Report - cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0

Report Overview

Visited public
2024-12-07 21:24:25
Tags
URL
cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Finishing URL
cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
IP / ASN
104.21.14.92
#13335 CLOUDFLARENET
Title
Vipbox

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
qd.myosoteruins.com	unknown	2024-09-30	2024-10-20	2024-12-01	424 B	1.5 kB	23.109.170.114
ts.yowdenfalcial.com	unknown	2024-09-30	2024-10-20	2024-12-07	423 B	1.5 kB	23.109.170.198
ptaixout.net	unknown	2023-12-29	2023-12-29	2024-12-01	2.2 kB	37 kB	139.45.197.244
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-12-04	850 B	221 kB	104.18.187.31
y2fzdgxl.la10tv.com	unknown	2024-07-13	2024-10-22	2024-10-22	3.3 kB	2.5 MB	45.143.221.61
pro.ip-api.com	6172	2012-04-24	2015-04-06	2024-12-04	447 B	313 B	51.77.64.70
my.rtmark.net	9054	2014-10-29	2015-02-04	2024-12-04	479 B	1.4 kB	172.67.169.157
cdn.totalsportek.space	unknown	2024-09-04	2024-11-10	2024-12-01	1.2 kB	2.3 kB	172.67.158.139
loqwo.site	unknown	2024-11-30	2024-12-07	2024-12-07	411 B	68 kB	188.114.97.1
yxdlc29tzq.la10tv.com	unknown	2024-07-13	2024-12-07	2024-12-07	509 B	765 B	45.143.221.66
us.hdtvcloud.com	unknown	2020-09-09	2023-02-25	2024-12-07	484 B	1.4 kB	188.114.96.1
youradexchange.com	273384	2012-11-09	2013-02-04	2024-12-06	785 B	1.9 kB	104.21.91.188
la12hd.com	unknown	2024-09-24	2024-09-24	2024-12-02	1.4 kB	186 kB	185.66.88.45

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	Client IP	52.59.186.17	ET INFO Session Traversal Utilities for NAT (STUN Binding Request)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)
2024-12-07 21:24:00	low	52.59.186.17	Client IP	ET INFO Session Traversal Utilities for NAT (STUN Binding Response)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-07	medium	ptaixout.net	Sinkholed
2024-12-07	medium	ptaixout.net	Sinkholed
2024-12-07	medium	ptaixout.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (53)

	URL	From	Size	First Seen	Last Seen
	la12hd.com/microtemplates/source[0]	Function	1.5 kB	2023-04-13	2025-06-11
Pretty URL la12hd.com/microtemplates/source[0] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-11 22:16 Times Seen514 Hash 173b70b85a9658eab15a9110e0b04568 3b21823d0aa94ae751cbc7bd0e214f2f7bc3d503 c3572efe5f3a33f021ceae7a845d8aac508e2ba4357b40c9d8a05608aff7863b Loading...

	loqwo.site/script/ut.js?cb=1733606639697	ScriptElement	66 kB	2024-12-02	2025-04-23
Pretty URL loqwo.site/script/ut.js?cb=1733606639697 IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-02 13:05 Last Seen2025-04-23 06:17 Times Seen1612 Hash 4afa2ac99f97331dc98263d49022a958 60bb7c7c45ff14e8df86ef9e0b9a7a55a7d2baca a4beaec54247a9a3cb97821ecdb68d39cacdcdcc62ae872c13c2cca2d3d88e32 Loading...

	la12hd.com/microtemplates/source[30]	Function	15 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[30] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen172 Hash c79266f55f57e95a67b0ea8d725f9d13 bd9b9e302ffdbcc3e4afe1e77285b31c01cf388f f4807bcb715f27cb42dbc62f902a190bb8de2fb50670636b16e25275aa7544d9 Loading...

	la12hd.com/microtemplates/source[34]	Function	265 B	2023-04-15	2025-06-08
Pretty URL la12hd.com/microtemplates/source[34] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-15 15:46 Last Seen2025-06-08 19:58 Times Seen281 Hash 39e724566d9f0a91f3396ff5be25595b dcf909a3627031272ecbcdf9c244cd5e6ed841c4 e83e595ad5f8223a1fa4cec530d911b4c69ca146ce43f48564c7d5a1794b6272 Loading...

	la12hd.com/microtemplates/source[8]	Function	251 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[8] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen410 Hash 7fc9ba20cae0848cf3a946374da072d2 d697e65a6ec0f44b5745a1d1a2f26886413d8819 63d509f07a5692ddb41099673c767f50ed4f99f1c3c01e7e298629ff22edcbdd Loading...

	la12hd.com/microtemplates/source[20]	Function	2.4 kB	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[20] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen394 Hash 75e79108a32d8198e9c8fdc380beab6d 1705219b86d194f203dfdd000140342d51d5b7f1 fbc4489a0e2c84fb17f43a773522b9d26508befa7b827af3f46918fec5b5404c Loading...

	la12hd.com/js/aclib.js?v=3.07	ScriptElement	182 kB	2024-12-07	2024-12-08
Pretty URL la12hd.com/js/aclib.js?v=3.07 IP 185.66.88.45 ASN #30860 Virtual Systems LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 15:40 Last Seen2024-12-08 17:33 Times Seen7 Hash 3a8f88908b02fc89f38c70deecef8eec d8b22c28b6d29f7674cc734b83de48172d007d08 6c5ed98ca1bf3fdd289aad2eaf3c2d57fb44558efdf4aee41a9ddb2aa3aee05d Loading...

	la12hd.com/vivo/canales.php?stream=sporttv1	ScriptElement	0 B	0001-01-01	2025-06-13
Pretty URL la12hd.com/vivo/canales.php?stream=sporttv1 IP 185.66.88.45 ASN #30860 Virtual Systems LLC Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-13 04:07 Times Seen4938770 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	la12hd.com/microtemplates/source[28]	Function	421 B	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[28] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen274 Hash e7a52234fac12ee7df0912cf171f2de0 6d29ee2eea0a5c3f04e18a7b0d1609b9085f16ff b4a375aef7efb26e6bd67efd10d5d9eabbe0972c1f575742958823e99932da8d Loading...

	ts.yowdenfalcial.com/rDwQTpfoIlIeWcu/71505	ScriptElement	0 B	0001-01-01	2025-06-13
Pretty URL ts.yowdenfalcial.com/rDwQTpfoIlIeWcu/71505 IP 23.109.170.198 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-13 04:07 Times Seen4938770 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	la12hd.com/microtemplates/source[6]	Function	264 B	2023-04-13	2025-06-11
Pretty URL la12hd.com/microtemplates/source[6] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-11 22:16 Times Seen557 Hash 0fef0cfef9acd9068f428da4adfc868d e04a20aca5ac9bf6b4a15128882153326525c6c7 2c4d4a81081cd404eed42504e246cc951e5dc5b9b2772d75ee1bc3e4eef51b87 Loading...

	la12hd.com/microtemplates/source[35]	Function	2.3 kB	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[35] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen258 Hash 0219bf5610a61230c758d65e3600b599 7b5e4f7000f15b7ce25fbd2e8e8d918abc0cbb94 ac2d4773305d5a6aae87f52ee592169153cb02d2501029291b5d0bed0934b877 Loading...

