{"report_id":"36f2d26b-2365-49ce-87e2-038083386027","version":6,"status":"done","tags":["dyndns"],"date":"2026-03-12T16:07:02Z","url":{"schema":"https","addr":"cast.ufcfan.org/?inviteCode=27416A36","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":0,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"final":{"url":{"schema":"https","addr":"cast.ufcfan.org/?inviteCode=27416A36","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"title":"Register","dom":{"size":4620,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"4610037d6c1ca7ba2d1aba28295af26c","sha1":"7650f596a3d6fc71abb4dca3fbfa486a5be6ca9f","sha256":"a4e68f1e080507e01126779158ec09757c23f37eb0af680b358afe9a9a7231a0","sha512":"291ff4cd0a8bf6ddc6a2738f1c9ca7f3923e5503941b012c008c00062895eda40884ebc65e573b224e4b8391c1b35972a7a01ab1cd1b0356f10230dff0a0affe","ssdeep":"96:GMATF1xAym0jtm6dOvAeRHkXbiYXZMCb5ZtIiYXW3L+l6lZTh3o1SV:GMATFjrmitm6dqAUEXbN/7eNwCl6lxh1","tlshash":"ff9196a220000d37946f96b52d82db4630d9c453ee17418457f9eb9ee3e6ec3ca3575d","dom_hash":"domhash9cfafc2839ecefcc8b120d1284ec5809","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"cast.ufcfan.org/?inviteCode=27416A36","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":0,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-16T16:07:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]},"summary":[{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-08T22:29:46.591494Z","alert_count":0,"request_count":2,"received_data":261098,"sent_data":1019,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cast.ufcfan.org","ip":{"addr":"91.234.194.126","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"domain_registered":"2009-09-10","domain_rank":0,"first_seen":"2026-03-12T16:07:02.942569Z","last_seen":"2026-03-12T16:07:02.942569Z","alert_count":3,"request_count":3,"received_data":73205,"sent_data":1509,"comment":"","tags":null,"fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"cast.ufcfan.org/?inviteCode=27416A36","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"65e288fca20963e09b77082ffdee49aa","sha1":"b1633d72adf2cc780830bea76f8402ad93b9f125","sha256":"7a3f6256ade018ddd405b783bf9d306a36985cb1038c30b65a09ee3796fe6ed4","sha512":"a025cde64005e9c706b2e0ab0b635808eadb73e7cc1938b8d239fb3f11dc9f455b7848cb724351762069069d4e7aee99e34a4c20c7cd64b05a5de8a378bb2058","ssdeep":"","tlshash":"ae016f5670504d7a08ff59fa39c7dba834e94061bc458020193cdd945637e86d63bbed","size":854,"data":"","first_seen":"2026-03-12T16:07:05.761011Z","last_seen":"2026-03-12T16:16:20.74559Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"cast.ufcfan.org/?inviteCode=27416A36","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-12T16:06:40.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ad-cast.wtfilm.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Mar 2026 02:16:25 GMT","end":"Tue, 09 Jun 2026 02:16:24 GMT"},"fingerprint":{"sha1":"27:45:12:4E:41:7C:1E:FD:9A:77:A7:7C:F4:24:21:D2:93:94:E4:5D","sha256":"43:7D:D2:1A:A2:24:52:39:87:24:F1:D0:AD:8C:31:6F:EA:DB:2A:FD:D6:71:45:C0:2C:6E:8E:AB:2D:89:20:C8"}}},"request":{"raw":"GET /?inviteCode=27416A36 HTTP/1.1\r\nHost: cast.ufcfan.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 12 Mar 2026 16:06:40 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 1400\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: fa2f5eb538511c32f87215f01692d8a3\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=ngadg7hknli6sgb29tjng8frt3; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\naccept-ranges: bytes\r\nalt-svc: h3=\":443\";ma=86400\r\nx-request-id: fa2f5eb538511c32f87215f01692d8a3\r\nedge-cache-engine-hit: MISS\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":4623,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"d53636f23bb65f80a2376a36e37b7761","sha1":"1e29cb444921b8c48705585e0e534c4dcc734cf7","sha256":"e5a57db1a4184178dba89f733a53e87df376477d5150393019d25b3198109dee","sha512":"62607c2ad7505c8b534575c7d684b9bd6a7af1d174280777df9f150ca847d7b3a0108a0b21c873fb1524f5d8625977ea080e5e9fe5f258ecf38a61c1c550141b","ssdeep":"96:aMATF1xAym0jtm6dOvAeRHkXbiY6cMCa5ZtIiY6H3L+l6lZTh3o1Sj:aMATFjrmitm6dqAUEXbNfoeNACl6lxhD","tlshash":"2e9196a220000d37906fa6b52d82db4630a9c453fe17418457f9e75ed3d6ec3ca3575d","first_seen":"2026-03-12T16:07:05.757303Z","last_seen":"2026-03-12T16:07:05.757303Z","times_seen":1,"resource_available":false,"data":null}},"time_used":365,"timings":{"blocked":113,"dns":37,"connect":32,"send":0,"wait":132,"receive":1,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://cast.ufcfan.org/?inviteCode=27416A36","date":"2026-03-12T16:06:41.