18/27/bf/1827bfcf8a1c98afd937f673030b07a5.js HTTP/1.1\r\nHost: slickhoarfrost.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 39492\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nHost: slickhoarfrost.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 2c3069ba4cc95134df4f1aa890ae5e6b\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":110119,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"4311ab9cb0ecf6dd77716c50a8308b9a","sha1":"8834e626c41af12d90a3116f2a24fbdb2db8d80b","sha256":"8a515a11aa038effc9e6c2d34ca63e6d04dee7c1659849ae613fd8baba5a469b","sha512":"d5fdb767b5582322db65898aa53ea57b4f3080c1171e541cc3cf3b6a585124a15dcd24070cbf6ac1dd8519635fb87d585469673be73f06022e7fe8f167e455c2","ssdeep":"1536:x8FO2Og6h8Z1zbcz7eg3Z+FhVO1TOCo8PkiYYo170BTEtl0Jxn3I:TD8vCGVIl+RMEtlV","tlshash":"91b3b7887f80f56c115630b2232fa05af2e91e41a8ccd548f557fde92a2d377b439a78","first_seen":"2025-09-07T22:46:13.919207Z","last_seen":"2025-09-08T00:21:14.73772Z","times_seen":2,"resource_available":true,"data":null}},"time_used":927,"timings":{"blocked":346,"dns":44,"connect":105,"send":0,"wait":109,"receive":108,"ssl":212},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"slickhoarfrost.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"p2yn.com/5/9353294/?oo=1\u0026js_build=iclick-v1.1565.0\u0026userId=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=1","fqdn":"p2yn.com","domain":"p2yn.com","tld":"com"},"ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:51.445Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"p2yn.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 11 Jul 2025 05:20:50 GMT","end":"Thu, 09 Oct 2025 05:20:49 GMT"},"fingerprint":{"sha1":"E8:3B:A2:4D:EB:4F:0F:D2:79:0E:9C:53:22:0E:70:BA:3A:7F:13:47","sha256":"4E:E4:3D:2E:6A:DC:A6:7C:EC:32:78:17:A8:75:CE:17:7A:E1:2D:F8:98:6F:D3:B4:05:B1:5D:2C:4D:33:75:7B"}}},"request":{"raw":"POST /5/9353294/?oo=1\u0026js_build=iclick-v1.1565.0\u0026userId=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=1 HTTP/1.1\r\nHost: p2yn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2225\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:51 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://st.chatango.com\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adexchangeclear.com/script/push.php?r=10374774\u0026ipp=1\u0026mads=1\u0026position=top\u0026pblcz=10374766\u0026srs=034e45e0fed5fd407918fe8f6473c494\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026atv=68.2\u0026cbref=","fqdn":"adexchangeclear.com","domain":"adexchangeclear.com","tld":"com"},"ip":{"addr":"172.67.223.87","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:58.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adexchangeclear.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 10 Aug 2025 17:58:51 GMT","end":"Sat, 08 Nov 2025 17:08:08 GMT"},"fingerprint":{"sha1":"EA:C4:03:00:5B:31:55:C6:59:67:78:25:B3:B7:46:0C:EC:DE:30:70","sha256":"D9:CD:23:32:1E:FF:B8:A4:2F:94:7E:6F:7B:49:CF:2A:8E:F8:87:04:44:A7:C7:E1:3C:53:1B:9F:D1:3A:94:D5"}}},"request":{"raw":"GET /script/push.php?r=10374774\u0026ipp=1\u0026mads=1\u0026position=top\u0026pblcz=10374766\u0026srs=034e45e0fed5fd407918fe8f6473c494\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026atv=68.2\u0026cbref= HTTP/1.1\r\nHost: adexchangeclear.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://epicmartial.xyz/\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\ncontent-encoding: gzip\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rfCVnmjbJelHuSetk9UuaHva05xZGCP0Tr7s%2BOyf9z%2FHXtyFbKMGmssuQus7XFshJzEqVQDSCRi3kEuFGreMdw3tg4r2PX7g4NwinzUxLP%2Fs\"}]}\r\ncf-ray: 97ba4877a973b51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]}],"data":{"size":1875,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"c08c1e75db5654039d3560ac430e1c24","sha1":"96152e5badf0f940cc7bbfab142968774696ecd0","sha256":"eca2a1b381aea87b7c4d6f0ebccd7cc7fc97b45a16e61a5be6d70831b374a44e","sha512":"66b995841bc096adcea26aa1b1575d8accf512bd1698d27094195e08c36955da70e1547c4314d32cdf2cea68bcaa6d16d9a415b2a8752ea348d24f681ab55a7b","ssdeep":"","tlshash":"1331f9781eb519a61e8f7dcc0d5fac3ccc501217aa81b4c5158ab37196adaec0b7ac71","first_seen":"2025-09-08T00:21:14.740124Z","last_seen":"2025-09-08T00:21:14.740124Z","times_seen":1,"resource_available":false,"data":null}},"time_used":185,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/hou.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/hou.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:50:00 GMT\r\netag: \"2eb95cec9874f373ea86112e9c261020\"\r\ncontent-type: image/png\r\ncontent-length: 35767\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-hou\r\ncache-control: max-age=18143\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":35767,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"2eb95cec9874f373ea86112e9c261020","sha1":"76f7380fa046cf1900c316ad47a746d77325411f","sha256":"54b0fe559761860e4953851c197d995b2f9c0c4e278164edda7b608ffd64f39b","sha512":"09f2f632678bd5365a4905089cb24028289ecddeb59db7bfb2abcf83d4f601704b24b76f74a473ceb8f639b2ae1891a14ad1c86c8293ea85ae3531def48ffa77","ssdeep":"768:gtTn3e/nzwcttnftFumEdzdZQe/e1FAZlC8ZiOeniheZF:gB3e/zwglfymaMeeOSROKf","tlshash":"1af2e17f0025dc433262dbbf2bbeb42b75e79dac8518c74a2dc8da231598419699dc13","first_seen":"2024-09-11T01:06:05Z","last_seen":"2026-01-18T10:12:58.132943Z","times_seen":8,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"preferencenail.com/sfp.js","fqdn":"preferencenail.com","domain":"preferencenail.com","tld":"com"},"ip":{"addr":"185.196.197.71","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"preferencenail.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Aug 2025 23:05:43 GMT","end":"Fri, 28 Nov 2025 23:05:42 GMT"},"fingerprint":{"sha1":"B9:51:95:1F:A8:75:17:3A:9B:B1:75:96:F4:7D:7A:CF:3D:52:C9:71","sha256":"36:D1:B1:18:05:03:10:B2:46:BC:6C:71:A5:E7:BE:07:32:66:88:16:04:1E:5F:96:0F:10:B6:4B:BF:01:D1:42"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: preferencenail.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nContent-Length: 32182\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nVary: Accept-Encoding\r\nHost: preferencenail.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 07450dff6db8a4d5983fb1347b5ec243\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":85386,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators","md5":"46a6fef91632b94d14252fe324c1585f","sha1":"387cebbd261b8fe947fe9805875300f2ceeb5cfd","sha256":"36d0c771f8bf310d740cb4d0ca144354c45df284e72361660448708d72f175d5","sha512":"a3aaa1b5ab1113a12793bd1085332eb257416aaa9c4a690525838b91453a281580a979bfb856b3c429c2d4243c3ce02bd318a4b7048124eef96912179836d0fd","ssdeep":"1536:nPncLBSUBULrSVvTfMtfj3FkdFcE5PnoRL:nPncLBSUBULGVTfGpucE5fox","tlshash":"528395807ac06488d3979b7bb73bf4eaf65a299f38c4044bd100fc48b69562af9f5534","first_seen":"2025-07-08T10:38:39.799377Z","last_seen":"2025-11-18T17:01:51.014373Z","times_seen":15230,"resource_available":true,"data":null}},"time_used":179,"timings":{"blocked":67,"dns":0,"connect":19,"send":0,"wait":25,"receive":20,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"castweb.xyz/player1.php?hd=254","fqdn":"castweb.xyz","domain":"castweb.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.692Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /player1.php?hd=254 HTTP/1.1\r\nHost: castweb.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":0,"dns":1,"connect":1,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"castweb.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"weirdopt.com/ad/advertisers.js","fqdn":"weirdopt.com","domain":"weirdopt.com","tld":"com"},"ip":{"addr":"185.196.197.72","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.720Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"weirdopt.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sun, 31 Aug 2025 00:07:02 GMT","end":"Sat, 29 Nov 2025 00:07:01 GMT"},"fingerprint":{"sha1":"AD:4F:15:9E:60:62:A7:16:BA:4B:37:64:C6:01:6B:2B:99:47:89:BE","sha256":"44:74:EA:98:35:48:9C:28:63:20:61:17:18:F6:2B:0A:57:68:36:F4:EF:B0:67:1E:C0:7C:41:30:13:2C:02:F1"}}},"request":{"raw":"GET /ad/advertisers.js HTTP/1.1\r\nHost: weirdopt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Type: application/javascript\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: ae2fbeefa5f5b7727f2ef89fe488bea1\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.21.6","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":46,"dns":1,"connect":18,"send":0,"wait":17,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:51.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tzegilo.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 15 Jul 2025 13:03:10 GMT","end":"Mon, 13 Oct 2025 14:01:42 GMT"},"fingerprint":{"sha1":"63:44:F2:D8:6F:1F:20:09:BB:64:B8:65:D7:08:7F:9F:70:FD:23:6A","sha256":"69:42:0C:97:BF:80:90:D6:F2:1C:01:38:E2:96:21:71:C0:69:91:32:F8:1D:3D:97:80:B1:A0:E2:5B:FB:44:02"}}},"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: tzegilo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:51 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 11 Jul 2024 10:23:58 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\nlink: \u003chttps://flerap.com/\u003e; rel=preconnect; crossorigin, \u003chttps://fleraprt.com/\u003e; rel=preconnect; crossorigin\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GkG5tlE5U%2Bg1xlW82%2B4oBPy8DGK4mbcB9%2B6%2BqLbXKPhtnJXjN2lG8hP89wJ2an6O0z6rSiQTJTFkySXp6cbRqFP64khQqSs8gQ%3D%3D\"}]}\r\nage: 6138\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\netag: W/\"668fb2be-45d7\"\r\ncontent-encoding: br\r\ncf-ray: 97ba484e2e27712d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":17879,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (17229)","md5":"01227f5edc20e0ff4ed643b27cb8bb68","sha1":"d71a88f7341f2b1bdaa7deb9a66888607bd52598","sha256":"75c91d86601e23ab56d872b31b42660f893fc6d6b0785e085c06c2c038e98fb2","sha512":"88046b07c07ff6de47ef7d1e0d7ca281fc48e91fc6a292cdf611457b96ac92bb0068971cfd55c0cc3e6179d7335e77a6a14b15fa502bbae7b2233546da6c0f98","ssdeep":"384:WDWdyJ+TJTwWV+6RUL2qq8L6jW4+QL1zWAWvVRIDiei:7so1V+g+d+j4pJ5","tlshash":"8d82094a72d525ee82a3a1d10cef612ffb664e86a97e1785e381b49c187404ec3d7f90","first_seen":"2024-07-11T16:28:55Z","last_seen":"2026-04-03T20:52:09.458634Z","times_seen":6339,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":74,"dns":53,"connect":1,"send":0,"wait":8,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/js/gz/emb.js","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /js/gz/emb.js HTTP/1.1\r\nHost: st.