	la12hd.com/microtemplates/source[16]	Function	265 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[16] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen484 Hash bf9620c080385c4190d481970b97f451 c338fb77d77e634c51755c220a11f84864fcf88b 66094161d62295d9d0e3b2c232d0f9c1007a297b0435d1049ab18252e6895051 Loading...

	la12hd.com/vivo/canales.php?stream=sporttv1	ScriptElement	0 B	0001-01-01	2025-06-13
Pretty URL la12hd.com/vivo/canales.php?stream=sporttv1 IP 185.66.88.45 ASN #30860 Virtual Systems LLC Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-13 04:07 Times Seen4938770 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	la12hd.com/microtemplates/source[1]	Function	790 B	2023-04-13	2025-06-12
Pretty URL la12hd.com/microtemplates/source[1] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-12 23:36 Times Seen955 Hash e22017c2e9c001bce109bfe2fe68c380 e5a75a55df382896aa8aff43bc37e72566edf401 0852bba61d02a2d08e06f623e1934f3c17d6d1e84b53d9ffcdc4524402733a54 Loading...

	la12hd.com/microtemplates/source[17]	Function	1.5 kB	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[17] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen393 Hash c8a1fa4de07a4ee5744b88bf3243034b 695bf56fa4c73b5e316cb97727018f41aaaa15f1 b72c1d237c0e1d148fae25d5648691b7d4d485c6cde2cfea65236680208c2ac5 Loading...

	la12hd.com/microtemplates/source[18]	Function	791 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[18] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen414 Hash f1d04d242cbea86f97aa5e1c5e1e460e a766ce4a8824caf9a59b204963ad4b5c6ee4478f ebc28b0271fc555eb502c694ddc64f7efc9a75d45a03d44e5f5269dcc84387da Loading...

	la12hd.com/microtemplates/source[39]	Function	1.2 kB	2023-05-09	2025-06-08
Pretty URL la12hd.com/microtemplates/source[39] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 20:57 Last Seen2025-06-08 19:58 Times Seen126 Hash 4477e740ea1e67872addcc5ac2defd51 99395d92882d1439481df25373200983c5767a55 58e45481ec9ba5a1a615ad7afb497f434a2abb6ac6b314420d31361ebd1d6fca Loading...

	cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js	ScriptElement	631 kB	2024-08-14	2025-06-08
Pretty URL cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js IP 104.18.187.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-14 20:52 Last Seen2025-06-08 19:58 Times Seen299 Hash 9f7ee162594292d8a7cd8c88a8e2318d 55413890dd74e180a2b2a04994c40876bd8b1769 f0243f6e2395c077f4ae46ae4b1d969090d64106387b45cb39a28bbdb07e6752 Loading...

	la12hd.com/microtemplates/source[4]	Function	15 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[4] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen311 Hash 264468ecc510b214524caac850a5a816 1d42802acd1534a8d965212fd4bc512639ac1ecc 05692a592943c76f6d76fca12928fcf366c094f33e16fba77d4f431c6a2718f4 Loading...

	la12hd.com/microtemplates/source[9]	Function	279 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[9] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen475 Hash 020ef45dc126b5d78e9885ba8c0e8895 c21ea8c7b9827e7232e62d89db29d414771d2855 d7875335946dec91d6e6cb18b204a2c5f9306319416ca311c04970483b4b0356 Loading...

	la12hd.com/microtemplates/source[11]	Function	526 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[11] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen403 Hash bb1191112e52272bde802d80749d1b9c a57c542d3f972968c70c0a16e7b8016b878e284d e0cba6e029fec740108a7ad86a5461ee9e4959937fa4ff27ce356e04c35e5850 Loading...

	la12hd.com/microtemplates/source[14]	Function	15 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[14] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen200 Hash 77bcd8a1f4725a3658221d430032b9d6 acb15f6adad154ffbcd6b77f8f607d924845ae19 18b776af5cdeee3cb04e8a91ab0165215054b0b471591e56158a312a77eac77d Loading...

	la12hd.com/microtemplates/source[13]	Function	3.5 kB	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[13] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen480 Hash d2e0aa749903250349b071362de696bd d4486ac2045ae74933ad5a1c05fbe30b39eee4cb 246aa71e2a226caa935b209d8862a0e4716c636e01495898ec20b17ba838119e Loading...

	la12hd.com/microtemplates/source[23]	Function	1.5 kB	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[23] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen320 Hash c6420a63caeab46fa6e03dc58135f555 dd17e9bd15d7e3fb3f8e00ddb23214059ad89b88 574f6245fe4b61aeccca439b2a454d5ddfa91452e16b1f2a2c6ff1fc5c291700 Loading...

	la12hd.com/microtemplates/source[5]	Function	1.0 kB	2023-04-13	2025-06-11
Pretty URL la12hd.com/microtemplates/source[5] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-11 22:16 Times Seen515 Hash 69c2e174b203cc6927bb67ed966503e1 45fd454a7731e181fc07f0103ef5316a963f048b 081101b241d33b439d67a5985cb6f1e38d99d903f52d31524ec251f9ce1236c4 Loading...

	la12hd.com/microtemplates/source[21]	Function	3.5 kB	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[21] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen379 Hash 8f7d8f20a7732f0c7b0346ac8cc5a3b1 e759f484c4dad54d86df7d82789263bfa49e13bf 7be4a2cbabbf34688cf19a92144e0fff8359516d8e8420c26af4cfa1f1f856b5 Loading...

	la12hd.com/microtemplates/source[38]	Function	421 B	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[38] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen237 Hash b6d3274bf0413ea729ce145e9b4a83e2 a25ebfb77b11a6aa2f37c765a652b2bb192977ab e505122c82bd9d2343b9a38b28f03d44a8ae3707179e25954f0ca05e8f0c73e9 Loading...

	la12hd.com/microtemplates/source[40]	Function	858 B	2023-05-09	2025-06-08
Pretty URL la12hd.com/microtemplates/source[40] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-09 20:57 Last Seen2025-06-08 19:58 Times Seen129 Hash 60416a242eeb114410a92da6714a0bae 37e3841310e4c0bf50b7b43459f13abc4d15df02 c4f441f6541778a46372bdaf9cd9728cbf4599fc6cf2bc5a36932c7e7485cfad Loading...

	cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0	ScriptElement	538 B	2023-03-12	2025-05-30
Pretty URL cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0 IP 172.67.158.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-12 20:58 Last Seen2025-05-30 00:34 Times Seen228 Hash 23f14ae712b847828254481b2c5a0069 0a7c5d70eacdb3e6f896855847bc1ab49656e466 6e28a139e5cde2bd01006e4ed5ef2f3c88b2fa2b2b2519a5f6a5714f205ffeed Loading...

	ptaixout.net/tag.min.js	ScriptElement	71 kB	2024-12-05	2024-12-09
Pretty URL ptaixout.net/tag.min.js IP 139.45.197.244 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-05 13:06 Last Seen2024-12-09 13:08 Times Seen177 Hash 2eeea61eb013dc83a41eafa1703c29b2 a50df19172681e73e3d4f561e5ce1d0b1e7009ca a11d2141877d0c5e71945d23d73045d76d56813b6664477d8c03eed853b2b64b Loading...