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.0/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cast.ufcfan.org/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 12 Mar 2026 16:06:41 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 18859\r\ncf-ray: 9db40c2b0d0f32fa-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"656632a7-49ab\"\r\nlast-modified: Tue, 28 Nov 2023 18:34:15 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 31873\r\nexpires: Tue, 02 Mar 2027 16:06:41 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=CdBuuuT51Noob%2FVJgPPZ9dTKZpbYl%2BTgTdD%2BBYiuLZRaR0iE5QoAVPgOddjtdPkjT8rvjocHMfMo2wr%2FuB9q%2F1f%2FdOW5WkRAzrCtSQCKIPNM71R16%2Fqj7xmHvw1EfObkFo3Hmlns\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":102526,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (52276)","md5":"c43cd173eeeba2f72aa6b431d06b8c07","sha1":"427a692f7f39eabb3d5b8510aee2743025daf813","sha256":"c880eb3d25c765d399840aa204fec22b3230310991089f14781f09a35ed80b8a","sha512":"02f6f6422b83104bc1e1b64961d7edda63635528417ed2dd3c6f0527457b8ab4cb43c528d2a70fc61e0f96aec6e6d1a6d2b53ed523e1568b6d78ba41111c1393","ssdeep":"1536:vwMCMPMCMjMCM4MCMwMCM3sVMX709gbPMfjSFOTyPG9ZpgmLCq:P709gMGFiyPG9ZimLCq","tlshash":"4fa3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2024-01-04T18:36:36Z","last_seen":"2026-06-13T13:59:03.47014Z","times_seen":11452,"resource_available":false,"data":null}},"time_used":104,"timings":{"blocked":30,"dns":1,"connect":1,"send":0,"wait":40,"receive":2,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cast.ufcfan.org/im/reg.jpg","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cast.ufcfan.org/?inviteCode=27416A36","date":"2026-03-12T16:06:41.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ad-cast.wtfilm.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Mar 2026 02:16:25 GMT","end":"Tue, 09 Jun 2026 02:16:24 GMT"},"fingerprint":{"sha1":"27:45:12:4E:41:7C:1E:FD:9A:77:A7:7C:F4:24:21:D2:93:94:E4:5D","sha256":"43:7D:D2:1A:A2:24:52:39:87:24:F1:D0:AD:8C:31:6F:EA:DB:2A:FD:D6:71:45:C0:2C:6E:8E:AB:2D:89:20:C8"}}},"request":{"raw":"GET /im/reg.jpg HTTP/1.1\r\nHost: cast.ufcfan.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cast.ufcfan.org/?inviteCode=27416A36\r\nCookie: PHPSESSID=ngadg7hknli6sgb29tjng8frt3\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 12 Mar 2026 16:06:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 66923\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: 5dfa65d9e9edac24cb51f45742996591\r\nlast-modified: Wed, 11 Mar 2026 05:53:44 GMT\r\naccept-ranges: bytes\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\nalt-svc: h3=\":443\";ma=86400\r\nx-request-id: 5dfa65d9e9edac24cb51f45742996591\r\nedge-cache-engine-hit: MISS\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":66923,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1280x534, components 3","md5":"b5ef33add445bebc2723bf033354fb3e","sha1":"727a98792d734fde2243d94d4deb5ed13d4739c0","sha256":"14ffac567e58cb9c69131deb2e55d1386ce824e9ee41cb246b2248dce03b5b1c","sha512":"0194e0fbe2a7aa57e68639f829f47e8b7f0b6744eb3313b274052bc80a3cdedd849d2c121ed1177587799bbc2efaa45e08e0574035730e09a7a4ae775c5b960e","ssdeep":"1536:I40EJXtLnVTzyZKvm8TolVbDzHBJyBRQQ5cr35ZS:IjGVnh4vlVbhJyBsi","tlshash":"986302aeebb13346ca3a01768044cf33b7b2f956aa627152c2dfb9542164774e064bcd","first_seen":"2026-03-12T16:07:05.758881Z","last_seen":"2026-03-12T16:16:20.73835Z","times_seen":2,"resource_available":false,"data":null}},"time_used":170,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":89,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.0/webfonts/fa-solid-900.woff2","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://cast.ufcfan.org/?inviteCode=27416A36","date":"2026-03-12T16:06:41.248Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 