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:38 GMT\r\nContent-Type: application/x-javascript\r\nContent-Length: 23806\r\nLast-Modified: Fri, 22 Aug 2025 12:59:58 GMT\r\nConnection: keep-alive\r\nExpires: Mon, 08 Sep 2025 00:20:38 GMT\r\nCache-Control: max-age=0\r\nContent-Encoding: gzip\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":69564,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1651)","md5":"1216a3a69b3aa0ad561270fccb345b5a","sha1":"e833ed525fccb68151cbac332e7b111bff805e3b","sha256":"02161a410fda39a497e13bbbfe8c24d1413034a9d7340b4710d0b0f76b8e100f","sha512":"49b9b944adb62a14c79c4dca51572fedff9cd073a9ff3ed3d1cec1fe18071fa6c6cbebb40ba6099419d0ce871a1bd5da034c61431122090a9309c7eff76c8599","ssdeep":"1536:HZ/fvf0QYlkQd39ZQ2xcGpX0YfkHoQ0MMgB6GLwl9Vevk:9f0QYJHkHoQP6IK9Vevk","tlshash":"b56309c9734274a68262e0f6402f054b7236b469f54885bcb19cdce52c789a9237ff7c","first_seen":"2025-08-22T23:09:13.696058Z","last_seen":"2025-09-08T23:57:49.949336Z","times_seen":136,"resource_available":true,"data":null}},"time_used":1060,"timings":{"blocked":-1,"dns":56,"connect":165,"send":0,"wait":332,"receive":1,"ssl":506},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"skinnycrawlinglax.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=996\u0026rd=996\u0026fd=614\u0026bv=25.8.6603\u0026tmpl=70","fqdn":"skinnycrawlinglax.com","domain":"skinnycrawlinglax.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.508Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"skinnycrawlinglax.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 27 Aug 2025 22:00:34 GMT","end":"Tue, 25 Nov 2025 22:00:33 GMT"},"fingerprint":{"sha1":"FC:5B:24:E2:ED:A9:65:69:CA:97:74:44:F8:E9:93:1A:50:E7:73:C1","sha256":"26:1B:F8:72:30:B2:C4:49:6A:2E:E7:A5:FC:26:35:74:02:CB:56:D1:F7:7E:A5:5E:89:65:A9:B4:1F:1F:DB:8F"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=996\u0026rd=996\u0026fd=614\u0026bv=25.8.6603\u0026tmpl=70 HTTP/1.1\r\nHost: skinnycrawlinglax.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nHost: skinnycrawlinglax.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests,C-High-Entropy-Values\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":749,"timings":{"blocked":326,"dns":40,"connect":93,"send":0,"wait":96,"receive":0,"ssl":190},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"skinnycrawlinglax.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/sea.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/sea.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:57:23 GMT\r\netag: \"302cd5b7df1ae2592d9c608a51ad30ab\"\r\ncontent-type: image/png\r\ncontent-length: 32081\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-sea\r\ncache-control: max-age=14103\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":32081,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"302cd5b7df1ae2592d9c608a51ad30ab","sha1":"30cdbca34d7496d072ff82876b5aee107cdd4360","sha256":"2546b1d4fe5cf6c2d75cda53d3fb56bbc4dd43c6b00200586dab5a85df8fa492","sha512":"6c713ac55f7571974f8c6bcae65a45dc7dc3cffdf1abc511dd7deacbe4760278bd0ddaa2ec6399ad57d459df3f12376242793f308dcecefb431e15b5c170db6b","ssdeep":"768:gnz3IVlkLpcRV9kmG6/5Ate+Z+CoJTNMgL:gQG89kmK0F","tlshash":"79e2bf4fbb07903181db8f9d6b5f0c704e9f9a09869b785168b188836ca95fd1c25bcf","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.042115Z","times_seen":8,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":19,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/lar.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.572Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/lar.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:52:40 GMT\r\netag: \"4337a1133647da262fc32beba4d754fd\"\r\ncontent-type: image/png\r\ncontent-length: 39943\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-lar\r\ncache-control: max-age=12641\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":39943,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"4337a1133647da262fc32beba4d754fd","sha1":"4e0ef735e8bb90a58338228c8e9e3453c867689f","sha256":"4b497f10257130a110249a66984100d2697cf19217474067627205ef269dfd31","sha512":"063749206e189b160bddb4f6c3b0cf20c97b88013eddb3f30225521a258564351e0e046d8263ae8da38d4f44a7be93df434353b1b8305d4d440a38fcbccc25b8","ssdeep":"768:g50drBO/1pK68lv8MVmkACBZnldwxk39zGdmxDNNYJekx1hritXJbJvg:gGdrcpKXEMoanEohGPjhraJbxg","tlshash":"7103e0e742b7ba71690ee3347fe8f9752d1f0a8840c4857291c79e8f7c521a867683d2","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.026278Z","times_seen":8,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gizokraijaw.net/401/9283842","fqdn":"gizokraijaw.net","domain":"gizokraijaw.net","tld":"net"},"ip":{"addr":"104.21.65.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:50.569Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"gizokraijaw.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 19 Aug 2025 19:16:10 GMT","end":"Mon, 17 Nov 2025 20:11:08 GMT"},"fingerprint":{"sha1":"E6:7D:B3:84:29:8B:81:50:5E:19:53:E2:4B:17:00:59:2D:83:ED:54","sha256":"E7:80:92:FA:FB:C2:73:54:4D:54:2C:88:1D:16:35:32:BB:1D:CC:74:69:80:6A:E1:E2:42:1A:27:D2:A7:7D:62"}}},"request":{"raw":"GET /401/9283842 HTTP/1.1\r\nHost: gizokraijaw.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:50 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: public, max-age=600, s-maxage=1800\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LEMEBKyw13o4l41oD97%2BuSgZGxPlKy1jjl67kGoByvaexrR8tPbRvaOnG0TPJxL%2BD1ewyLwQEcN0V9NcUW%2FPMsuBPc3vfEHLk8rLTBVAMQ%3D%3D\"}]}\r\ncf-ray: 97ba48484bfe2efa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":164192,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"3f2710dc29b86bfcf09a3bbe8700558f","sha1":"19e179c61eede4db40a607dc25c2efe6eb2a4f9a","sha256":"d39562287a43b76f472adb21a0befdce3ca9e46adc128fccb4f6c9e7c7a816cb","sha512":"ee19ea985812e094b198b712c35d16b656fb989ebb1559f062a0673301a8a709c4885886664af121fa5ac9ff7c19c1e0c1d3d090b4cf3f49f7669fc25d1a5167","ssdeep":"3072:BID4/1rm0a9bved9BV+obRj7dTvKy6/PK6xxyScqe//ru9llOSBs:BcI+obRj7dTv96/PK6xx6RYlcSO","tlshash":"b5f3d9c97691b4562a73b030122fad5fb92b9d20544e8d04e2a6f0e97f3845ba353dfc","first_seen":"2025-09-04T16:01:58.940924Z","last_seen":"2025-09-08T00:21:14.757368Z","times_seen":13,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":41,"dns":23,"connect":1,"send":0,"wait":41,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/gb.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.580Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/gb.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Mon, 28 Oct 2024 18:22:19 GMT\r\netag: \"1bc86017f48f8b25b49bc73f99f5862d\"\r\ncontent-type: image/png\r\ncontent-length: 39188\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-gb\r\ncache-control: max-age=1028\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":39188,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"1bc86017f48f8b25b49bc73f99f5862d","sha1":"85feed82e1e0d605c841818fe11d608338dd4cf9","sha256":"7ea8154cdbff5db84d248f235c1f1c78a1a8b4cb8c14335b5886ec10ee20b00e","sha512":"9c5597969761f7f141670a0a88a38747d22f344b0f8352c582e11eb1f638714e9e53b55e4e0118d9f25d1c8f9b1cba3b77c13ba52ad8c6d5a2cf906abd59146b","ssdeep":"768:fQM17+GZMj4PUERNTLfsuG2Sf9ht+EGMmWOmFLCHijsH:ImhZi48ERNXi2ayEGM/1zsH","tlshash":"4b03d0b8def0e86db273981e22b2784f54127d7fcce959815b99855fc48ef289cd1880","first_seen":"2024-12-28T23:56:42.944164Z","last_seen":"2025-09-08T00:21:14.757949Z","times_seen":5,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flushpersist.com/pxf.gif?uuid=6148513f-8361-4b79-b830-8f1654fe62a5\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=1827bfcf8a1c98afd937f673030b07a5\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=0","fqdn":"flushpersist.com","domain":"flushpersist.com","tld":"com"},"ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"Dominica","country_code":"DM"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:49.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"flushpersist.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 30 Aug 2025 21:53:17 GMT","end":"Fri, 28 Nov 2025 21:53:16 GMT"},"fingerprint":{"sha1":"AA:2A:FC:C2:EE:01:8F:55:3F:19:46:84:4A:C8:A0:95:62:50:5C:A3","sha256":"3D:8C:1A:2E:1F:32:30:D4:D8:4F:D2:FB:CC:99:F1:9C:05:E5:7B:D8:9D:7D:24:86:AD:C5:1E:62:55:44:A4:CA"}}},"request":{"raw":"GET /pxf.gif?uuid=6148513f-8361-4b79-b830-8f1654fe62a5\u0026eb=bff3d6bf6d16c0bb5e58232c1a99ef63\u0026te=fe015aeda515c30449c87b1701cc307f\u0026ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A134.0)%20Gecko%2F20100101%20Firefox%2F134.0\u0026dev=e\u0026res=14.3095\u0026b_frame=0\u0026pk=1827bfcf8a1c98afd937f673030b07a5\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=0 HTTP/1.1\r\nHost: flushpersist.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Mon, 08 Sep 2025 00:20:49 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nHost: flushpersist.com\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nX-Request-ID: 4d7ed93c74e37abadc5380e17d8c7abc\r\nCache-Control: no-cache, max-age=0, private, no-cache\r\nPragma: no-cache\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.19.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/gif","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":682,"timings":{"blocked":292,"dns":1,"connect":92,"send":0,"wait":97,"receive":0,"ssl":196},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionaltrafficmonitor.com/stats","fqdn":"professionaltrafficmonitor.com","domain":"professionaltrafficmonitor.com","tld":"com"},"ip":{"addr":"3.78.68.13","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"protrafficinspector.