	la12hd.com/microtemplates/source[10]	Function	1.1 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[10] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen224 Hash ec1e8f92a63a7e752b9845f024a56cb0 8e2dca2a34443bb4e7d012a34af4e6cce4adde0a 6e38d26061a6bcc18d40b6267f87e12a54b14de0648c3e1418c8fca822b4dcd7 Loading...

	la12hd.com/microtemplates/source[36]	Function	421 B	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[36] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen276 Hash 60d01b8464eea26e59e2b778b9d8f6f8 dbb521a844502244d0411de45c87615fafa34158 e7f672f5dd286f2af6700408701172f78645af298a69e41b6e851984941cf1f1 Loading...

	la12hd.com/microtemplates/source[2]	Function	2.3 kB	2023-04-13	2025-06-11
Pretty URL la12hd.com/microtemplates/source[2] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-11 22:16 Times Seen514 Hash 802eb34ff58dc7c705f3e864ef98c945 801fd9cd1a2fd8ced641ae19422182057ba6ff5a b1d729a0bbe3e73c3590c607bc3704184115cda68ab355fd7feaf8f0bce7c71b Loading...

	la12hd.com/microtemplates/source[7]	Function	1.0 kB	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[7] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen409 Hash 2f83c1d07ad4ff904142ff0e2603d4de 03b211f488d5076c0fae8527823689f5fa4c2baa 4f818be92004a6e0fa9fdcf60480269aab421e9ba0afcc5e85f6d07324ccb7a1 Loading...

	la12hd.com/microtemplates/source[25]	Function	1.0 kB	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[25] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen278 Hash 6d58f0e6396b2706f39269a2af796bcc 45f38bf9eaa9873bc8de0ebe4400a838c3c2e220 0000c42c5dd1b2cc72f59daf434a8474db045cfedc2163773e36c4a2b5a3bdf4 Loading...

	la12hd.com/microtemplates/source[27]	Function	2.3 kB	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[27] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen271 Hash b3b341ac401362f7251af5bfe64b218d f5989bf80cd3afbc97bf86158f5d6ccc2ec70a4e ccd0023c6c3f9331c5725686e31062db21b8ef4db1a0c4714e1ca2fa26c6c4fc Loading...

	la12hd.com/microtemplates/source[37]	Function	2.3 kB	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[37] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen228 Hash 206233e26fa3351b71a98173551c5ee8 3ddd7aeae73135d89212433eb861654e8baa9f65 42dac6ba84e060d334071bf69fd8ba362f1c2c0d6efd57ae8a08d5ee1590d6a6 Loading...

	la12hd.com/microtemplates/source[31]	Function	1.5 kB	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[31] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen258 Hash 6446316f1a33217612cd194bd79aa9b4 a938a2792026e7cb801fb63d5b1c25e020abc167 1332726fad3ab6c160c898f8deb6a305332f1e2cabcadda591d232292a2e73fc Loading...

	la12hd.com/microtemplates/source[22]	Function	15 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[22] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen190 Hash 830ece2ecf3b3d785d541fc83922164d 2614c5f5e24ebc6c0945f3f43750eab6463290f2 9ff569fb4d30e581ad914b32f200bf2d52c0105e913fd7e4491ddaf211dcc5f3 Loading...

	la12hd.com/microtemplates/source[26]	Function	265 B	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[26] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen284 Hash b18d1c3eb98082481114d55d1d30250c b962ddd745e64f9867d93ad73619b15098a91c14 60fd9710e89a2dd65ef34872ba829bf83f2743836e69088bca1a60ab1c266917 Loading...

	cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0	ScriptElement	58 kB	2024-03-02	2025-05-30
Pretty URL cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0 IP 172.67.158.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-02 18:33 Last Seen2025-05-30 00:34 Times Seen151 Hash 442bbf420891666ab1ddf289fa9f00f4 6a68254c2ee844425bb535798fe4e959f3fed8d3 9ac456bebae6c065dffb8c8a2a798070000c248f081dfab9b2bdb66e7ac77b37 Loading...

	cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0	ScriptElement	444 B	2024-03-02	2025-05-30
Pretty URL cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0 IP 172.67.158.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-02 18:33 Last Seen2025-05-30 00:34 Times Seen151 Hash f022889803b87a9b11191e64f3b015ff 68b93d2eb3a9a660180f7420394d0c95a3163c29 f987cddb8c432a94c404efd65b7deba5216bae496ab375859f5e317860893298 Loading...

	cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js	ScriptElement	196 kB	2024-12-07	2024-12-26
Pretty URL cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js IP 104.18.187.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-07 15:28 Last Seen2024-12-26 19:53 Times Seen84 Hash 148eb656359b703410ba0bd6ed429f1b 05dfb181c894026a60a91ac503fd966400b9c555 786f269ed18afe713331b4a9dbaa727fb89324862e6be2ca5f4009602e0035f6 Loading...

	la12hd.com/microtemplates/source[12]	Function	305 B	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[12] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen396 Hash 51b5641aaec7bf63ee43321963b69a9a 79490c0ae8ddadaf9b0d584f5ddbc07e99bf5955 a17a70a6eb7bcae18f14a1da75e740c82c36ae1af9c183d4a1f93067f00c6c4d Loading...

	la12hd.com/microtemplates/source[15]	Function	1.0 kB	2023-04-13	2025-06-08
Pretty URL la12hd.com/microtemplates/source[15] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-08 19:58 Times Seen395 Hash 7714f2e1bdc951dd60161694190a90a8 8a69b70fef1732d7937c07180df1442b34ca68bb dacd591b9a7aacb25b9b39135b936aa16483a0fbfb835522879bd9970a6bdef4 Loading...

	la12hd.com/microtemplates/source[32]	Function	791 B	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[32] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen270 Hash 80154efca6a8aefc71f5ea5ed572ed8b 798352580dd2a2e01398c0bb0c3398264bc97bf7 8b42b2aafbd0c916b0245bb12a005aea76fd18b6e300111d5a92de181296b9f8 Loading...

	cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0	ScriptElement	1.4 kB	2023-05-21	2025-05-30
Pretty URL cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0 IP 172.67.158.139 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-21 19:45 Last Seen2025-05-30 00:34 Times Seen228 Hash 9dc26956b3af9c5c1d866267c7b2eb8d 497c98086b37e029f85b9969b54a3c497f2c88d7 7be6becfe5575e1849b8ac25b05b1a6e3e3afc0b9adeeef521a5bd0a17fa154c Loading...

	la12hd.com/microtemplates/source[3]	Function	420 B	2023-04-13	2025-06-11
Pretty URL la12hd.com/microtemplates/source[3] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 17:29 Last Seen2025-06-11 22:16 Times Seen592 Hash f40933e603a05e3c1f59b8b335ff9a02 8bdf38370eab8e6c148cfc2f9f3b6858882ece80 eae854849ff9fe52b79b43b513b33644249e07c3db14c00377dda3840b913747 Loading...

	la12hd.com/microtemplates/source[19]	Function	1.2 kB	2023-05-27	2025-06-08
Pretty URL la12hd.com/microtemplates/source[19] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-05-27 21:55 Last Seen2025-06-08 19:58 Times Seen212 Hash 09b2ee12355ca16350b383fb0253a2c1 ec51e028f4d1cd9337160bac617afeb55df50d9a bb31fabf4e031706dfdb477a31b4645296ac881c072216e0d5fd81c04365b5b4 Loading...