13 Jan 2026 22:16:05 GMT","end":"Mon, 13 Apr 2026 23:15:55 GMT"},"fingerprint":{"sha1":"D9:00:47:77:A5:47:66:A1:6F:DA:EB:4B:BB:BF:67:49:BF:2C:A4:75","sha256":"07:A7:3E:4A:B2:9F:0A:07:6C:78:A7:7B:DC:2B:68:A1:84:7A:7F:1B:45:6C:71:8E:5E:79:F3:11:1A:6C:4F:62"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.5.0/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://cast.ufcfan.org\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdnjs.cloudflare.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Thu, 12 Mar 2026 16:06:41 GMT\r\ncontent-type: application/octet-stream; charset=utf-8\r\ncontent-length: 156532\r\ncf-ray: 9db40c2c0cef1806-ARN\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\netag: \"656632a7-26374\"\r\nlast-modified: Tue, 28 Nov 2023 18:34:15 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 685640\r\nexpires: Tue, 02 Mar 2027 16:06:41 GMT\r\naccept-ranges: bytes\r\npriority: u=4,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=AmZewPmqJBLzcN3O%2FdSWhxfMO6BhuzVZyuhO8LMjVGbuWlBSCjAULEiEwYZOqZV3imPDckHnGkpmYkn3LeMo3mBk2uJ%2Fvb4R%2BX2tynnNyOsdhH70o9rqeg%2B%2F%2Fi54UnXECrdqzb5x\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":156532,"size_decoded":0,"mime_type":"application/octet-stream; charset=utf-8","magic":"Web Open Font Format (Version 2), TrueType, length 156532, version 773.256","md5":"d465bccb9edf0873f021f66d4b09d89c","sha1":"214f3c71de28c682602aecd39e9ad2bba15f1b0c","sha256":"f4c5a5b297e623bc159679563a4d1eb16e409ca3b57698fbc00fd2c907dadae0","sha512":"35d7523f48386e89b1cad6a47df65d64415ab9c45e6425bb4ab25ac9510f6d2e9de3d7cad79c2491660e885d7a38d3ffa9e93eb50ae045fbd072deaf114e10b8","ssdeep":"1536:HrPC5zUBeCGcReONEpKZZbwEPvdThY0E2eXOtr9pVhw+J3E6gbzlPAzJ+Zn+PMY6:TC5oNnZbwC9Wie+B9pVSeE6dMZnaBi","tlshash":"00e313b58f11a1c781b12217db1a54f8da785eec5e3f968cc5a07786214dd4f93dcca0","first_seen":"2024-01-04T18:36:36Z","last_seen":"2026-06-13T13:15:35.738397Z","times_seen":7911,"resource_available":false,"data":null}},"time_used":84,"timings":{"blocked":31,"dns":1,"connect":0,"send":0,"wait":19,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cast.ufcfan.org/favicon.ico","fqdn":"cast.ufcfan.org","domain":"cast.ufcfan.org","tld":"ufcfan.org"},"ip":{"addr":"91.234.194.126","port":443,"asn":210403,"as":"Groupe LWS SARL","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cast.ufcfan.org/?inviteCode=27416A36","date":"2026-03-12T16:06:41.343Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.ad-cast.wtfilm.site","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 11 Mar 2026 02:16:25 GMT","end":"Tue, 09 Jun 2026 02:16:24 GMT"},"fingerprint":{"sha1":"27:45:12:4E:41:7C:1E:FD:9A:77:A7:7C:F4:24:21:D2:93:94:E4:5D","sha256":"43:7D:D2:1A:A2:24:52:39:87:24:F1:D0:AD:8C:31:6F:EA:DB:2A:FD:D6:71:45:C0:2C:6E:8E:AB:2D:89:20:C8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cast.ufcfan.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cast.ufcfan.org/?inviteCode=27416A36\r\nCookie: PHPSESSID=ngadg7hknli6sgb29tjng8frt3\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Thu, 12 Mar 2026 16:06:41 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncontent-length: 355\r\nserver: fastestcache\r\nedge-cache-engine: varnish\r\nedge-request-id: 0e91348b42e575e7c02b0bf8abd700cd\r\nedge-cache-engine-mode: ACTIVE\r\nage: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-06-13T14:26:11.936245Z","times_seen":40122,"resource_available":true,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - DynDNS domain","verdict":"suspicious","severity":"low","comment":"","tags":["dyndns"],"meta":null}]}}]}