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Tue, 01 Jul 2025 00:00:00 GMT","end":"Thu, 30 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6","sha256":"49:03:4C:2C:1B:23:D8:D6:CB:AE:F0:54:61:99:C2:20:F4:FF:87:5E:0B:72:B1:6B:D8:AB:21:49:2D:F2:EC:4A"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionaltrafficmonitor.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://epicmartial.xyz\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=6148513f-8361-4b79-b830-8f1654fe62a5:2:1; expires=Thu, 06 Sep 2035 00:20:47 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"efb4d6d01aefb7d1a8be722440b07a62","sha1":"89634c0866a22b38211f83ce1a537317ef465834","sha256":"100e0bcea851b4857bbd8bd8fd0c070e7d695c3992c83b88f17c60b2038f06ca","sha512":"cd0cee00aafbc7fd50fe6974b8d8b459753aca4ad73dacdc881fde4380204ddd90cf30b17d1c7ded8ad380d69e276e575a2f34d53cc7bdd591adf55f47a4f4af","ssdeep":"","tlshash":"2790026b4065255111704049aa5c8880414550014030469a84d49aa44356046100e4a0","first_seen":"2025-09-08T00:21:14.758406Z","last_seen":"2025-09-08T00:21:14.758406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":407,"timings":{"blocked":192,"dns":38,"connect":26,"send":0,"wait":21,"receive":1,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"castweb.xyz/player1.php?hd=254","fqdn":"castweb.xyz","domain":"castweb.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.535Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /player1.php?hd=254 HTTP/1.1\r\nHost: castweb.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":35,"connect":6,"send":0,"wait":0,"receive":0,"ssl":-1},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"castweb.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/sf.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.562Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/sf.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:56:51 GMT\r\netag: \"8ac76d689968d77d5cdcd05806642ff0\"\r\nserver: AmazonS3\r\nx-common-key: nfl-sf\r\nedge-cache-key: nfl-sf\r\ncontent-type: image/png\r\ncontent-length: 48699\r\naccept-ranges: bytes\r\ncache-control: max-age=8641\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":48699,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"8ac76d689968d77d5cdcd05806642ff0","sha1":"e93c7599c6307b78eac6a671b355db28d5733585","sha256":"82ae812f6c15718ce5abdd402863e8b4553fa9971e4baa5d45ff585c52948a45","sha512":"15ee66c1855f741440a29e760e6a39b89656f3f568d4dda4ae08637c1bb44490ea95a7c9083e9003837f40b447769f7c25243616f6e9c4ed6cafd7a4b03d1123","ssdeep":"768:g01OaMMlkzbSrWGHN+FUhNMBp/0AoinUI7UtyfwkJ0rof/1pe9QfBa3b6Rd:gTaMMaP+vOyAFsyfwkLfdMlkd","tlshash":"c523e18f6a134d1f98d964673bc5b4c70d129c059098ea67bccdddbd04a29ecace603b","first_seen":"2024-09-11T01:06:05Z","last_seen":"2026-01-18T10:12:58.102328Z","times_seen":8,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/den.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.568Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/den.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:48:19 GMT\r\netag: \"9ec482891694e2aeee496de4cbaa5ee0\"\r\ncontent-type: image/png\r\ncontent-length: 40948\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-den\r\ncache-control: max-age=5416\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":40948,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"9ec482891694e2aeee496de4cbaa5ee0","sha1":"2c9c3ed7c05e49b0ad649eee1502be33369659fc","sha256":"c98bec2be32e27b19f79f5da86ac6ef133c78d75ab78aadb28ef36696c3213e8","sha512":"fcfa099a8894f5b064c2a19216afe4ad7cb9f9b48b3a4fb7c6a043654cf76acb9628ab8ade4ed8c819baa701e55f932c00391df1b34ef2688ea3e2e443b63a0f","ssdeep":"768:gIXZ3H6N4pD5GyIo+SRB/YyTzBUookOOv9lGIbJpU8XihdOwQqbw11111111111d:g4K4TGZIbX11lGM3U8XihdpQ","tlshash":"0103e0df5e13051b08f2c8685bfe1437ec26ad9562d7e2007c22070f1e6a6ddae6d593","first_seen":"2024-09-11T01:06:05Z","last_seen":"2026-01-18T10:12:58.04583Z","times_seen":8,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.ibb.co/ZpJnD3bK/sp-1.png","fqdn":"i.ibb.co","domain":"ibb.co","tld":"co"},"ip":{"addr":"45.43.142.2","port":443,"asn":215751,"as":"Mikhail Fedorov","country":"Israel","country_code":"IL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ibb.co","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Mon, 18 Aug 2025 07:17:47 GMT","end":"Sun, 16 Nov 2025 07:17:46 GMT"},"fingerprint":{"sha1":"30:62:E2:16:F0:8D:8F:C4:30:EF:67:44:60:2F:45:29:D1:5B:AF:94","sha256":"EE:AB:93:C9:6B:44:94:94:F6:EE:CA:98:DE:CE:BF:A6:25:9F:C8:76:A5:43:59:77:38:DD:D2:23:F7:9C:B1:70"}}},"request":{"raw":"GET /ZpJnD3bK/sp-1.png HTTP/1.1\r\nHost: i.ibb.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\ncontent-type: image/png\r\ncontent-length: 1226\r\nlast-modified: Sun, 20 Apr 2025 23:36:23 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1226,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 185 x 30, 8-bit colormap, non-interlaced","md5":"0bf850a3f866c8c8087b356efa2f37e2","sha1":"3bb2e96ca2da476be196feb1c03f6ae9048ac339","sha256":"5ee9baad8c187b9340f0187d0383db8d6af6dfa14819667e4665f41f0c8e327b","sha512":"b1befa92198c58ae6462aafb9d2fedd66385b5c90aa9b47a3ddee82f3b96c43cff1fcb80a74af2999e19208760b47f3fd24a42b58ce0ea7cef752c65d4382039","ssdeep":"","tlshash":"0521779449884c268e7ba551c7b9e431a7607d01fec601334516f47da93134b9f593f7","first_seen":"2025-08-13T22:57:00.886265Z","last_seen":"2025-09-08T00:21:14.761281Z","times_seen":7,"resource_available":false,"data":null}},"time_used":491,"timings":{"blocked":226,"dns":191,"connect":21,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/ten.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/ten.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:58:11 GMT\r\netag: \"1ba77a536a9d5f40258bd5610b4b92f7\"\r\ncontent-type: image/png\r\ncontent-length: 71906\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-ten\r\ncache-control: max-age=4966\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":71906,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"1ba77a536a9d5f40258bd5610b4b92f7","sha1":"5723cbe86eefc28c2322674d1ac8d13ed8ceb476","sha256":"dd6d75da3f2225e1388172f63fac6e773b389658b319ed6b381376ec785b74f7","sha512":"cf178089d7649b96494929ce9401b5f5b955e6a38c8ff878776d8f5e1c1fe9c9b6472628a6b478bb155799745bc80d7bc4c4e3b19918176f0b49f3294ab03584","ssdeep":"1536:gd6O5bX78iGUtYeyWJrK9WJ07lBDI7V1Fu7CkM0SfgYTbpIwqhe:m6OBX7zGoIBDcn0S5BIwZ","tlshash":"236301eea1d95c8527d4091223dfe1300db9ee867183f95bf89c1da605903bb2a9e078","first_seen":"2024-09-11T01:06:05Z","last_seen":"2026-01-18T10:12:58.140619Z","times_seen":8,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/js/gz/r0822250555/RklModule.js","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:50.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /js/gz/r0822250555/RklModule.js HTTP/1.1\r\nHost: st.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/h5/gz/r0822250555/id.html\r\nCookie: session_id=2340462122632474\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:41 GMT\r\nContent-Type: application/x-javascript\r\nContent-Length: 821\r\nLast-Modified: Fri, 22 Aug 2025 12:59:58 GMT\r\nConnection: keep-alive\r\nExpires: Tue, 08 Sep 2026 00:20:41 GMT\r\nCache-Control: max-age=31536000\r\nContent-Encoding: gzip\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2090,"size_decoded":0,"mime_type":"application/x-javascript","magic":"ASCII text, with very long lines (525)","md5":"4395967497ebdb934e3f3935fc66f45c","sha1":"81975da843b45edba946b362faf93a5194289061","sha256":"2048f4896901de7ddf1b82bee635fd2c4c1585c45be334bae0d945a43450052c","sha512":"3f60a8f4a8dbb587c98b0bc24c3590e4b816c08a132e05a4ce66835fcceef318e0dc06beec3cd524e852d5694255fd9a8d571eb4c8772c82f24ccaa22b8258e8","ssdeep":"","tlshash":"d241ec7b1664353b9d2850c7dd70eaec6ae0307aa69284aca08cedd9f00cd9029b3631","first_seen":"2025-06-13T22:56:03.590944Z","last_seen":"2025-09-20T16:46:31.475505Z","times_seen":180,"resource_available":true,"data":null}},"time_used":165,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":165,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gleecheeftoo.net/500/9283842?excludes=\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026var=\u0026ymid=\u0026tgp=\u0026sw_version=v1.713.0-s\u0026dmn=gizokraijaw.net\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=0\u0026wh=0\u0026cw=0\u0026wiw=0\u0026wih=0\u0026wfc=5\u0026pl=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0822250555%2Fid.html\u0026drf=https%3A%2F%2Fepicmartial.xyz%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=1\u0026nw=1\u0026tb=false\u0026navlng=en-US\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"gleecheeftoo.net","domain":"gleecheeftoo.net","tld":"net"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:52.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"gleecheeftoo.net","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:22:37 GMT","end":"Sat, 18 Oct 2025 05:22:36 GMT"},"fingerprint":{"sha1":"65:2E:92:B8:48:B4:CA:65:C3:E8:34:F0:21:65:4B:00:AE:CF:9C:59","sha256":"52:EC:DF:1B:83:18:E4:8F:68:1C:EC:0E:02:BC:4E:67:E6:B0:14:72:39:3B:D8:23:5F:0A:81:DD:2A:AE:2E:7F"}}},"request":{"raw":"OPTIONS /500/9283842?excludes=\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026var=\u0026ymid=\u0026tgp=\u0026sw_version=v1.713.0-s\u0026dmn=gizokraijaw.net\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=0\u0026wh=0\u0026cw=0\u0026wiw=0\u0026wih=0\u0026wfc=5\u0026pl=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0822250555%2Fid.html\u0026drf=https%3A%2F%2Fepicmartial.xyz%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=1\u0026nw=1\u0026tb=false\u0026navlng=en-US\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: gleecheeftoo.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://st.chatango.com/\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:52 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://st.chatango.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":91,"dns":4,"connect":26,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"gleecheeftoo.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-08T00:20:46.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicmartial.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 13:28:50 GMT","end":"Wed, 26 Nov 2025 14:26:35 GMT"},"fingerprint":{"sha1":"7A:0D:36:35:85:E9:60:1B:34:99:BA:57:5E:3A:59:0F:AC:10:FD:E3","sha256":"34:CB:87:9A:58:80:2B:7A:CF:E9:9A:CC:FE:A3:CA:16:80:4F:47:6C:9A:6C:D0:39:DD:90:EB:0D:1E:90:00:94"}}},"request":{"raw":"GET /200/index/n1/?m=bills-ravens\u0026s=football HTTP/1.1\r\nHost: epicmartial.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:46 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0fUC%2BX%2BjmdZLByLYEbKaEm8BRAy9W6m2NkkRL9fSzSjV3CdzwbR0Fs1r8ckGAR9l36EwL%2BFNlB8IeGTFARlqtK0NeH0P%2BGcjbY2PCAbhkA%3D%3D\"}]}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 97ba482eba3776ef-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"ShareThis","description":"ShareThis provides free engagement and growth tools (e.g., share buttons, follow buttons, and reaction buttons) for site owners.","website":"https://sharethis.com","common_platform_enumeration":"","icon":"ShareThis.png","categories":["Widgets"]},{"name":"Chatango","description":"Chatango is a website used for connecting to a large selection of users.","website":"https://chatango.com","common_platform_enumeration":"","icon":"Chatango.png","categories":["Widgets"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":108393,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (523), with CRLF line terminators","md5":"c60935ee5641b3df414639f6693404d9","sha1":"60fd08e352a3169842d0fb4784edeb838e9d14ea","sha256":"093c9614993d35aa544637bd191d7b8339c5da46936a08f6fe297ea4b16bc96e","sha512":"0c407613ffe1979d2d9a7ddd6e42990603d32758a0ad8408e53270495dc4e06ad443bc5a77a287ed19c13d95b4f0005867395a32b81bf0b9487400286f6e41fb","ssdeep":"1536:EljxYs6G5jsDYEtUS6BYqzHoi4921A0cDW2a7Cxwoxo+Y43Ck1vyooI1FOP77O1F:ZaQ9FJX0mKSZ","tlshash":"34b3ec67c08c0047ca7996b4a6a7574ff793534faa814827b27cc711bf7b2b831a119e","first_seen":"2025-09-07T22:46:13.936988Z","last_seen":"2025-09-08T00:21:14.762874Z","times_seen":2,"resource_available":false,"data":null}},"time_used":180,"timings":{"blocked":36,"dns":19,"connect":1,"send":0,"wait":107,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/aclib.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"acscdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 11 Jul 2025 17:47:20 GMT","end":"Thu, 09 Oct 2025 18:47:00 GMT"},"fingerprint":{"sha1":"63:1A:7B:92:DA:D9:63:40:A3:A0:9C:C9:93:7F:79:CD:2E:FB:74:83","sha256":"04:1B:0B:F9:88:64:45:59:58:1C:79:60:92:A4:74:68:1A:B8:40:3B:07:FA:A9:FB:E9:BF:89:C1:A4:1A:23:0A"}}},"request":{"raw":"GET /script/aclib.js HTTP/1.1\r\nHost: acscdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:46 GMT\r\ncontent-type: text/javascript\r\ncontent-encoding: gzip\r\nx-guploader-uploadid: ABgVH8_N8HcMLzUXHkLshbQmnX1Zs3LDVgiEW4CFxshQ2hQgePHgUOfjrdwxbsLJbwrWEjW4kW64vr4\r\nx-goog-generation: 1756801415162298\r\nx-goog-metageneration: 2\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 146805\r\nx-goog-hash: crc32c=dUhDjg==, md5=xKYff9mA5jyUBHVzHWssCQ==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nexpires: Mon, 08 Sep 2025 01:20:46 GMT\r\ncache-control: public, max-age=3600\r\nlast-modified: Tue, 02 Sep 2025 08:23:35 GMT\r\netag: W/\"c4a61f7fd980e63c940475731d6b2c09\"\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 2590\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 97ba4831586756c6-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":146805,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65499), with no line terminators","md5":"c4a61f7fd980e63c940475731d6b2c09","sha1":"3d54ab589cf77d966d76313e41cb4543f03664c2","sha256":"2c90513e96889753b8c0aba761a15821342b4f9431073871c233dbdc50e8c71c","sha512":"b795dff08a71edb05d542c74d43cf836b55737298407fdf914db518d8489067f2c72a19a6a3791e3a30099a058f16788c99f88e3b4a4d09f18712ccc105500d1","ssdeep":"3072:G068+RhI8FvQeXO0AFQM4MmMnTQwvS1kK/P/h:B6phN1DFoSXXh","tlshash":"3ce3e849bad2b0f867e261e4942f9646e1371624740e98d5f6fac5d1a879ecf0033e3c","first_seen":"2025-09-02T17:05:36.787597Z","last_seen":"2025-09-11T06:46:03.245891Z","times_seen":209,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":45,"dns":41,"connect":1,"send":0,"wait":13,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 13:14:02 GMT","end":"Wed, 26 Nov 2025 14:13:48 GMT"},"fingerprint":{"sha1":"7A:B2:21:7F:72:E3:39:3E:95:5D:FB:ED:BB:1C:7E:88:C4:7A:B1:B3","sha256":"FB:1D:6D:AF:DA:57:8D:9A:8B:B2:CC:FF:A2:55:C8:F3:71:3D:49:77:06:FC:4D:6F:16:91:61:6F:89:1C:A3:CB"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:48 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://epicmartial.xyz\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08023ef3ef2e4409f17d0b6ed7e3f7bb; expires=Tue, 08 Sep 2026 00:20:48 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nserver: cloudflare\r\ncf-ray: 97ba483869e25a0f-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"bb513013a382599734cb8f8d978cb6a0","sha1":"208e47e24a0ab2f150c299343ac3cb11fd0af14d","sha256":"2b3cdcaac91b43b5dcf3dd8771a346402c2b6a97c7f9bb5ad956fe1ae4f7d1f7","sha512":"5366182c66eca4226bfbfdfe92a513c3dce048fb1d288aba6e67f0d4875f2d8ea9bfc4ad9f01e1f4605937029bfe3d7d4bacb075bbe4d322e0dd1e88a3cf3f79","ssdeep":"","tlshash":"cca02208082c0080c3000c08ce828e802002f0822ec2330022e0c00230af38e828e300","first_seen":"2025-09-08T00:21:14.764646Z","last_seen":"2025-09-08T00:21:14.764646Z","times_seen":1,"resource_available":false,"data":null}},"time_used":122,"timings":{"blocked":44,"dns":21,"connect":1,"send":0,"wait":32,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adexchangeclear.com/script/suurl5.php?r=10374766\u0026cbur=0.7397965038303081\u0026cbiframe=0\u0026cbWidth=1280\u0026cbHeight=1024\u0026cbtitle=Sports%20Schedule%20%26%20Stream\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026cbref=\u0026cbdescription=\u0026cbkeywords=\u0026cbcdn=acscdn.com\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026ts=1757290847761\u0026srs=034e45e0fed5fd407918fe8f6473c494\u0026atv=68.2","fqdn":"adexchangeclear.com","domain":"adexchangeclear.com","tld":"com"},"ip":{"addr":"172.67.223.87","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.785Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adexchangeclear.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 10 Aug 2025 17:58:51 GMT","end":"Sat, 08 Nov 2025 17:08:08 GMT"},"fingerprint":{"sha1":"EA:C4:03:00:5B:31:55:C6:59:67:78:25:B3:B7:46:0C:EC:DE:30:70","sha256":"D9:CD:23:32:1E:FF:B8:A4:2F:94:7E:6F:7B:49:CF:2A:8E:F8:87:04:44:A7:C7:E1:3C:53:1B:9F:D1:3A:94:D5"}}},"request":{"raw":"GET /script/suurl5.php?r=10374766\u0026cbur=0.7397965038303081\u0026cbiframe=0\u0026cbWidth=1280\u0026cbHeight=1024\u0026cbtitle=Sports%20Schedule%20%26%20Stream\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026cbref=\u0026cbdescription=\u0026cbkeywords=\u0026cbcdn=acscdn.com\u0026ufp=Win32%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits\u0026ts=1757290847761\u0026srs=034e45e0fed5fd407918fe8f6473c494\u0026atv=68.2 HTTP/1.1\r\nHost: adexchangeclear.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://epicmartial.xyz/\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:48 GMT\r\ncontent-type: application/json; charset=utf-8\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: Content-Type\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\ncontent-encoding: gzip\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QqKaSPXPDc2dd%2BtdKwTcjn8uEnQVm2S0GIC1vDkteaNVLOkEDOqC7HiV2Hyxr8Br6z5lICsKxIEe1qfnOilEqnPbCLN7vCpzIQYePJcH1A2n\"}]}\r\ncf-ray: 97ba48370f4fb51d-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1094,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"6ea4692268e7cfffb0472477a31f23e9","sha1":"babdf701e42b39107f9aed24d1e760d8191b3d46","sha256":"173066cae513ec2acfb017f7db4d8bfca4a9c4f1f67f401f51310735a80ef7b2","sha512":"17534bbb0a164ef14d6374508148f435cba1c047530222396e3fb0d4ca2983f17ca4118b4bf341b1a6434f852d7fadfd068b9730fb2c8fb0b2b4008475670ccb","ssdeep":"","tlshash":"8d11e9f31d8c4886ad5c98ce1a2aed1c0a4a4304f5d4e304c3c4d438072494cdfebbb1","first_seen":"2025-09-08T00:21:14.77174Z","last_seen":"2025-09-08T00:21:14.77174Z","times_seen":1,"resource_available":false,"data":null}},"time_used":308,"timings":{"blocked":57,"dns":34,"connect":1,"send":0,"wait":191,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/buf.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.895Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/buf.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:45:11 GMT\r\netag: \"7c1cb50a5623e449ad4904f5841ed699\"\r\nserver: AmazonS3\r\nx-common-key: nfl-buf\r\nedge-cache-key: nfl-buf\r\ncontent-type: image/png\r\ncontent-length: 38004\r\naccept-ranges: bytes\r\ncache-control: max-age=1705\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":38004,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"7c1cb50a5623e449ad4904f5841ed699","sha1":"9713aca2d37f07ea8a2324c6d097783607051e3c","sha256":"79b71e2f536ee29f9d23834e89828883af2d95bf6968cbd07a505444229cdd20","sha512":"646b892cc7cf3609f7ed974f22e3ae9d319f157fb5b55a9c4434a1c5e346aa51fa14e724c445507ea0519dd51fe41716d4f01be90602050857b0ac4a2016f8c4","ssdeep":"768:gsGuygSos/a8N1HdI36aDLGevYEZMFQqT2KGbOVtLZ7GIl:gLPh9IPD6ev6QjJOvFaIl","tlshash":"1803bfab67936903769c4b2ddfb14acbb74196001ff927e11872d4470938b7ac82fac1","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.055763Z","times_seen":14,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":107,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/suv5.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"acscdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 11 Jul 2025 17:47:20 GMT","end":"Thu, 09 Oct 2025 18:47:00 GMT"},"fingerprint":{"sha1":"63:1A:7B:92:DA:D9:63:40:A3:A0:9C:C9:93:7F:79:CD:2E:FB:74:83","sha256":"04:1B:0B:F9:88:64:45:59:58:1C:79:60:92:A4:74:68:1A:B8:40:3B:07:FA:A9:FB:E9:BF:89:C1:A4:1A:23:0A"}}},"request":{"raw":"GET /script/suv5.js HTTP/1.1\r\nHost: acscdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\ncontent-type: text/javascript\r\ncontent-encoding: gzip\r\nx-guploader-uploadid: ABgVH89scoawT8UZOAO6v2lWd_tBlHbVsmLDBdM3EqfZy9VWXk-wZ-iAvEto6uDR04m9Segc5JLeSew\r\nx-goog-generation: 1756801828786740\r\nx-goog-metageneration: 2\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 96855\r\nx-goog-hash: crc32c=pLPKiQ==, md5=sehJb3UHjjoa+/DvUTdAhA==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\nexpires: Mon, 08 Sep 2025 01:20:47 GMT\r\ncache-control: public, max-age=3600\r\nlast-modified: Tue, 02 Sep 2025 08:30:28 GMT\r\netag: W/\"b1e8496f75078e3a1afbf0ef51374084\"\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 1361\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 97ba48361d068be6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":96855,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65493), with no line terminators","md5":"b1e8496f75078e3a1afbf0ef51374084","sha1":"1c352391d76c0a3aa8083c08451991d660d8bef8","sha256":"3b6e64453469fe2c735736e33f8e1519e7b38d46c1a4e696f8e8ea245836fd52","sha512":"67aba7acb82b6f45a1b6d056cfebb42edfde4a74f59813630295faa2d586eb8ddfec5ae24b13efeb46ebcf244bc7303e7d8fc2cc792cd27448b5277d4cc061fb","ssdeep":"1536:LOFHKIV5GuKbOPNXN6ibR+6ry6j/IYOHSD/u/NNU48WQGFW4gkzwi/OsWVhL/Tyw:LYqmzIOVg6W6jUHSDm/NWP4hzihp","tlshash":"1693c649bad2f0e86be365e4842f5646e1772a24740d98d5fab6c5c19839ecf4033e3c","first_seen":"2025-09-02T17:05:36.719751Z","last_seen":"2025-09-11T07:26:20.061453Z","times_seen":165,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usrpubtrk.com/ut/hb.php?cb=0.5556647225942206\u0026v=1","fqdn":"usrpubtrk.com","domain":"usrpubtrk.com","tld":"com"},"ip":{"addr":"172.67.186.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"usrpubtrk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 14 Aug 2025 11:57:48 GMT","end":"Wed, 12 Nov 2025 12:55:14 GMT"},"fingerprint":{"sha1":"D4:3E:2D:C6:F4:04:8A:A6:38:80:A6:3F:B8:36:DF:7A:79:B8:B0:6B","sha256":"99:E2:A7:FD:97:EE:35:E5:8B:A6:DB:25:80:B5:FA:55:8E:72:BD:17:CC:CA:CB:6A:DF:CC:70:31:68:4F:F2:57"}}},"request":{"raw":"POST /ut/hb.php?cb=0.5556647225942206\u0026v=1 HTTP/1.1\r\nHost: usrpubtrk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain; charset=utf-8\r\nContent-Length: 869\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xDL9hFFyZsBFqw7dhimJDO5NVehACxJyo%2BtS7MRSQMs2y2jYf94tB16TWbOEYOVRLGhJ%2B6Zhj0QD9JJqrMedhdziZmNPKgGq1RqUyKw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 97ba48368fc2723c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":240,"timings":{"blocked":37,"dns":34,"connect":1,"send":0,"wait":150,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"acscdn.com/script/inpagepush.js","fqdn":"acscdn.com","domain":"acscdn.com","tld":"com"},"ip":{"addr":"104.18.17.201","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"acscdn.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 11 Jul 2025 17:47:20 GMT","end":"Thu, 09 Oct 2025 18:47:00 GMT"},"fingerprint":{"sha1":"63:1A:7B:92:DA:D9:63:40:A3:A0:9C:C9:93:7F:79:CD:2E:FB:74:83","sha256":"04:1B:0B:F9:88:64:45:59:58:1C:79:60:92:A4:74:68:1A:B8:40:3B:07:FA:A9:FB:E9:BF:89:C1:A4:1A:23:0A"}}},"request":{"raw":"GET /script/inpagepush.js HTTP/1.1\r\nHost: acscdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:48 GMT\r\ncontent-type: text/javascript\r\ncontent-encoding: gzip\r\nx-guploader-uploadid: ABgVH8-g1_axN3Ie3tpYNuzLQUEoocT1LK4BcZ2vLBrBvO9sfF5ojUSKdM16CTJ1uxmA4i-ApWogp18\r\nexpires: Mon, 08 Sep 2025 01:20:48 GMT\r\ncache-control: public, max-age=3600\r\nlast-modified: Tue, 02 Sep 2025 08:26:59 GMT\r\netag: W/\"def312f002f83d2cfddc908e4e799e5d\"\r\nx-goog-generation: 1756801619275332\r\nx-goog-metageneration: 2\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 87193\r\nx-goog-hash: crc32c=+674Dw==, md5=3vMS8AL4PSz93JCOTnmeXQ==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 571\r\npriority: u=3,i=?0\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 97ba4838dec98be6-OSL\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":87193,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (33238), with NEL line terminators","md5":"def312f002f83d2cfddc908e4e799e5d","sha1":"16b6eec350f764cc21d8ed6e6ee2a3c3b70f7839","sha256":"41a847c68c651879a8afb0bad367e64abb287d491f0a95d1bae9c9b6d7f5f503","sha512":"6feaf93c57c74c8a240e5ddf1082d2407844b0b65669b69b4e7f2a2af1430a4d1a7443f05f93e77b4a617038d6968c194d1bcdf2744cd52fe9f057d30fb38127","ssdeep":"1536:9cXjRdWAcYh5lfkW+Ym7mm3S0fWMxdD35gMocYbKIVFCdBxovoE8fKe7Jn4XhVko:Oj31NxthCWMx7gMocYOMCdBxovoE8fhC","tlshash":"2e83964dfad2b0f91be265e4952f9646e0772a28340d98d1eab6c1c19879d8f0077e3c","first_seen":"2025-09-02T19:46:14.306561Z","last_seen":"2025-09-10T18:42:54.217747Z","times_seen":69,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"s17.chatango.com:8081/","fqdn":"s17.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.195","port":8081,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:49.114Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: s17.chatango.com:8081\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://st.chatango.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: WQmiJuscfWktiH8lxSV/9Q==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nUpgrade: websocket\r\nConnection: Upgrade\r\nSec-WebSocket-Accept: joMv8tui+To7+psX9kdSXKhtYg4=\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":718,"timings":{"blocked":0,"dns":1,"connect":176,"send":0,"wait":172,"receive":0,"ssl":368},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gleecheeftoo.net/500/9283842?excludes=\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026var=\u0026ymid=\u0026tgp=\u0026sw_version=v1.713.0-s\u0026dmn=gizokraijaw.net\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=0\u0026wh=0\u0026cw=0\u0026wiw=0\u0026wih=0\u0026wfc=5\u0026pl=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0822250555%2Fid.html\u0026drf=https%3A%2F%2Fepicmartial.xyz%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=1\u0026nw=1\u0026tb=false\u0026navlng=en-US\u0026bto=0\u0026btz=UTC\u0026jsp=1","fqdn":"gleecheeftoo.net","domain":"gleecheeftoo.net","tld":"net"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:52.329Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"gleecheeftoo.net","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:22:37 GMT","end":"Sat, 18 Oct 2025 05:22:36 GMT"},"fingerprint":{"sha1":"65:2E:92:B8:48:B4:CA:65:C3:E8:34:F0:21:65:4B:00:AE:CF:9C:59","sha256":"52:EC:DF:1B:83:18:E4:8F:68:1C:EC:0E:02:BC:4E:67:E6:B0:14:72:39:3B:D8:23:5F:0A:81:DD:2A:AE:2E:7F"}}},"request":{"raw":"GET /500/9283842?excludes=\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026var=\u0026ymid=\u0026tgp=\u0026sw_version=v1.713.0-s\u0026dmn=gizokraijaw.net\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=0\u0026wh=0\u0026cw=0\u0026wiw=0\u0026wih=0\u0026wfc=5\u0026pl=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0822250555%2Fid.html\u0026drf=https%3A%2F%2Fepicmartial.xyz%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=0\u0026ix=1\u0026nw=1\u0026tb=false\u0026navlng=en-US\u0026bto=0\u0026btz=UTC\u0026jsp=1 HTTP/1.1\r\nHost: gleecheeftoo.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nCookie: OAID=08023ef3ef2e4409f17d0b6ed7e3f7bb\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:52 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: b5b5a280ad2e9b0b60196f9c0b402085\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://st.chatango.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=08023ef3ef2e4409f17d0b6ed7e3f7bb; expires=Tue, 08 Sep 2026 00:20:52 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5940,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON text data","md5":"a54c03cb89e81f321cfbcd51e65d3ad3","sha1":"04228bdf8c9c6c3cf873b778ea091d261842e1ec","sha256":"8bc7bdd1c95809d2b919a92950725d7c0aba7e1eeef6fd647188dd487d176e81","sha512":"2e9f1d1e09a0201ddef2ff9c7b0e206ee9bc5fe0e80d325b072f49feb0773965bb69159cc68ce40d3eddbc4549ed9dd5e8b186e2d6320997f69dff9a4d2edf44","ssdeep":"96:Jq8Z+UUQOzq6R+VSKUE8WQN3weA0rs7c/uRdhpPC7h+TReJNThdh2hJbDJA:JGrqpSKUE87weABpPmWgD+JK","tlshash":"a4c1d9ef7906d853c981df0c26762c7ae8db85190bef660c934ac57a42dd0f429fa315","first_seen":"2025-09-08T00:21:14.775476Z","last_seen":"2025-09-08T00:21:14.775476Z","times_seen":1,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"gleecheeftoo.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=90d178c2-485e-4b42-9365-1d3453132f3e","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:53.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /async_log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=90d178c2-485e-4b42-9365-1d3453132f3e HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 450\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Mon, 08 Sep 2025 00:20:53 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://st.chatango.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"castweb.xyz/player1.php?hd=254","fqdn":"castweb.xyz","domain":"castweb.xyz","tld":"xyz"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.531Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /player1.php?hd=254 HTTP/1.1\r\nHost: castweb.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"castweb.xyz","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/bal.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/bal.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:44:55 GMT\r\netag: \"d8a0216966761cc8ee06b9757c52c6cd\"\r\ncontent-type: image/png\r\ncontent-length: 55985\r\nserver: AmazonS3\r\naccept-ranges: bytes\r\nedge-cache-key: nfl-bal\r\ncache-control: max-age=18059\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":55985,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"d8a0216966761cc8ee06b9757c52c6cd","sha1":"c528a9b81b76dd8943365025ad215829222b75cf","sha256":"67796023c172c9aeab5bcdac9204823d3590097246ad1cb92971134b5f26dcc0","sha512":"af14ae88fe54a362fb782a3ce4f36eb45ccd62fdaaba18fe50148a587c695e1efab85d58f8ee55292d4e7c738e9086c26f321569352db3399a1e298f9f0fa861","ssdeep":"1536:gdgts+VMJYdPsV67mCKTr8aHFc/L1jS8ZMVIozMZ+bjurigNY:Q+s+VMadw67m1Yalc/VS6sMQP6igNY","tlshash":"e043d07ab535f401d85157631b66ba33c84a8bccc164d9461ecaf00fdb0609f4aae9f7","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.038401Z","times_seen":8,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/cfg/nc/r.json?7580310020000307484402297","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.068Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /cfg/nc/r.json?7580310020000307484402297 HTTP/1.1\r\nHost: st.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:39 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 20\r\nLast-Modified: Fri, 22 Aug 2025 12:59:58 GMT\r\nConnection: keep-alive\r\nCache-Control: max-age=0, no-cache, no-store, must-revalidate\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":20,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JSON text data","md5":"6e718e460e3c13b32780d2385c8af057","sha1":"030b7783f2a0b5460cf685f5a6de946db8b5f60c","sha256":"745e84cc9de7231ccb9b77657ae7b66927aa9781279058e3b9be1cfd635e4aa9","sha512":"d5edbaedaf9d2dc1452d7d0ac8abd8ba3275c4ac9e9bbdf9bec58ca763a4c3315ce6e8038f35fbdfdee00087799ba8aa045eaa3257772561bea04e0deccfca18","ssdeep":"","tlshash":"7c700008200008a28208820a28333088a00e808002800a8080200c000000220ab80000","first_seen":"2025-08-22T23:09:13.686438Z","last_seen":"2025-09-08T23:57:49.888593Z","times_seen":137,"resource_available":false,"data":null}},"time_used":1604,"timings":{"blocked":715,"dns":1,"connect":175,"send":0,"wait":175,"receive":0,"ssl":535},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/js/gz/r0822250555/CommonUIModule.js","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:50.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /js/gz/r0822250555/CommonUIModule.js HTTP/1.1\r\nHost: st.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/h5/gz/r0822250555/id.html\r\nCookie: session_id=2340462122632474\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:40 GMT\r\nContent-Type: application/x-javascript\r\nContent-Length: 7609\r\nLast-Modified: Fri, 22 Aug 2025 12:59:58 GMT\r\nConnection: keep-alive\r\nExpires: Tue, 08 Sep 2026 00:20:40 GMT\r\nCache-Control: max-age=31536000\r\nContent-Encoding: gzip\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":21140,"size_decoded":0,"mime_type":"application/x-javascript","magic":"JavaScript source, ASCII text, with very long lines (1121)","md5":"841583fb7e8bd2fefd61f356542b2189","sha1":"b56d0665e1d061024ae2b13e333e607b8fda82c3","sha256":"d0692817ef19a4bb4e04985a32644345711bc34591cd56b91d06f845d255f71c","sha512":"90bdc4d843a5dff3cf7364fe617137b13e9d32cb884bd1d2faf42e2da71bc1fa5fccf3eb910d08c4345789c5fb3657adda59cf5c0e9f4915a107db31f2f186ed","ssdeep":"384:l/YCCyFYgu0StrKZOmHZx9dfPIDP5q8P5qvfO+shi0SN:Ns0StrKZxxnICWVgrN","tlshash":"f692098bb2623167e262f0f4047f411a1277a549a89582ac349eede41e7dc2c3377f38","first_seen":"2025-06-09T00:27:14.505281Z","last_seen":"2025-09-20T16:46:31.487811Z","times_seen":184,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":165,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"104.18.41.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:50.634Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 13:14:02 GMT","end":"Wed, 26 Nov 2025 14:13:48 GMT"},"fingerprint":{"sha1":"7A:B2:21:7F:72:E3:39:3E:95:5D:FB:ED:BB:1C:7E:88:C4:7A:B1:B3","sha256":"FB:1D:6D:AF:DA:57:8D:9A:8B:B2:CC:FF:A2:55:C8:F3:71:3D:49:77:06:FC:4D:6F:16:91:61:6F:89:1C:A3:CB"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nCookie: ID=08023ef3ef2e4409f17d0b6ed7e3f7bb\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:50 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: https://st.chatango.com\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=08023ef3ef2e4409f17d0b6ed7e3f7bb; expires=Tue, 08 Sep 2026 00:20:50 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: 97ba484879215697-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"bb513013a382599734cb8f8d978cb6a0","sha1":"208e47e24a0ab2f150c299343ac3cb11fd0af14d","sha256":"2b3cdcaac91b43b5dcf3dd8771a346402c2b6a97c7f9bb5ad956fe1ae4f7d1f7","sha512":"5366182c66eca4226bfbfdfe92a513c3dce048fb1d288aba6e67f0d4875f2d8ea9bfc4ad9f01e1f4605937029bfe3d7d4bacb075bbe4d322e0dd1e88a3cf3f79","ssdeep":"","tlshash":"cca02208082c0080c3000c08ce828e802002f0822ec2330022e0c00230af38e828e300","first_seen":"2025-09-08T00:21:14.764646Z","last_seen":"2025-09-08T00:21:14.764646Z","times_seen":1,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"adexchangeclear.com/script/i.php?t=1\u0026c=23992848\u0026stamat=m%257C%252C%252CwjEmt3Y3oGU3BE-GH0dEdHP3xP.cf7%252CUh-f4JmGhV0W3tEM2y_C8CALOg6YNlws-uiKUqo1n9NIEenpT7HgLr2udbqK7Ead6aZWy4P2oIfcUTYGv0nI93qhUJokIrXm3Q0Ufpy2UzkTjEhP6oSVtFz-HJF0ZwwibbQ9DrzfD8T75HxXeEUYnxE7se6W33_DT3UdS2iUsSyfO_4PJ-qcwhX8SX6MznCkFF4-AzETwzX4LJRPaCSNHfw-_Pkanz78lfyXWWn0CVijjzWvwMcJg1woECdnSCqOfSr64gWeAYXsq_LSk1-wUPBPmIkmlRiEKPPgy2wlhnNwq-B74MlwaAJ7fX5xYq6ErlGPZtHY5TUaTdNdc7E7E6S_Kpkyy6ZTWZXPHLHKXBTJuwuy8jUjCpVUmHFKvj1lspSDvIMsLIrpALWK7bRtq1SRkhokq60GZB5Yy8l-C-ol_dRTjlAwTvVcNRtObvv53anFQ2wcPzbaD5LGhu8evcKVcOOUECFH1j9ttTfs3TNbnGDtigjsiAjxxYOh6jK54O9XFEKdRAe4y_RAwhWrNOpsP6h-_vTDVay54uuscrZXtt9RVob-bg1-LBFxPdQzH48bBy7YOPqA_EuO0x26Z362rDM1BJGFYXHFScSNE8e0cuapN2sQNZdhN8NV8n94kwi03u3r4_NYxIFljOURGTlPfZxYzdPvHVdBUc_nRYU%252C\u0026utsid=034e45e0fed5fd407918fe8f6473c494\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026cbref=","fqdn":"adexchangeclear.com","domain":"adexchangeclear.com","tld":"com"},"ip":{"addr":"172.67.223.87","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:58.390Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"adexchangeclear.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 10 Aug 2025 17:58:51 GMT","end":"Sat, 08 Nov 2025 17:08:08 GMT"},"fingerprint":{"sha1":"EA:C4:03:00:5B:31:55:C6:59:67:78:25:B3:B7:46:0C:EC:DE:30:70","sha256":"D9:CD:23:32:1E:FF:B8:A4:2F:94:7E:6F:7B:49:CF:2A:8E:F8:87:04:44:A7:C7:E1:3C:53:1B:9F:D1:3A:94:D5"}}},"request":{"raw":"GET /script/i.php?t=1\u0026c=23992848\u0026stamat=m%257C%252C%252CwjEmt3Y3oGU3BE-GH0dEdHP3xP.cf7%252CUh-f4JmGhV0W3tEM2y_C8CALOg6YNlws-uiKUqo1n9NIEenpT7HgLr2udbqK7Ead6aZWy4P2oIfcUTYGv0nI93qhUJokIrXm3Q0Ufpy2UzkTjEhP6oSVtFz-HJF0ZwwibbQ9DrzfD8T75HxXeEUYnxE7se6W33_DT3UdS2iUsSyfO_4PJ-qcwhX8SX6MznCkFF4-AzETwzX4LJRPaCSNHfw-_Pkanz78lfyXWWn0CVijjzWvwMcJg1woECdnSCqOfSr64gWeAYXsq_LSk1-wUPBPmIkmlRiEKPPgy2wlhnNwq-B74MlwaAJ7fX5xYq6ErlGPZtHY5TUaTdNdc7E7E6S_Kpkyy6ZTWZXPHLHKXBTJuwuy8jUjCpVUmHFKvj1lspSDvIMsLIrpALWK7bRtq1SRkhokq60GZB5Yy8l-C-ol_dRTjlAwTvVcNRtObvv53anFQ2wcPzbaD5LGhu8evcKVcOOUECFH1j9ttTfs3TNbnGDtigjsiAjxxYOh6jK54O9XFEKdRAe4y_RAwhWrNOpsP6h-_vTDVay54uuscrZXtt9RVob-bg1-LBFxPdQzH48bBy7YOPqA_EuO0x26Z362rDM1BJGFYXHFScSNE8e0cuapN2sQNZdhN8NV8n94kwi03u3r4_NYxIFljOURGTlPfZxYzdPvHVdBUc_nRYU%252C\u0026utsid=034e45e0fed5fd407918fe8f6473c494\u0026cbpage=https%3A%2F%2Fepicmartial.xyz%2F200%2Findex%2Fn1%2F%3Fm%3Dbills-ravens%26s%3Dfootball\u0026cbref= HTTP/1.1\r\nHost: adexchangeclear.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Mon, 08 Sep 2025 00:20:58 GMT\r\naccess-control-allow-origin: *\r\nvia: 1.1 google\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4OjkXhO2FqhHF4UR%2FXqtsIKUiHxq5E8idqed1C05OG3puSgXfKcazntgWJut%2BgIe2NS6MJi7g1h8s2T27vH9aXvrjUz2qq9WnrSx%2FkW4f9tDbg8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 97ba4878ef47b1b8-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":151,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kk.baumiereosinic.com/rwY1BEOZaSWH/116032","fqdn":"kk.baumiereosinic.com","domain":"baumiereosinic.com","tld":"com"},"ip":{"addr":"23.109.170.94","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"kk.baumiereosinic.com","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Mon, 21 Jul 2025 13:08:15 GMT","end":"Sun, 19 Oct 2025 13:08:14 GMT"},"fingerprint":{"sha1":"46:4E:45:73:EE:BC:E3:FB:C7:33:0A:06:13:DB:6E:DA:45:7D:59:22","sha256":"C7:DA:16:35:96:87:75:87:9F:40:07:DC:DF:E5:23:B4:49:BD:3B:6D:22:B5:28:00:99:9F:FF:1F:6B:2B:E1:B9"}}},"request":{"raw":"GET /rwY1BEOZaSWH/116032 HTTP/1.1\r\nHost: kk.baumiereosinic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://epicmartial.xyz\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWdcFnYQDeASKQHj1xSv4SAr9g3Wh3ZQKensbE32bTH6T8TwvKB7g78kZ4Sdv8MRY13Z1U3VlPXa8GoaubZtyaLqSVc00NbiTW2%2F5sJCNcNpWbmxv9wiXmRQZOfajFpTh0am%2F5qr0oSLEg%2BFKZIhXJ5YM6WD0sZEpQkSKr4T0VRqa9JcT%2FEMbhOy5dlkql%2F0Sgd6KMD8jfZNKuGV%2BQcDKPE883N8Wbidt1l6KxEc8Gy4I%2FgtOI7c0a%2FONVNB2tfoG6EX0%2F%2F73ODxYiUTQLkdCrO07mR%2B4dk3m; expires=Tue, 09-Sep-2025 00:20:47 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjA9l6BadnCbbYMXXgFZhEDwxyZGfu5%2B2zxLp5XKcVpAjYTkrrM6yKvDnl5qkBPcNuBRwfdin8PX5AHF0ewd9h0wUrWyOzi8kes%2FgYZbM%2FWfLJe7ByNuABeWjfDzT72l%2F4KmjSBo2gGh3uqQC%2B9%2BwFe7x3U; expires=Tue, 09-Sep-2025 00:20:47 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"848667c49f5d3aef59cd65ed276cd7ae","sha1":"bd12c0ca2dfaa249586f1b9b8d48b02a1b9e3763","sha256":"cc5a5851251dd8052292557ba0231c51363ff1474f60b7a4af3be144cb1327c8","sha512":"4248ad0e684224ba8503b1e73517aae6ffe4431cd16b7633d2ccbf4b96f845e318dbee175d19cd4676ca37353f53add2231ed167ad6c4aa0d9fe185f7359238c","ssdeep":"","tlshash":"f23000000000000000cc00000000000000000000c000000000000000000000003c0000","first_seen":"2025-04-24T10:17:49.831301Z","last_seen":"2026-04-03T23:51:28.172598Z","times_seen":14773,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":-1,"dns":158,"connect":17,"send":0,"wait":23,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"kk.baumiereosinic.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"104.21.5.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:50.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bvtpk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 12 Jul 2025 13:23:26 GMT","end":"Fri, 10 Oct 2025 14:20:28 GMT"},"fingerprint":{"sha1":"DF:7D:EC:90:65:7B:61:05:0F:26:73:61:2A:67:56:6C:02:BE:E6:37","sha256":"EE:7C:E3:AA:6A:07:F1:9C:E0:54:C5:14:46:57:0B:D6:3D:99:AF:49:70:A6:62:E4:7A:22:26:DC:8F:F8:74:AD"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: bvtpk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Mon, 08 Sep 2025 00:20:50 GMT\r\ncontent-type: application/javascript\r\nvary: accept-encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-trace-id: 2c6660aa81db25b3287fa95ffeea2844\r\ncache-control: public, max-age=600, s-maxage=1800\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 1006\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 08 Sep 2025 00:04:03 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=MSte0JVdd6wtSuG6uGuU8cEkxvyGNAe7NdI%2F88w5dN38SaJHAlKtpGyR6C%2BsQXDVHmDqd12BmprbLV12uVG5EvdRst0f2SI%3D\"}]}\r\ncf-ray: 97ba48480d7656ae-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":109669,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"c3ba595e32792fe9b6b315b5ec44b6d5","sha1":"6ecb8e5331c869c78cf35a3e5105179716121925","sha256":"548b38de91e35e854eaf8546861d4d0465880028f5a2f9129d99f9364d76a22c","sha512":"c7a261f59def44139a23aa8cf8cdaa879877f5ce81b504eb29ae3b691dbe570f26f88af3a9fe554b384cc99c9f0b703ce2b42225510bdb86007b7ba0aa17e7c4","ssdeep":"1536:F6KpKfzIHKJYl2MGRCYwNZ2ClqIZPgAz0Sjf654+DIVV2P6O2e:IK5KJe2Gn2ncr0Sz6+3o6O2e","tlshash":"63b32aca226a241612bf80344457ed1db5aecd81048dcdb8e0e5b8762d78b16d3fbfd9","first_seen":"2025-09-05T13:55:27.56661Z","last_seen":"2025-09-08T02:15:45.551424Z","times_seen":73,"resource_available":true,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/nyg.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.896Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/nyg.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:55:11 GMT\r\netag: \"d79fa2315eee2dc1dd0180aa7d847831\"\r\nserver: AmazonS3\r\nx-common-key: nfl-nyg\r\nedge-cache-key: nfl-nyg\r\ncontent-type: image/png\r\ncontent-length: 7574\r\naccept-ranges: bytes\r\ncache-control: max-age=10979\r\ndate: Mon, 08 Sep 2025 00:20:46 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":7574,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"d79fa2315eee2dc1dd0180aa7d847831","sha1":"d9ccd86cc0f1aa33ff15c3a6aecb313bd39303ff","sha256":"62e361850e7ba3a50dfd09cbb38429e994d1c23b0f999c74421f10e37c7067e7","sha512":"a2b2fdf14e7ffcf155de02c8b413524d08629a0b9dfd3dc90b8dd8b8b11f432ff1162963ce5320f9c6a63ddda34b6f240dd5c92a0b601accbd97d4dea8323a77","ssdeep":"192:xSmkng7ebflk1JrttZQGkKlPju7FF6yEzBmB3:YNng7ebfuvtoGNVju7yyEze3","tlshash":"26f129e66c909c2468cc4b01285a927f463daba577fdf749fe0dd857841c8a7d3bc092","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.039353Z","times_seen":13,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":105,"dns":80,"connect":1,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ust.chatango.com/groupinfo/s/p/sportsupa20/gprofile.xml","fqdn":"ust.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.22","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:48.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /groupinfo/s/p/sportsupa20/gprofile.xml HTTP/1.1\r\nHost: ust.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:49 GMT\r\nContent-Type: text/xml\r\nContent-Length: 177\r\nLast-Modified: Sat, 05 Mar 2022 14:51:27 GMT\r\nConnection: keep-alive\r\nExpires: Mon, 08 Sep 2025 00:20:49 GMT\r\nCache-Control: max-age=0\r\nAccess-Control-Allow-Origin: *\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":177,"size_decoded":0,"mime_type":"text/xml","magic":"XML 1.0 document, ASCII text, with no line terminators","md5":"0c528d2ea29c88a292806b5c357dd8cf","sha1":"565a9875f31bbaf90853baea23e299d14f3ddece","sha256":"665b7930d15616043a6469ec487182c06ebabc348527832c34f14045b07752de","sha512":"0b3e8cf1af0bb26c4c7d63d86cff7764f58074d435cd4e2a22d6479902951cea2dc25241c6e63ea6e0b90ef5fb2eb744560acad278abb84ad9170743a975cc9e","ssdeep":"","tlshash":"5cc0124c02e0b0f4ee02004603863c218fe45b6d83de4129ad449a715b9a0ab9a9a366","first_seen":"2023-12-30T23:25:31Z","last_seen":"2025-09-27T14:09:45.582506Z","times_seen":11,"resource_available":false,"data":null}},"time_used":1542,"timings":{"blocked":689,"dns":26,"connect":163,"send":0,"wait":164,"receive":0,"ssl":497},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=90d178c2-485e-4b42-9365-1d3453132f3e","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.252","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:52.268Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 11 Dec 2024 00:00:00 GMT","end":"Sun, 11 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"23:5D:23:03:7B:8D:47:5A:E9:9C:E7:E0:5C:7E:E6:4F:A2:DC:B6:D0","sha256":"9E:F7:13:45:55:C0:E9:09:A9:42:CC:D1:27:57:55:66:A1:63:5C:CB:EA:38:76:AA:6D:AB:5A:02:42:09:5D:46"}}},"request":{"raw":"POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f\u0026ruid=90d178c2-485e-4b42-9365-1d3453132f3e HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1435\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.5\r\nDate: Mon, 08 Sep 2025 00:20:52 GMT\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 12\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://st.chatango.com\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.25.5","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":12,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"adb4650bfc9d2a73d4dd69583b0ceb14","sha1":"1ce399d6e936232aaf2192cd7903a279c5015f22","sha256":"21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed","sha512":"3fbce22572bbed1aada0f7c6706f16a97e7c0ea132dfee1a7eb80f5e68da1cc63c891a5bc3ea8e87f0c97be3002212a0efbb2af9553acb45e0d447a685cd805b","ssdeep":"","tlshash":"436000000c3000000cc00c0000c00030ff300f00000f00c0000c00f003030c0c00c000","first_seen":"2023-04-05T07:30:31Z","last_seen":"2026-04-03T23:33:08.020262Z","times_seen":55971,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":130,"dns":14,"connect":26,"send":0,"wait":27,"receive":0,"ssl":88},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bvtpk.com/tag.min.js","fqdn":"bvtpk.com","domain":"bvtpk.com","tld":"com"},"ip":{"addr":"104.21.5.190","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bvtpk.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 12 Jul 2025 13:23:26 GMT","end":"Fri, 10 Oct 2025 14:20:28 GMT"},"fingerprint":{"sha1":"DF:7D:EC:90:65:7B:61:05:0F:26:73:61:2A:67:56:6C:02:BE:E6:37","sha256":"EE:7C:E3:AA:6A:07:F1:9C:E0:54:C5:14:46:57:0B:D6:3D:99:AF:49:70:A6:62:E4:7A:22:26:DC:8F:F8:74:AD"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: bvtpk.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nx-trace-id: f1b2557a3fb68831cd8e117bb6ce30c8\r\ncache-control: public, max-age=600, s-maxage=1800\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 861\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 08 Sep 2025 00:06:26 GMT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=E0Sjdi5y2lQR%2By6nddmQj5wlS4sCsxYH0Ko3ftuQhZIH4euEpCyHNEMHqp0vGDyCtvw45IxCKn0J5oDBDfbOUrBFAKRO2%2F8QsQ%3D%3D\"}]}\r\ncf-ray: 97ba4836a92632fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":109669,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"c3ba595e32792fe9b6b315b5ec44b6d5","sha1":"6ecb8e5331c869c78cf35a3e5105179716121925","sha256":"548b38de91e35e854eaf8546861d4d0465880028f5a2f9129d99f9364d76a22c","sha512":"c7a261f59def44139a23aa8cf8cdaa879877f5ce81b504eb29ae3b691dbe570f26f88af3a9fe554b384cc99c9f0b703ce2b42225510bdb86007b7ba0aa17e7c4","ssdeep":"1536:F6KpKfzIHKJYl2MGRCYwNZ2ClqIZPgAz0Sjf654+DIVV2P6O2e:IK5KJe2Gn2ncr0Sz6+3o6O2e","tlshash":"63b32aca226a241612bf80344457ed1db5aecd81048dcdb8e0e5b8762d78b16d3fbfd9","first_seen":"2025-09-05T13:55:27.56661Z","last_seen":"2025-09-08T02:15:45.551424Z","times_seen":73,"resource_available":true,"data":null}},"time_used":160,"timings":{"blocked":69,"dns":65,"connect":1,"send":0,"wait":5,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gleecheeftoo.net/401/9283842?oo=1\u0026sw_version=v1.713.0-s\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026st=true","fqdn":"gleecheeftoo.net","domain":"gleecheeftoo.net","tld":"net"},"ip":{"addr":"139.45.197.243","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://st.chatango.com/h5/gz/r0822250555/id.html","date":"2025-09-08T00:20:51.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"gleecheeftoo.net","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Sun, 20 Jul 2025 05:22:37 GMT","end":"Sat, 18 Oct 2025 05:22:36 GMT"},"fingerprint":{"sha1":"65:2E:92:B8:48:B4:CA:65:C3:E8:34:F0:21:65:4B:00:AE:CF:9C:59","sha256":"52:EC:DF:1B:83:18:E4:8F:68:1C:EC:0E:02:BC:4E:67:E6:B0:14:72:39:3B:D8:23:5F:0A:81:DD:2A:AE:2E:7F"}}},"request":{"raw":"POST /401/9283842?oo=1\u0026sw_version=v1.713.0-s\u0026oaid=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026st=true HTTP/1.1\r\nHost: gleecheeftoo.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 24\r\nOrigin: https://st.chatango.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://st.chatango.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:51 GMT\r\ncontent-type: application/json\r\nx-trace-id: a2f9a298bd52a003090df6233a00b151\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: https://st.chatango.com\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\nset-cookie: OAID=08023ef3ef2e4409f17d0b6ed7e3f7bb; expires=Tue, 08 Sep 2026 00:20:51 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2167,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"45a1fbc11ab382a9e31fb5538c9b9eae","sha1":"db2ef4f4b1ed01fc822bb5f4809c0d956859db7b","sha256":"9d1cc1679114d891797899b8a843cfb5756eeffb3740dc3f0a6f48caf220b039","sha512":"36bba7bd702ecabf7e7c86ed549ff20ec5cd201ecea9e12a80108715d80179a3a79472da766d764c32b94ca83e151f309ebb797ecb7a39ec164699f3f26de722","ssdeep":"","tlshash":"ae4115088d28017a82ee5ab5dc0b6d471bbd562f7a4c752eb7494d1770ebce503eb20b","first_seen":"2025-09-08T00:21:14.7813Z","last_seen":"2025-09-08T00:21:14.7813Z","times_seen":1,"resource_available":false,"data":null}},"time_used":234,"timings":{"blocked":103,"dns":15,"connect":26,"send":0,"wait":31,"receive":0,"ssl":57},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"gleecheeftoo.net","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"a.espncdn.com/i/teamlogos/nfl/500/det.png","fqdn":"a.espncdn.com","domain":"espncdn.com","tld":"com"},"ip":{"addr":"23.36.77.114","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:47.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"a.espncdn.com","organization":"The Walt Disney Company"},"issuer":{"commonName":"COMODO ECC Organization Validation Secure Server CA","organization":"COMODO CA Limited"},"validity":{"start":"Thu, 26 Sep 2024 00:00:00 GMT","end":"Fri, 26 Sep 2025 23:59:59 GMT"},"fingerprint":{"sha1":"B2:7E:6E:DE:BC:4D:81:F8:43:0C:C8:23:3B:E9:9E:08:82:31:51:7F","sha256":"82:31:71:F2:2F:DA:39:B7:25:0B:F8:74:8D:8D:F8:33:36:46:62:45:8C:C1:F9:F0:A7:4A:F9:14:71:EB:B1:CE"}}},"request":{"raw":"GET /i/teamlogos/nfl/500/det.png HTTP/1.1\r\nHost: a.espncdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 25 Jun 2024 18:48:38 GMT\r\netag: \"c128248446cc45e26e3593d1d1abca21\"\r\nserver: AmazonS3\r\nx-common-key: nfl-det\r\nedge-cache-key: nfl-det\r\ncontent-type: image/png\r\ncontent-length: 57465\r\naccept-ranges: bytes\r\ncache-control: max-age=1706\r\ndate: Mon, 08 Sep 2025 00:20:47 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":57465,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced","md5":"c128248446cc45e26e3593d1d1abca21","sha1":"43f2e2893966ae2ab8910900d0d498f6b85f1e53","sha256":"9776b567ebab0bd3640165e915d948d8e736e35967dfc19ce62b967cfe7b4eb1","sha512":"8d3824ce506579c8a89caa5bb48e30f089baf72e547729b63ce253defe9738521346be488ef6227444e031f70fa74fc3cc6d0f353841148a6b7ff45724354a89","ssdeep":"1536:gmWCTmWvlwTeW9OizpGcvBWbAFXeKWIlroMc:XRwxOiVGcvYFKfoMc","tlshash":"be43f12bedf69b4904da0c60b597c84cadc75d8c1970810badbbc8b916a4924fcf7c83","first_seen":"2024-09-11T01:06:06Z","last_seen":"2026-01-18T10:12:58.073903Z","times_seen":9,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"epicmartial.xyz/favicon.ico","fqdn":"epicmartial.xyz","domain":"epicmartial.xyz","tld":"xyz"},"ip":{"addr":"104.21.31.224","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.257Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"epicmartial.xyz","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 28 Aug 2025 13:28:50 GMT","end":"Wed, 26 Nov 2025 14:26:35 GMT"},"fingerprint":{"sha1":"7A:0D:36:35:85:E9:60:1B:34:99:BA:57:5E:3A:59:0F:AC:10:FD:E3","sha256":"34:CB:87:9A:58:80:2B:7A:CF:E9:9A:CC:FE:A3:CA:16:80:4F:47:6C:9A:6C:D0:39:DD:90:EB:0D:1E:90:00:94"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: epicmartial.xyz\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football\r\nCookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=6148513f-8361-4b79-b830-8f1654fe62a5%3A2%3A1; pp_main_1827bfcf8a1c98afd937f673030b07a5=1\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\nvary: accept-encoding\r\ndate: Mon, 08 Sep 2025 00:20:48 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-turbo-charged-by: LiteSpeed\r\ncf-cache-status: BYPASS\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JfhgHXo0oLPqBbXF%2FUB6YmZncoLWmMVI1rQHdd0Tye0XBRX4UiU%2FztptwcQVfQ99F4UMVftm9n8AejWW6zvRdGTPEyJufXzLYjiFqDE%3D\"}]}\r\ncf-ray: 97ba48399a7f56c4-OSL\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Litespeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://wordpress.org/plugins/litespeed-cache/","common_platform_enumeration":"","icon":"litespeed-cache.png","categories":["Caching","WordPress plugins"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"LiteSpeed Cache","description":"LiteSpeed Cache is an all-in-one site acceleration plugin for WordPress.","website":"https://www.litespeedtech.com/products/cache-plugins/wordpress-acceleration","common_platform_enumeration":"","icon":"LiteSpeed.svg","categories":["Caching","WordPress plugins"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-04-04T00:29:17.304171Z","times_seen":115508,"resource_available":true,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"p2yn.com/5/9466407/?oo=1\u0026js_build=iclick-v1.1565.0\u0026userId=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0","fqdn":"p2yn.com","domain":"p2yn.com","tld":"com"},"ip":{"addr":"139.45.195.12","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.808Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"p2yn.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 11 Jul 2025 05:20:50 GMT","end":"Thu, 09 Oct 2025 05:20:49 GMT"},"fingerprint":{"sha1":"E8:3B:A2:4D:EB:4F:0F:D2:79:0E:9C:53:22:0E:70:BA:3A:7F:13:47","sha256":"4E:E4:3D:2E:6A:DC:A6:7C:EC:32:78:17:A8:75:CE:17:7A:E1:2D:F8:98:6F:D3:B4:05:B1:5D:2C:4D:33:75:7B"}}},"request":{"raw":"POST /5/9466407/?oo=1\u0026js_build=iclick-v1.1565.0\u0026userId=08023ef3ef2e4409f17d0b6ed7e3f7bb\u0026dmn=bvtpk.com\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: p2yn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2663\r\nOrigin: https://epicmartial.xyz\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: nginx\r\ndate: Mon, 08 Sep 2025 00:20:48 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://epicmartial.xyz\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T01:30:53.33799Z","times_seen":13310387,"resource_available":true,"data":null}},"time_used":232,"timings":{"blocked":101,"dns":14,"connect":26,"send":0,"wait":29,"receive":0,"ssl":58},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zg.ursamonel.com/tuk9TvDQfwpsey/101680","fqdn":"zg.ursamonel.com","domain":"ursamonel.com","tld":"com"},"ip":{"addr":"23.109.170.98","port":443,"asn":7979,"as":"SERVERS-COM","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:46.893Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"zg.ursamonel.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 15 Aug 2025 22:37:54 GMT","end":"Thu, 13 Nov 2025 22:37:53 GMT"},"fingerprint":{"sha1":"48:CA:22:41:21:6B:EC:64:11:54:01:36:34:73:54:7E:F9:BA:53:F1","sha256":"17:72:DD:CA:18:63:89:32:12:D5:B6:6C:AB:84:5C:AD:D9:EB:FD:E2:A1:85:D4:EA:9C:2B:93:2D:58:28:1E:0F"}}},"request":{"raw":"GET /tuk9TvDQfwpsey/101680 HTTP/1.1\r\nHost: zg.ursamonel.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:47 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://epicmartial.xyz\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nX-Frame-Options: SAMEORIGIN\r\nSet-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2BWdcFnYQDeASKQHj1xSv4SAr9g3Wh3ZQKensbE32bTH6T8TwvKB7g78kZ4Sdv8MRY13Z1U3VlPXa8GoaubZtyaLqSVc00NbiTW2%2F5sJCNcNpWbmxv9wiXmRQZOfajFpTh0am%2F5qr0oSLEg%2BFKZIhXJ5YM6WD0sZEpQkSKr4T0VRqa9JcT%2FEMbhOy5dlkql%2F0Sgd6KMD8jfZNKuGV%2BQcDKPE883N8Wbidt1l6KxEc8Gy4I%2FgtOI7c0a%2FONVNB2tfoG6EX0%2F%2F73ODxYiUTQLkdCrO07mR%2B4dk3m; expires=Tue, 09-Sep-2025 00:20:47 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwVyM0KgkAUhuE5hxiIJPjA9l6BadnCbbYMXXgFZhEDwxyZGfu5%2B2zxLp5XKcVpAjYTkrrM6yKvDnl5qkBPcNuBRwfdin8PX5AHF0ewd9h0wUrWyOzi8kes%2FgYZbM%2FWfLJe7ByNuABeWjfDzT72l%2F4KmjSBo2gGh3uqQC%2B9%2BwFe7x3U; expires=Tue, 09-Sep-2025 00:20:47 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"ec300000003000000000000000000000000c0000000000000000000000000c00000000","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-03T23:40:17.382879Z","times_seen":13605,"resource_available":true,"data":null}},"time_used":350,"timings":{"blocked":156,"dns":113,"connect":17,"send":0,"wait":21,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-09-07","alert":"Sinkholed","trigger":"zg.ursamonel.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"st.chatango.com/h5/gz/r0822250555/id.html","fqdn":"st.chatango.com","domain":"chatango.com","tld":"com"},"ip":{"addr":"208.93.230.26","port":443,"asn":29893,"as":"CHATANGO","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://epicmartial.xyz/200/index/n1/?m=bills-ravens\u0026s=football","date":"2025-09-08T00:20:48.064Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.chatango.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV R36","organization":"Sectigo Limited"},"validity":{"start":"Tue, 15 Jul 2025 00:00:00 GMT","end":"Fri, 14 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"F3:69:E1:D0:F3:D1:74:D0:DA:D5:22:F8:D3:1E:06:08:AD:10:C4:11","sha256":"09:28:F7:57:15:FC:10:13:9B:36:F1:1C:C5:1D:EE:8C:45:0E:F5:7B:37:E3:7C:84:D3:8B:89:EE:9E:19:0E:20"}}},"request":{"raw":"GET /h5/gz/r0822250555/id.html HTTP/1.1\r\nHost: st.chatango.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://epicmartial.xyz/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Mon, 08 Sep 2025 00:20:38 GMT\r\nContent-Type: text/html\r\nContent-Length: 224015\r\nLast-Modified: Fri, 22 Aug 2025 12:59:58 GMT\r\nConnection: keep-alive\r\nExpires: Tue, 08 Sep 2026 00:20:38 GMT\r\nCache-Control: max-age=31536000\r\nContent-Encoding: gzip\r\nP3P: CP=\"Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":697227,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators","md5":"d7eca770bfa8fa43a2fe410eae4f61c4","sha1":"b9fe60f6bf898cd6bb35ea525770c2cd0da27dcc","sha256":"0e4c7abc02c02e54e0e8256f29332de95bbd80a9ecd768ef585ba5a419dc427d","sha512":"65addb9baf8d9eee407aad0a5aec15760719667d98caa7e62b10928f1e48341560c059ce12877b618fc0e0368506227e152a2860d7efd2915e5a9e2965f25cce","ssdeep":"12288:cRHV9Zx8xfk6x6+Y6/GLRPM1fFY79xCYv9DNP2a:YHV9Zxsk6x6+f/GLRPMxFY79xCYf","tlshash":"d4e4189db7613225c2a3e1f0806b1155723b60ade5449b6cb24ddcf4ae7486c227bfbc","first_seen":"2025-08-22T23:09:13.671195Z","last_seen":"2025-09-08T23:57:49.907195Z","times_seen":136,"resource_available":false,"data":null}},"time_used":666,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":500,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}