	la12hd.com/microtemplates/source[33]	Function	1.0 kB	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[33] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen257 Hash 8e0b2688b7912b68b8bdd9c42e6553aa b7bf52d1ae02f4a21fad6548253e10c827df8905 229e569d17d5e282b8409fc802028f8f06d540ecf6f4e833b04703b4033aeda9 Loading...

	la12hd.com/microtemplates/source[24]	Function	791 B	2023-04-16	2025-06-08
Pretty URL la12hd.com/microtemplates/source[24] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-16 08:37 Last Seen2025-06-08 19:58 Times Seen351 Hash 60d712708b983f5789f2a8aaa1870dbe 5e0ad9bd5d3e98d4afa868c9a7fbee38d2e7b0e3 9cd6d70f9cda4f328223ee7fd22021f2ffa2196b314a383cfa187ae7cce6f16a Loading...

	la12hd.com/microtemplates/source[29]	Function	3.5 kB	2023-04-18	2025-06-08
Pretty URL la12hd.com/microtemplates/source[29] IP 0.0.0.0 ASN #0 Introduced by Function Embedded in HTML false Observations First Seen2023-04-18 20:25 Last Seen2025-06-08 19:58 Times Seen267 Hash 4116cf333a72b1646045ae7bc7986cec b4291b06cd9914173429bb8d3271c28fb993f417 337d64c3166b2489ac14216dee71e6638cbb422ff274f72498c234ce49b4fa94 Loading...

HTTP Transactions (24)

URL IP Response Size

cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0

172.67.158.139

200 OK

0 B

URL User Request GET HTTP/2
cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
IP
172.67.158.139:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjecttotalsportek.space
Fingerprint81:DC:39:20:B0:D7:80:FE:6A:82:99:28:26:EE:1A:DA:CE:90:84:63
ValiditySat, 02 Nov 2024 06:46:45 GMT - Fri, 31 Jan 2025 06:46:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0 HTTP/1.1
Host: cdn.totalsportek.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 07 Dec 2024 21:23:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MrYNp6eckmirm1CcqnQ3iDaUNcGDSo2KcZF3ZrmUdyREeCXnMynQ6AikgmRwmNaYFspF3R8YZCs5%2BtM2HCt1qbFbM%2FnMAf7C3FqdcVIqy1XVGA20xppmYqr8Fg6imL4WH3QGe5n0i6rX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee79474ae52568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=21145&min_rtt=9200&rtt_var=11982&sent=11&recv=6&lost=0&retrans=0&sent_bytes=4063&recv_bytes=1250&delivery_rate=64558&cwnd=12000&unsent_bytes=0&cid=32bb0da746ba5ea6&ts=387&x=1", cfExtPri, cfHdrFlush;dur=0

qd.myosoteruins.com/rUdcK8qZZxyOOpBmq/77025

23.109.170.114

200 OK

20 B

URL GET HTTP/1.1
qd.myosoteruins.com/rUdcK8qZZxyOOpBmq/77025
IP
23.109.170.114:443
ASN
#7979 SERVERS-COM

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectqd.myosoteruins.com
Fingerprint5D:05:70:C1:65:21:AB:59:D3:3A:94:F7:7E:AA:81:F9:4D:31:13:51
ValidityThu, 05 Dec 2024 14:26:41 GMT - Wed, 05 Mar 2025 14:26:40 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /rUdcK8qZZxyOOpBmq/77025 HTTP/1.1
Host: qd.myosoteruins.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Dec 2024 21:23:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cdn.totalsportek.space
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 08-Dec-2024 21:23:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 08-Dec-2024 21:23:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ts.yowdenfalcial.com/rDwQTpfoIlIeWcu/71505

23.109.170.198

200 OK

20 B

URL GET HTTP/1.1
ts.yowdenfalcial.com/rDwQTpfoIlIeWcu/71505
IP
23.109.170.198:443
ASN
#7979 SERVERS-COM

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectts.yowdenfalcial.com
Fingerprint7D:09:A8:57:48:21:46:7A:81:9A:D9:C3:46:F6:23:DA:5D:29:ED:90
ValidityThu, 05 Dec 2024 14:30:28 GMT - Wed, 05 Mar 2025 14:30:27 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /rDwQTpfoIlIeWcu/71505 HTTP/1.1
Host: ts.yowdenfalcial.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 07 Dec 2024 21:23:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://cdn.totalsportek.space
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 08-Dec-2024 21:23:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 08-Dec-2024 21:23:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

ptaixout.net/tag.min.js

139.45.197.244

200 OK

27 kB

URL GET HTTP/2
ptaixout.net/tag.min.js
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectptaixout.net
FingerprintEE:B7:7A:A3:2E:F5:C1:DE:27:FC:A2:64:11:D8:AE:DF:54:E0:65:D4
ValidityWed, 13 Nov 2024 05:13:26 GMT - Tue, 11 Feb 2025 05:13:25 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (27257 bytes)
Hash
2eeea61eb013dc83a41eafa1703c29b2
a50df19172681e73e3d4f561e5ce1d0b1e7009ca
a11d2141877d0c5e71945d23d73045d76d56813b6664477d8c03eed853b2b64b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /tag.min.js HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: text/javascript; charset=utf-8
content-length: 27257
content-encoding: br
x-trace-id: 68476b392948ff5c4568c3876cdd3d18
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 05 Dec 2024 12:16:24 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

la12hd.com/cssm.css

185.66.88.45

200 OK

484 B

URL GET HTTP/2
la12hd.com/cssm.css
IP
185.66.88.45:443
ASN
#30860 Virtual Systems LLC

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjectla12hd.com
Fingerprint40:EE:73:FE:8B:6B:ED:31:1D:03:CC:D9:81:C0:3F:01:BF:3B:74:4E
ValidityWed, 27 Nov 2024 18:57:47 GMT - Tue, 25 Feb 2025 18:57:46 GMT

File type
ASCII text
Size
484 B (484 bytes)
Hash
344051a992145530c3144a80f8c32bd4
c399b153bf43f1c33f37dbe150e3f29b9b18d48b
87b3613c8728ef869e78314d2fd8fd4f76282384e6ee3d0ef2047baa3ab5c068

HTTP Headers

GET /cssm.css HTTP/1.1
Host: la12hd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/vivo/canales.php?stream=sporttv1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: text/css
content-length: 484
last-modified: Sat, 02 Nov 2024 20:14:48 GMT
etag: "67268838-1e4"
expires: Sun, 08 Dec 2024 09:23:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js

104.18.187.31

200 OK

163 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/@clappr/player@0.8/dist/clappr.min.js
IP
104.18.187.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
163 kB (162561 bytes)
Hash
9f7ee162594292d8a7cd8c88a8e2318d
55413890dd74e180a2b2a04994c40876bd8b1769
f0243f6e2395c077f4ae46ae4b1d969090d64106387b45cb39a28bbdb07e6752

HTTP Headers

GET /npm/@clappr/player@0.8/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 162561
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 0.8.0
x-jsd-version-type: version
etag: W/"9a048-VUE4kN104YCisqBJlMQIdr2LF2k"
content-encoding: br
x-served-by: cache-fra-eddf8230058-FRA, cache-lga21951-LGA
x-cache: MISS, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 42901
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CIjOGbfCyLThoXfZHHQ1j%2BoGr4JvCMNWOu3aRxwRazs95matklNIOuEJh5aCGQnprzIOkTJQeenAszKoEQb8kSssrj7weGQvCXHNA%2FQRXdhETFhOn%2F9hHxg91o1pzAO2dVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee79476bc937130-OSL
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js

104.18.187.31

200 OK

56 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/@swarmcloud/hls/p2p-engine.min.js
IP
104.18.187.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
56 kB (56177 bytes)
Hash
148eb656359b703410ba0bd6ed429f1b
05dfb181c894026a60a91ac503fd966400b9c555
786f269ed18afe713331b4a9dbaa727fb89324862e6be2ca5f4009602e0035f6

HTTP Headers

GET /npm/@swarmcloud/hls/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 56177
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.12.15
x-jsd-version-type: version
etag: W/"2fdd2-Bd+xgciUAmpgqRrFA/2WZAC5xVU"
content-encoding: br
x-served-by: cache-fra-eddf8230149-FRA, cache-lga21947-LGA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 25560
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ui3CWMUF6SkqYxoodZ8P%2BcB%2Bjqo76LHOd%2BNpF79FhM0pLBxkBmZKNbkLVS6JSZze79RoQZKJtOelrAvpSCvprbq4jEqO%2FpaYzXlDKezx0RRtPPQJMcdvY3%2BjMyrup9mr0%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee79476cc987130-OSL
X-Firefox-Spdy: h2

yxdlc29tzq.la10tv.com/lb/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.66

302 Found

134 B

URL GET HTTP/2
yxdlc29tzq.la10tv.com/lb/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.66:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjectyxdlc29tzq.la10tv.com
FingerprintED:27:2F:62:DC:F3:DE:35:85:BD:C1:B6:7A:CD:11:78:BD:5D:80:A9
ValidityWed, 18 Sep 2024 18:02:09 GMT - Tue, 17 Dec 2024 18:02:08 GMT

File type
ASCII text
Size
134 B (134 bytes)
Hash
404b90fe3b7dc21a29e393d8855f3425
3bbfa2c364aaa5c9f6b62b4f792d4cdd29e7290b
c4b4e47720455af825782224ff538772e5c65ff1c06eb4788723d7ba4017407a

HTTP Headers

GET /lb/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: yxdlc29tzq.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
content-length: 134
date: Sat, 07 Dec 2024 21:23:59 GMT
location: https://Y2FzdGxl.la10tv.com:443/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
server: Streamer 24.03
x-route-time: 344
x-run-time: 28
X-Firefox-Spdy: h2

y2fzdgxl.la10tv.com/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.61

200 OK

226 B

URL GET HTTP/2
y2fzdgxl.la10tv.com/sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.61:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjecty2fzdgxl.la10tv.com
Fingerprint02:73:67:2C:1A:B2:D3:3A:DE:7A:C7:B3:65:F4:CA:52:A5:7E:7B:06
ValidityWed, 18 Sep 2024 18:04:58 GMT - Tue, 17 Dec 2024 18:04:57 GMT

File type
M3U playlist, ASCII text
Size
226 B (226 bytes)
Hash
89c24e567f66488154715a186472ecb8
e316973ae690d1463db3ab1c223e97e01e4f96da
0e80c850bd58f715ed1c8469847cf9914520c935d22c7c28623c009c8fe45515

HTTP Headers

GET /sporttv1/index.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://la12hd.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
cache-control: no-cache
content-encoding: gzip
content-length: 226
content-type: application/vnd.apple.mpegurl
date: Sat, 07 Dec 2024 21:23:59 GMT
pragma: no-cache
server: Streamer 24.03
x-media-info-time: 20
x-prepare-time: 108
x-route-time: 1127
x-run-time: 135
x-sid: 6754bcf0-ff80-4a98-b763-fa8a75734687
X-Firefox-Spdy: h2

y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/mono.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.61

200 OK

228 B

URL GET HTTP/2
y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/mono.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.61:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjecty2fzdgxl.la10tv.com
Fingerprint02:73:67:2C:1A:B2:D3:3A:DE:7A:C7:B3:65:F4:CA:52:A5:7E:7B:06
ValidityWed, 18 Sep 2024 18:04:58 GMT - Tue, 17 Dec 2024 18:04:57 GMT

File type
M3U playlist, ASCII text
Size
228 B (228 bytes)
Hash
cd99e7b30b56948b7f4b0cd8a930ee32
1883fd47cad721684d1d1a5d36095c8a657a0ae1
3b9a9b74c5a11aaa9b3d7ac29f62cc5f221ef85b5cfbe40effe3546a4af6b0a9

HTTP Headers

GET /sporttv1/tracks-v1a1/mono.m3u8?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
cache-control: no-cache
content-encoding: gzip
content-length: 228
content-type: application/vnd.apple.mpegurl
date: Sat, 07 Dec 2024 21:23:59 GMT
pragma: no-cache
server: Streamer 24.03
x-cached: yes
x-route-time: 333
x-run-time: 112
x-sid: 6754bcf0-ff80-4a98-b763-fa8a75734687
X-Firefox-Spdy: h2

y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.61

200 OK

2.5 MB

URL GET HTTP/2
y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.61:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjecty2fzdgxl.la10tv.com
Fingerprint02:73:67:2C:1A:B2:D3:3A:DE:7A:C7:B3:65:F4:CA:52:A5:7E:7B:06
ValidityWed, 18 Sep 2024 18:04:58 GMT - Tue, 17 Dec 2024 18:04:57 GMT

File type
data
Size
2.5 MB (2535744 bytes)
Hash
39a44e1e8140dd6db936dfe3f94da79c
4bafe474ccc29e643c36b3b4eb1570fe4cd1d30d
67e84041beb85ba97cda8b180b932fed94a1449902589c9ac83b5511c00c38f7

HTTP Headers

GET /sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
content-length: 2535744
content-type: video/MP2T
date: Sat, 07 Dec 2024 21:23:59 GMT
server: Streamer 24.03
x-just-generated: false
x-memory: yes
x-route-time: 300
x-run-time: 102
x-sid: 6754bcf0-ff80-4a98-b763-fa8a75734687
X-Firefox-Spdy: h2

pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho

51.77.64.70

200 OK

159 B

URL GET HTTP/1.1
pro.ip-api.com/json?fields=2181826&key=XOpiansRgYxGTho
IP
51.77.64.70:443
ASN
#16276 OVH SAS

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerSectigo Limited
Subject*.ip-api.com
FingerprintF0:28:4B:02:B3:57:5A:73:21:4F:42:DF:04:2D:19:39:F8:5F:3D:3A
ValidityThu, 21 Dec 2023 00:00:00 GMT - Mon, 20 Jan 2025 23:59:59 GMT

File type
JSON text data
Size
159 B (159 bytes)
Hash
3ece15e5de26f6b9bf50916f24e2ac38
67331553fde865e657b8ec826e9a5b2793891ac5
c1be72c715f304ff8489ee2381da4169b5358bebd51f89326b9e6b46de511eaf

HTTP Headers

GET /json?fields=2181826&key=XOpiansRgYxGTho HTTP/1.1
Host: pro.ip-api.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://la12hd.com/
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Date: Sat, 07 Dec 2024 21:24:00 GMT
Content-Length: 159

y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.61

200 OK

3 B

URL GET HTTP/2
y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.61:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjecty2fzdgxl.la10tv.com
Fingerprint02:73:67:2C:1A:B2:D3:3A:DE:7A:C7:B3:65:F4:CA:52:A5:7E:7B:06
ValidityWed, 18 Sep 2024 18:04:58 GMT - Tue, 17 Dec 2024 18:04:57 GMT

File type
ASCII text
Size
3 B (3 bytes)
Hash
d36f8f9425c4a8000ad9c4a97185aca5
09fb654c17cc05b11ef53bd35aa701f6d550e8e1
a12b7cb43c9d9134b5bb1b35e9096b66775d9e92e7611d1cc92b02edd6782a87

HTTP Headers

OPTIONS /sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: range
Referer: https://la12hd.com/
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
content-length: 3
date: Sat, 07 Dec 2024 21:24:00 GMT
server: Streamer 24.03
x-route-time: 302
x-run-time: 4
x-sid: 6754bcf0-ff80-4a98-b763-fa8a75734687
X-Firefox-Spdy: h2

y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

45.143.221.61

206 Partial Content

1 B

URL GET HTTP/2
y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
45.143.221.61:443
ASN
#211238 Dedicated Cyber Limited

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjecty2fzdgxl.la10tv.com
Fingerprint02:73:67:2C:1A:B2:D3:3A:DE:7A:C7:B3:65:F4:CA:52:A5:7E:7B:06
ValidityWed, 18 Sep 2024 18:04:58 GMT - Tue, 17 Dec 2024 18:04:57 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
dfcf28d0734569a6a693bc8194de62bf
a36a6718f54524d846894fb04b5b885b4e43e63b
333e0a1e27815d0ceee55c473fe3dc93d56c63e3bee2b3b4aee8eed6d70191a3

HTTP Headers

GET /sporttv1/tracks-v1a1/2024/12/07/21/23/43-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-0
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
access-control-allow-headers: x-vsaas-session, x-no-redirect, origin, authorization, accept, range, content-type, x-add-effective, session, x-originator, x-sid
access-control-allow-methods: GET, PUT, DELETE, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Server, range, X-Run-Time, X-Sid, Content-Length, Location
content-length: 1
content-range: bytes 0-0/2535744
content-type: video/MP2T
date: Sat, 07 Dec 2024 21:24:00 GMT
server: Streamer 24.03
x-just-generated: false
x-memory: yes
x-route-time: 279
x-run-time: 107
x-sid: 6754bcf0-ff80-4a98-b763-fa8a75734687
X-Firefox-Spdy: h2

la12hd.com/vivo/canales.php?stream=sporttv1

185.66.88.45

200 OK

2.9 kB

URL GET HTTP/2
la12hd.com/vivo/canales.php?stream=sporttv1
IP
185.66.88.45:443
ASN
#30860 Virtual Systems LLC

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectla12hd.com
Fingerprint40:EE:73:FE:8B:6B:ED:31:1D:03:CC:D9:81:C0:3F:01:BF:3B:74:4E
ValidityWed, 27 Nov 2024 18:57:47 GMT - Tue, 25 Feb 2025 18:57:46 GMT

File type
JavaScript source, ASCII text, with very long lines (3055), with no line terminators
Size
2.9 kB (2910 bytes)
Hash
604e001b33eb07e6ffcffae37352199d
ac266791c11bbcb4b76a4e452366d0ab5c2c2894
756e1048a3c642ccdcf1275ed77d2c2743d6a3e2156b1633e4515c1f934735c0

HTTP Headers

GET /vivo/canales.php?stream=sporttv1 HTTP/1.1
Host: la12hd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=4rgp0a4nrcqqhvicf4ln1uga5i; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

ptaixout.net/?rb=BtR5R-WQtU0D1o8Uj18H-FCCLvx2LLWMdwcIhtSUfRjy6hSlmat8zEmceenIBJJG2e1_9Oa9MkftcK2eT8WxSp88b6-YFEUVkt9wK1XwdwI64Cdm4UO5DlrdqylaZEjVaCRfSwsE_7DUG8vXq8l6fCKs8LOAFJjSC5nDktai32zT3opXwb6dd9vFATvoK8m6rBbiC3j3CAPp_6sWpLMBZagXVUMVx8fcxWHVLsiDLQmo-kAxWbAl1QwRF_Eflw305JaMRXScmWGDUOVGCgSk1rCi7PktRFVx&request_ab2=0&zoneid=6320745&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.totalsportek.space%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fla12hd.com%2Fvivo%2Fcanales.php%3Fstream%3Dsporttv1%26ask%3D1733607000%26lgt%3D3%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=3&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=43ac0e44-b217-400d-977b-b8bf4b7a9e25&wasm=1&userId=00812bb7ec9b4fdcf7d7578d53fd5e35&m=link

139.45.197.244

200 OK

2.4 kB

URL GET HTTP/2
ptaixout.net/?rb=BtR5R-WQtU0D1o8Uj18H-FCCLvx2LLWMdwcIhtSUfRjy6hSlmat8zEmceenIBJJG2e1_9Oa9MkftcK2eT8WxSp88b6-YFEUVkt9wK1XwdwI64Cdm4UO5DlrdqylaZEjVaCRfSwsE_7DUG8vXq8l6fCKs8LOAFJjSC5nDktai32zT3opXwb6dd9vFATvoK8m6rBbiC3j3CAPp_6sWpLMBZagXVUMVx8fcxWHVLsiDLQmo-kAxWbAl1QwRF_Eflw305JaMRXScmWGDUOVGCgSk1rCi7PktRFVx&request_ab2=0&zoneid=6320745&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.totalsportek.space%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fla12hd.com%2Fvivo%2Fcanales.php%3Fstream%3Dsporttv1%26ask%3D1733607000%26lgt%3D3%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=3&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=43ac0e44-b217-400d-977b-b8bf4b7a9e25&wasm=1&userId=00812bb7ec9b4fdcf7d7578d53fd5e35&m=link
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectptaixout.net
FingerprintEE:B7:7A:A3:2E:F5:C1:DE:27:FC:A2:64:11:D8:AE:DF:54:E0:65:D4
ValidityWed, 13 Nov 2024 05:13:26 GMT - Tue, 11 Feb 2025 05:13:25 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (2422), with no line terminators
Size
2.4 kB (2403 bytes)
Hash
273363ad6f5719c8e0050efa563dfc47
a20029029ca2267c9755adbd806ec2b712275f81
bdaf6e29f2b434f79411928d9a07af6009c2bee30ca77448e2487b672f518c9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rb=BtR5R-WQtU0D1o8Uj18H-FCCLvx2LLWMdwcIhtSUfRjy6hSlmat8zEmceenIBJJG2e1_9Oa9MkftcK2eT8WxSp88b6-YFEUVkt9wK1XwdwI64Cdm4UO5DlrdqylaZEjVaCRfSwsE_7DUG8vXq8l6fCKs8LOAFJjSC5nDktai32zT3opXwb6dd9vFATvoK8m6rBbiC3j3CAPp_6sWpLMBZagXVUMVx8fcxWHVLsiDLQmo-kAxWbAl1QwRF_Eflw305JaMRXScmWGDUOVGCgSk1rCi7PktRFVx&request_ab2=0&zoneid=6320745&js_build=iclick-v1.1021.0&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=2&pl=https%3A%2F%2Fcdn.totalsportek.space%2Fembed77%2F%3Fevent%3Dstack.html%26link%3D1%26domain%3D%26force%3Dhttps%3A%2F%2Fla12hd.com%2Fvivo%2Fcanales.php%3Fstream%3Dsporttv1%26ask%3D1733607000%26lgt%3D3%26noplayer%3D0&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&tt=3&wgl=&js_build=iclick-v1.1021.0&navlng=en-US&vsbl=true&pnt=0&pnrc=0&bs=43ac0e44-b217-400d-977b-b8bf4b7a9e25&wasm=1&userId=00812bb7ec9b4fdcf7d7578d53fd5e35&m=link HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cdn.totalsportek.space/
Origin: https://cdn.totalsportek.space
DNT: 1
Connection: keep-alive
Cookie: OAID=00812bb7ec9b4fdcf7d7578d53fd5e35; oaidts=1733606639
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/json
x-trace-id: d4feea7a8c41120c5e430cb8b263c4bf
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://cdn.totalsportek.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00812bb7ec9b4fdcf7d7578d53fd5e35; expires=Sun, 07 Dec 2025 21:23:59 GMT; path=/; secure; SameSite=None
oaidts=1733606639; expires=Sun, 07 Dec 2025 21:23:59 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 14 Dec 2024 21:23:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

ptaixout.net/5/6320745/?oo=1&aab=1

139.45.197.244

200 OK

3.9 kB

URL GET HTTP/2
ptaixout.net/5/6320745/?oo=1&aab=1
IP
139.45.197.244:443
ASN
#9002 RETN Limited

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerLet's Encrypt
Subjectptaixout.net
FingerprintEE:B7:7A:A3:2E:F5:C1:DE:27:FC:A2:64:11:D8:AE:DF:54:E0:65:D4
ValidityWed, 13 Nov 2024 05:13:26 GMT - Tue, 11 Feb 2025 05:13:25 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (3897), with no line terminators
Size
3.9 kB (3893 bytes)
Hash
5f3b5c220f1a72212f9a43f20e3ce142
66babd5efd96482cd8d6a7bb3b0f32f635b07d74
420ee96110a117e5246b6ce92a22c2d620162ed05069ec7d28dece3babfc7bdb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /5/6320745/?oo=1&aab=1 HTTP/1.1
Host: ptaixout.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.totalsportek.space
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/json
x-trace-id: 698c76c406a69218a25025d3f3b3e67f
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://cdn.totalsportek.space
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00812bb7ec9b4fdcf7d7578d53fd5e35; expires=Sun, 07 Dec 2025 21:23:59 GMT; path=/; secure; SameSite=None
oaidts=1733606639; expires=Sun, 07 Dec 2025 21:23:59 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

my.rtmark.net/gid.js?userId=00812bb7ec9b4fdcf7d7578d53fd5e35

172.67.169.157

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js?userId=00812bb7ec9b4fdcf7d7578d53fd5e35
IP
172.67.169.157:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerGoogle Trust Services
Subjectmy.rtmark.net
Fingerprint8A:B7:CD:87:FA:39:07:A8:88:41:1C:9E:2D:0E:97:51:61:75:C1:34
ValidityWed, 06 Nov 2024 10:31:42 GMT - Tue, 04 Feb 2025 10:31:41 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
65 B (65 bytes)
Hash
af943c1b4aea75088c8df1a3cbcef926
11db32ab637929dcd509589190447218f80bde7c
4e235d87b72f1857a68de687e3770190a8bec551d59fb8df17ac32567f12a132

HTTP Headers

GET /gid.js?userId=00812bb7ec9b4fdcf7d7578d53fd5e35 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.totalsportek.space
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://cdn.totalsportek.space
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
timing-allow-origin: *, *
set-cookie: ID=00812bb7ec9b4fdcf7d7578d53fd5e35; expires=Sun, 07 Dec 2025 21:23:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W4RG88uhglhRCoRYmtuSD%2FEtKwYh2ma4TRHKJyd%2FFnEZAC8DCuMb8Tp0yzonyVLXneRW2JjXgFmRs4AeD%2BLW36ufycCUfN3rOYBBcC2xACfDle8Qek6VZbg2GafOigpc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee79478bd5356c4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8866&min_rtt=8013&rtt_var=2230&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3278&recv_bytes=1241&delivery_rate=539024&cwnd=253&unsent_bytes=0&cid=dc2bcd373f858c05&ts=64&x=0"
X-Firefox-Spdy: h2

us.hdtvcloud.com/v1/channel

188.114.96.1

200 OK

573 B

URL POST HTTP/2
us.hdtvcloud.com/v1/channel
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerGoogle Trust Services
Subjecthdtvcloud.com
FingerprintC8:FB:8E:44:C4:E4:F5:0B:40:AB:CA:35:A5:D0:8C:94:25:6D:A7:61
ValiditySun, 17 Nov 2024 13:26:00 GMT - Sat, 15 Feb 2025 13:25:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (665), with no line terminators
Size
573 B (573 bytes)
Hash
db68b25a2a63f927bdcafaf537c0e62e
812a3e1d2231ea6e5539f3f8c398321116e5f18c
f6dbb1c0ecd87a4d982b4cfe1e51b4dce1ba5f957f7102c4ba0bfc84f362473a

HTTP Headers

POST /v1/channel HTTP/1.1
Host: us.hdtvcloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://la12hd.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 280
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:24:01 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GBp8hChdp3rcsOeo7ODQPic4jdXF8QMrOSEGUgz3AEUbKLVAIlKoLhJdans%2BhrpU6LIa5StVthZR6sPZ8iLcm%2FwpOkt8%2FdgPhNFUJ7pHTdbAebTlaHOWnEpGe5q3ll4IhJQl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee794820f6e1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=13845&min_rtt=8046&rtt_var=12482&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3278&recv_bytes=1538&delivery_rate=528081&cwnd=254&unsent_bytes=0&cid=11491ad12a430486&ts=145&x=0"
X-Firefox-Spdy: h2

youradexchange.com/script/suurl5.php?r=8387050&cbur=0.27425842745663076&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.totalsportek.space%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=loqwo.site&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1733606639703&srs=99919ee8daa0504ef2ebfa90517be393&atv=57.0&abtg=1&adbv=3-cdn-js

104.21.91.188

200 OK

958 B

URL GET HTTP/2
youradexchange.com/script/suurl5.php?r=8387050&cbur=0.27425842745663076&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.totalsportek.space%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=loqwo.site&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1733606639703&srs=99919ee8daa0504ef2ebfa90517be393&atv=57.0&abtg=1&adbv=3-cdn-js
IP
104.21.91.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerGoogle Trust Services
Subjectyouradexchange.com
Fingerprint8B:14:37:06:AD:3B:34:24:D2:1C:2E:8F:85:18:45:17:CE:7A:8F:77
ValidityFri, 06 Dec 2024 14:16:45 GMT - Thu, 06 Mar 2025 14:16:44 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (985), with no line terminators
Size
958 B (958 bytes)
Hash
652f41ebd94d1ff5f56fe2cb5ed75ccb
9c30b5be98cf492001a9e34f4da06ca8fdace604
d837b38904f391428496014f4b276e38562e2e232a80a74d22557bebc73271e3

HTTP Headers

GET /script/suurl5.php?r=8387050&cbur=0.27425842745663076&cbiframe=1&cbWidth=1100&cbHeight=619&cbtitle=&cbpage=https%3A%2F%2Fcdn.totalsportek.space%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=loqwo.site&ufp=Linux%20x86_64%2FMozilla%2FNetscape%2Ftrue%2Ffalse%2F1280x10240en-USunknown4824%20bits&ts=1733606639703&srs=99919ee8daa0504ef2ebfa90517be393&atv=57.0&abtg=1&adbv=3-cdn-js HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://la12hd.com/
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n8jvxFECBu80NBgL0LywQfY1b%2F%2BqCWC6NWrfsh0y0SdNYo9MT9dgBbrvA2wwB36Zd%2FQfcidNeOATsotaQylRwco%2BYWe7nmUYxWOqVxolacs3jm29S9%2F44NZlH4i99eScmZw8FF0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee7947a9cf00b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8673&min_rtt=7871&rtt_var=1911&sent=8&recv=10&lost=0&retrans=0&sent_bytes=3220&recv_bytes=1338&delivery_rate=543067&cwnd=254&unsent_bytes=0&cid=b1f59abc19733585&ts=212&x=0"
X-Firefox-Spdy: h2

cdn.totalsportek.space/favicon.ico

172.67.158.139

404 Not Found

555 B

URL GET HTTP/3
cdn.totalsportek.space/favicon.ico
IP
172.67.158.139:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Certificate
IssuerGoogle Trust Services
Subjecttotalsportek.space
Fingerprint81:DC:39:20:B0:D7:80:FE:6A:82:99:28:26:EE:1A:DA:CE:90:84:63
ValiditySat, 02 Nov 2024 06:46:45 GMT - Fri, 31 Jan 2025 06:46:44 GMT

File type
HTML document, ASCII text, with very long lines (581), with no line terminators
Size
555 B (555 bytes)
Hash
e9e4f9c9480bb14ad8343f37e3fb9b99
628fcbc6080fd3e684d1def2e5f67e98133ffa3b
85e4b614933e56b4531289e0bc3d2665db1f2b9d04d2c756a4a72b867c059594

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: cdn.totalsportek.space
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.totalsportek.space/embed77/?event=stack.html&link=1&domain=&force=https://la12hd.com/vivo/canales.php?stream=sporttv1&ask=1733607000&lgt=3&noplayer=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 150
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WkJafjuq3tPy6FK%2Fq1eo2Bf%2FQdZZ4L%2F8%2FSbG%2FkZJKt06ZuT9dOZVBm3Brm84aXvzGRr6ETZIPy30sqBBE2hwUKx%2FrBexetcK5Q1zdGt1CKIfl66Z3uHLa8FLD%2BXtc6yx6QITpvt2O%2BlS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee7947699ab568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=22127&min_rtt=9200&rtt_var=10950&sent=13&recv=8&lost=0&retrans=0&sent_bytes=4785&recv_bytes=1668&delivery_rate=1852&cwnd=12000&unsent_bytes=0&cid=32bb0da746ba5ea6&ts=659&x=1", cfExtPri, cfHdrFlush;dur=0

y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/49-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738

0.0.0.0

0 B

URL GET
y2fzdgxl.la10tv.com/sporttv1/tracks-v1a1/2024/12/07/21/23/49-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738
IP
0.0.0.0:0
ASN
#0

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sporttv1/tracks-v1a1/2024/12/07/21/23/49-06000.ts?token=1b362a56f3da3fc37a480cf722f6363614227f1b-90-1733641738-1733605738 HTTP/1.1
Host: y2fzdgxl.la10tv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://la12hd.com/
Origin: https://la12hd.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

la12hd.com/js/aclib.js?v=3.07

185.66.88.45

200 OK

182 kB

URL GET HTTP/2
la12hd.com/js/aclib.js?v=3.07
IP
185.66.88.45:443
ASN
#30860 Virtual Systems LLC

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerLet's Encrypt
Subjectla12hd.com
Fingerprint40:EE:73:FE:8B:6B:ED:31:1D:03:CC:D9:81:C0:3F:01:BF:3B:74:4E
ValidityWed, 27 Nov 2024 18:57:47 GMT - Tue, 25 Feb 2025 18:57:46 GMT

File type

Size
182 kB (181637 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /js/aclib.js?v=3.07 HTTP/1.1
Host: la12hd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/vivo/canales.php?stream=sporttv1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: application/javascript
last-modified: Sat, 07 Dec 2024 21:00:01 GMT
vary: Accept-Encoding
etag: W/"6754b751-2c585"
expires: Sun, 08 Dec 2024 09:23:59 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2

loqwo.site/script/ut.js?cb=1733606639697

188.114.97.1

200 OK

66 kB

URL GET HTTP/2
loqwo.site/script/ut.js?cb=1733606639697
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://la12hd.com/vivo/canales.php?stream=sporttv1
Certificate
IssuerGoogle Trust Services
Subjectloqwo.site
FingerprintF1:E1:7B:2B:E7:AA:0C:4B:18:64:D5:2E:1A:92:BB:AF:D2:40:14:8D
ValiditySat, 30 Nov 2024 11:14:27 GMT - Fri, 28 Feb 2025 11:14:26 GMT

File type

Size
66 kB (66473 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /script/ut.js?cb=1733606639697 HTTP/1.1
Host: loqwo.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://la12hd.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 07 Dec 2024 21:23:59 GMT
content-type: text/javascript
x-goog-generation: 1733127707295818
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 66473
x-goog-hash: crc32c=VBET1w==, md5=SvoqyZ+XMx3JgmPUkCKpWA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
x-guploader-uploadid: AFiumC5mPg-iVWrINpNpxWJh8hd6u4oBfHOXvRcxwdWTJcgRdueAZMFt013jFOa-8_FWr1Wf2tF2P5cFYA
expires: Sat, 07 Dec 2024 20:42:08 GMT
cache-control: public, max-age=14400
age: 2894
last-modified: Mon, 02 Dec 2024 08:21:47 GMT
etag: W/"4afa2ac99f97331dc98263d49022a958"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LmBkjSj6SX1e4ngLv0VbbJ3bE5YjE4sN7LhAzqp7tbUsQBxFUSatViTC5wRyM81NRTqIkmpuk7vovyMsNC5mQEloRMl7z%2F1YnEhHO5Pxbs5H6wECtLvAps1v57EI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee7947abc1fb4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=8684&min_rtt=7892&rtt_var=2112&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3198&recv_bytes=1064&delivery_rate=544429&cwnd=253&unsent_bytes=0&cid=254da5bcabe01e6d&ts=42&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (53)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML