www.rojadirectaenvivo.club/2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 www.rojadirectaenvivo.club/2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: www.rojadirectaenvivo.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 20:15:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 26 Jan 2023 21:15:54 GMT
Location: https://www.rojadirectaenvivo.club/2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ifdIzI2D8zx4nC6kB0jhv%2BNCE%2BnAx3%2FByU4TvrvIjVsMrYtHVn6ucRuoHH15rNfsJSiSK4K6FgMbyUZkanZL4JNj0Vytj1kxaAG4ygi1UHINHES7QlyvKZeMGfkfKm5HmfNrksLHAM35D6atEA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78fbec5af8260b39-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5780
Expires: Thu, 26 Jan 2023 21:52:14 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7023
Expires: Thu, 26 Jan 2023 22:12:57 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 19:42:56 GMT
content-type: application/json
age: 1978
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2168
Expires: Thu, 26 Jan 2023 20:52:02 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: r2zLbaGDCjiFu2mJPMAr0bk2e4gJYYwPpHMQV3hdomKJXQn0V0cveXdjQ4FXCOnGl75FuFF0DdM=
x-amz-request-id: YMA09EH1KYYHVFZX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 19:49:07 GMT
age: 1607
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 45cc857919d7f1903321646f55f76f98
36b43ee21791a95c57bdf8bea43129de7ca181c0
9e773decebd7072360d217c173186e20d43c9ba81aaaec9436257852ca73e788
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9E773DECEBD7072360D217C173186E20D43C9BA81AAAEC9436257852CA73E788"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10848
Expires: Thu, 26 Jan 2023 23:16:42 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 20:15:54 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 45cc857919d7f1903321646f55f76f98
36b43ee21791a95c57bdf8bea43129de7ca181c0
9e773decebd7072360d217c173186e20d43c9ba81aaaec9436257852ca73e788
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9E773DECEBD7072360D217C173186E20D43C9BA81AAAEC9436257852CA73E788"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10848
Expires: Thu, 26 Jan 2023 23:16:42 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 1.6 kB IP 142.250.74.163:0
Hash 5ee40ed0e96bb31451e2397e733462e4
59bd437063c6ad29997812297f5f2b1197a7eef7
ac5ef026430bc0d42c81ed2b997037418bf4b1784249570aaaf7ae3b7a48de4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 20:15:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
142.250.74.106200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
IP 142.250.74.106:0
File type Unicode text, UTF-8 text, with very long lines (65480)
Hash b582b2eca79a750948dbb3777aeaaadb
bf0ea1c8a7b4a55779cbb3df1f1d75cc19910e9f
04c7f19e1ae294cc641f6c497653b5c13c41b258559f5f05b790032ccca16c82
GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33621
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 12:46:08 GMT
expires: Mon, 22 Jan 2024 12:46:08 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 372586
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 2.3 kB IP 142.250.74.163:0
Hash e8ee39a9e15e3ed67caa4caacdc10beb
f3f1b49c54e999b5d32597e0457f356be997760a
d13854002493418015574dae36fe6562e1c0d22a4b2181e11204153c7759c3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 20:15:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6950d84f08b5ef6dec76c345a74f4b3
4a997b805be4fd09bd2274d223c225a023696377
fcff4aef9adca6f7a579f55e5646ec3460d3e3cfb6efd80952a2286ae91a443e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FCFF4AEF9ADCA6F7A579F55E5646EC3460D3E3CFB6EFD80952A2286AE91A443E"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10612
Expires: Thu, 26 Jan 2023 23:12:46 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f6950d84f08b5ef6dec76c345a74f4b3
4a997b805be4fd09bd2274d223c225a023696377
fcff4aef9adca6f7a579f55e5646ec3460d3e3cfb6efd80952a2286ae91a443e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "FCFF4AEF9ADCA6F7A579F55E5646EC3460D3E3CFB6EFD80952A2286AE91A443E"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10612
Expires: Thu, 26 Jan 2023 23:12:46 GMT
Date: Thu, 26 Jan 2023 20:15:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 19:41:40 GMT
age: 2055
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
jsc.adskeeper.com/r/o/rojadirectaenvivo.club.1399608.js
104.18.36.64200 OK 1.0 kB URL HTTP/2 jsc.adskeeper.com/r/o/rojadirectaenvivo.club.1399608.js
IP 104.18.36.64:0
File type ASCII text, with very long lines (2690)
Hash 3179f305b0b9c24010e8a2929bc8c82c
aca4deb2fa01d187ee69cf1e1e43a3d7e67fc0ad
bf41400ad925f40b6bc913fca7001126f07cffc67b14c9bc264e0b4646183787
GET /r/o/rojadirectaenvivo.club.1399608.js HTTP/1.1
Host: jsc.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: text/javascript
content-length: 1025
x-amz-id-2: efaAxb6pV03MLB2ToCab4Ex+ai6BWXGDrHIQXIlweCFlnwDJ7DChM0CY5fRhZojA6RLAHrEqlJC8/B2t6VrO/g==
x-amz-request-id: BH271XEVZWKF3840
last-modified: Mon, 16 Jan 2023 15:58:07 GMT
etag: "3179f305b0b9c24010e8a2929bc8c82c"
content-encoding: gzip
x-amz-version-id: QVDp3Qi2HBUWhAlreWZyEfVVCJPxGOQs
cf-cache-status: HIT
age: 5337
expires: Fri, 27 Jan 2023 00:15:55 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec60f8a8b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
waust.at/c.js
104.26.5.7200 OK 6.7 kB IP 104.26.5.7:0
File type ASCII text, with very long lines (12997), with no line terminators
Hash 030c370b53e9ebabe4f1c4cb8fe6e2e6
56beed73f957712d067dfe346c834163ea2945f7
a6d08df3b4a4d4d8967d65971420196305ace914980af20998e020761875997f
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-32c5"
expires: Fri, 27 Jan 2023 20:12:05 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y5gWGLruDL%2FbBPFu3eQ8vc5rURV%2B50OWwFYlioLIJa8IgXS%2FMTGycqkek2ugjo2R%2FtBq%2FdsRQvPaPD6Hurzj7iR1ZpyiybJG3WzX0hRCsS%2Bcgp1PIRHWcE6m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec60b833b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5864
Expires: Thu, 26 Jan 2023 21:53:39 GMT
Date: Thu, 26 Jan 2023 20:15:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f1b9f28b614bacfd580d079eb9d93fcf
2ccbf3c7c9f1cf87e54690b0100aca0e34d5d63f
b604687f2c985948da258e19ccdf061442af8aae21c39521f8e7885d8bad319a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B604687F2C985948DA258E19CCDF061442AF8AAE21C39521F8E7885D8BAD319A"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10951
Expires: Thu, 26 Jan 2023 23:18:26 GMT
Date: Thu, 26 Jan 2023 20:15:55 GMT
Connection: keep-alive
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.rojadirectaenvivo.club
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec627a84b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 175510e096d45d02e7b8e2e1c0c6c7f4
9136d97970a3640c45717fa966a5e0e72a17f704
a13cf49b474c6c84e7d07a0e69ab920c689972dd1a953647493c399eff4dcdd1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A13CF49B474C6C84E7D07A0E69AB920C689972DD1A953647493C399EFF4DCDD1"
Last-Modified: Tue, 24 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Thu, 26 Jan 2023 21:13:48 GMT
Date: Thu, 26 Jan 2023 20:15:55 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/oXSJXOkP2-U
142.250.74.163200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/oXSJXOkP2-U
IP 142.250.74.163:0
Hash 3b3a5bf08dfca27627ccd6d7154ed303
568221ee0fce27411995632c9bc83de5d98c2890
690b6d312cb418194d6b12c979ad606b8eb3b219cacb077c1f968ed76547fed4
POST /s/gts1p5/oXSJXOkP2-U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 20:15:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
whos.amung.us/pingjs/?k=68cc4uqb8f&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadi&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&y=&a=0&d=0.772&v=27&r=404
104.22.74.171200 OK 114 B URL HTTP/2 whos.amung.us/pingjs/?k=68cc4uqb8f&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadi&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&y=&a=0&d=0.772&v=27&r=404
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash be98c2930d35a04cac70eaf2776b9b1a
a0bf699998d0e235d4fb68acd6ef3d05b6019457
cae9fe678412d7114bb651b1fd0e9abf275ceedf141ee88b0a2906c20729cb6d
GET /pingjs/?k=68cc4uqb8f&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadi&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&y=&a=0&d=0.772&v=27&r=404 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78fbec611af29926-ARN
X-Firefox-Spdy: h2
gkld0v3zukqi.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 gkld0v3zukqi.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: gkld0v3zukqi.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:55 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
push.services.mozilla.com/
44.238.212.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.212.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 90QIBDHPaaGQTLrxNbk0qg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tDzas+lTzX4vck8LnxFUPArLClI=
signpersecute.com/85/f5/99/85f599856192bec55237f7e5ac45ce37.js
173.233.137.36200 OK 21 kB URL HTTP/1.1 signpersecute.com/85/f5/99/85f599856192bec55237f7e5ac45ce37.js
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (60186), with no line terminators
Hash 873ba1d3e1223323ba068809b8f3be91
d3ac9bcc867a89a4eb3bddf8ad766d15c370d86c
1bac0eaa7d3e438ce8411b250258ac0d49374cbddd3e7f7d82c7f86b67d98298
Analyzer Verdict Alert quad9 Sinkholed
GET /85/f5/99/85f599856192bec55237f7e5ac45ce37.js HTTP/1.1
Host: signpersecute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b6ef70f6a0e1057755b34710e6c560b4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7cd96ccfe4dc44afc2d44fd000556820
4ec95cdb153ef2aadd20db225e0636ee74630a89
b333f1090ded2993463fc97e4b3b9aa713554c7588a1e83d2905e3ee58987f3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B333F1090DED2993463FC97E4B3B9AA713554C7588A1E83D2905E3EE58987F3E"
Last-Modified: Tue, 24 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3650
Expires: Thu, 26 Jan 2023 21:16:45 GMT
Date: Thu, 26 Jan 2023 20:15:55 GMT
Connection: keep-alive
t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.club&_ss=57fofvurzx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3qxk&_cb=_dtspv.c
141.101.120.11200 OK 523 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=rojadirectaenvivo.club&_ss=57fofvurzx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3qxk&_cb=_dtspv.c
IP 141.101.120.11:0
File type ASCII text, with no line terminators
Hash 8da35d2f72fe1ce7f903806c5453b6b7
b24dcc071358efad37d10535ca98952981f8fd9f
1efd364654c5af5ba733fa4b23e62fc9a9c36bf82b21c86939c2a8382fd5cd76
GET /pv/?_a=v&_h=rojadirectaenvivo.club&_ss=57fofvurzx&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3qxk&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Cookie: m=1; oa=1; df=1674764155
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript
x-t: 0.168
x-c: 0
expires: Thu, 26 Jan 2023 20:15:54 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LrYPv3NKq%2Fs3LHsCYyq58zPJire0wMf9QBo9Yiqc09UpwiSmYaKtR9vxjGweVDsdBI4juKFTL%2F6v3seX%2BxexdTJ97ynLiYls7XN6%2FA99SmdKujY%2B0ob51uqhIHj%2FBpA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec630a1bf156-ARN
content-encoding: br
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&j=
141.101.120.11200 OK 29 kB URL HTTP/2 t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&j=
IP 141.101.120.11:0
File type ASCII text, with very long lines (2077)
Hash fb1f5c36c412e39e5c5343c27363080b
b8a297661ca1fa5165bd624992baef7e24dd39eb
fafb8f89975beec923f51d07fbe608df01e68a048abac4a861a895ee908e949e
GET /i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Thu, 26-Jan-2023 21:39:15 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Fri, 27-Jan-2023 00:15:55 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1674764155; Domain=dtscout.com; Expires=Sat, 06-May-2023 20:15:55 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.496
expires: Thu, 26 Jan 2023 20:15:54 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HQYpvHdnqpRIYH4kcsSb9f7XEJwD7VuR6Llgo9QQhixOLW8LYE70fPy2q7PqMyJQbmKPKztoeAYh9blHf%2FrROrzl34ueYipN26Gu2iyvSUGSgGnNuepvig3pQHX5ov0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec5fe8f7f156-ARN
content-encoding: br
X-Firefox-Spdy: h2
s-img.adskeeper.com/g/13408641/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzE3NTY4NS8xZWM1Nzk5M2YzM2ExYzkxODdiYTQ1NDE2MmE4YjU2NS5qcGVn.webp?v=1674764155-dOQJ6hiz430d5srUC5mtNeLdv8F51U1jQUwggXttA5U
104.18.36.64200 OK 12 kB URL HTTP/2 s-img.adskeeper.com/g/13408641/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzE3NTY4NS8xZWM1Nzk5M2YzM2ExYzkxODdiYTQ1NDE2MmE4YjU2NS5qcGVn.webp?v=1674764155-dOQJ6hiz430d5srUC5mtNeLdv8F51U1jQUwggXttA5U
IP 104.18.36.64:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 41cc575bc17fd20e0a44280d64e20856
bc6bd2ed7ae644255780126bcecb2735fd5ec3dd
926f4450e44e8440f3d10229046b41d21386e01261af681da570f04c95df95a7
GET /g/13408641/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzE3NTY4NS8xZWM1Nzk5M2YzM2ExYzkxODdiYTQ1NDE2MmE4YjU2NS5qcGVn.webp?v=1674764155-dOQJ6hiz430d5srUC5mtNeLdv8F51U1jQUwggXttA5U HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: image/webp
content-length: 12366
x-mg-request-uuid: 1e6b0454-04d0-4162-b713-22c8d3485742
access-control-allow-origin: *
last-modified: Fri, 01 Jul 2022 19:50:27 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 11250912
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec658a0db4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
23.38.200.201200 OK 73 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06cd2eddf805cce44a8cb5178e00d7de
4450e085f121f57255512d5f7c8d4bcffbf77bc5
8c41037c0b242f0fe65640486379d7f6cd91c55f8edd998ea285d8f994ec48f7
GET /AdServer/js/pwt/161673/7165/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 12:15:31 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 73257
cache-control: max-age=117967
expires: Sat, 28 Jan 2023 05:02:02 GMT
date: Thu, 26 Jan 2023 20:15:55 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0e0794742d318d830bb70192940d1ea6
23cf49def92a0b062bcdccbbf61383fb22d58ba0
5078277491858b6974d34d56c4c966210a37ad970bc165a08d9bb6e2510874de
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150075
Date: Thu, 26 Jan 2023 20:15:55 GMT
Etag: "63d28099-1d7"
Expires: Sat, 28 Jan 2023 13:57:10 GMT
Last-Modified: Thu, 26 Jan 2023 13:31:05 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CYUKOy_usl5GyYkRze2O-3KOLxnUyUAtGGUUEQkETfgmfrj3pR7eVg==
Age: 1565
ocsp.digicert.com/
93.184.220.29200 OK 393 B IP 93.184.220.29:0
Hash 0fe797fa58bce73ac0c8ddf9ba9970dd
27eb8b3e74cca48f9c9037f6f3b2c2bfd99f8a54
01936fca8c374b89f1524305d1cb7e115afa7aa61069324b9a2876c3e2e7ef39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5704
Cache-Control: max-age=115692
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 20:15:55 GMT
Etag: "63d1ea1f-117"
Expires: Sat, 28 Jan 2023 04:24:07 GMT
Last-Modified: Thu, 26 Jan 2023 02:49:03 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 447474524ebd9ae1cbb9542a19ef9805
77fcd42a646b8f888734f1af5c7a120f962a18d2
ca96b2437c5e1b4170e7662f62b9ad328c3577d275135be32a01111589d5041b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA96B2437C5E1B4170E7662F62B9AD328C3577D275135BE32A01111589D5041B"
Last-Modified: Wed, 25 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14293
Expires: Fri, 27 Jan 2023 00:14:08 GMT
Date: Thu, 26 Jan 2023 20:15:55 GMT
Connection: keep-alive
code.jquery.com/jquery-latest.js
69.16.175.10200 OK 84 kB URL HTTP/2 code.jquery.com/jquery-latest.js
IP 69.16.175.10:0
Hash ea735805900bbd9b4dc4f93e4348b8d8
2e2d5c3270d6a6a0e4aab05f3a3f4ea8f8f7c07c
962d003a78697a2a9508f3da6cc6a65259f3fb9b59d6eaa1486f7034830494b2
GET /jquery-latest.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-encoding: gzip
content-length: 83875
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-4508e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674764155.dop065.sk1.t,1674764155.cds206.sk1.hn,1674764155.cds212.sk1.c
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash bb6a4402fc2fda13a363fbdc1bfff17e
17adcb4a6a34a2052ef02f944911843038a3abff
a52d0d2727ae3843f465b642f3b0fd24cfa17489064084b8bec79eb5f827603d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capoplay.net
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capoplay.net
access-control-allow-credentials: true
set-cookie: uid_id2=7554711a-4621-4efb-9d2d-dec2a4480410:3:1; expires=Sun, 23 Jan 2033 20:15:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
code.jquery.com/jquery-migrate-1.2.1.min.js
69.16.175.10200 OK 3.1 kB URL HTTP/2 code.jquery.com/jquery-migrate-1.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (7085)
Hash e1084a25976d8b8999acadc7350ffb48
99b723d38b78d8347e8dfa60193b12864a370227
b98359c65420aa3864d5b86ef94c4c9a5fb8c772a905884a5ba4ce55319a3d13
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-encoding: gzip
content-length: 3063
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1c1f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674764155.dop065.sk1.t,1674764155.cds206.sk1.hn,1674764155.cds242.sk1.c
X-Firefox-Spdy: h2
gkld0v3zukqi.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 gkld0v3zukqi.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: gkld0v3zukqi.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:55 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
capoplay.com/capo.js
188.114.96.1200 OK 911 B IP 188.114.96.1:0
File type ASCII text, with very long lines (318)
Hash 027103213c2e265c8e7ed1fca1c288f3
1a3cf201bea86159cd0ee7232b12b55e8638ede6
55d7b7f48fe5ef514c01c480d0a7b67553773eb68adca19b82f8539f4b0078dd
Analyzer Verdict Alert fortinet Malware
GET /capo.js HTTP/1.1
Host: capoplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 16:08:01 GMT
vary: Accept-Encoding
etag: W/"637e4561-4dd"
cache-control: max-age=14400
cf-cache-status: HIT
age: 839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=577lL40KxvFupI9mpTUbRLuSBI0DT5kNXc0B5aCL0cQGcw%2FZLnOrQ6LrLw2aSLV5Nnjs994MZDNNCihHGvIggVlHROT4dHL93O0l%2FjibcvAl0T%2B9MKl2NkulRMZlAjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec6209fab524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 97c8f853674aa4f46349f987349cda66
2dfd92125cb118d935441270547cc0524fec1b55
e452852b1ed2b4fa6e2575a00142ecce9a52104b4d327d78a00de3b3991beeb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E452852B1ED2B4FA6E2575A00142ECCE9A52104B4D327D78A00DE3B3991BEEB8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4935
Expires: Thu, 26 Jan 2023 21:38:11 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a473e335d5a75a94188d2aab086e752e
3f7b53b2360bc19046105106744b8967b9c7633c
504beb5f50f59260821af07aea342f78370a3ff79f0e9d5c1876f618886e076b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5705
Cache-Control: max-age=115692
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 20:15:56 GMT
Etag: "63d1ea1f-117"
Expires: Sat, 28 Jan 2023 04:24:08 GMT
Last-Modified: Thu, 26 Jan 2023 02:49:03 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73ccfcfc07d680ed83eec4f7cd7b1baa
b55e818aa17ab76e9fba449d9322c671e13dfc7b
df7b07e08f3da8f7c5909f367b60b0671bb807d939d61c8689d21d85cfdf2dd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7B07E08F3DA8F7C5909F367B60B0671BB807D939D61C8689D21D85CFDF2DD4"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3306
Expires: Thu, 26 Jan 2023 21:11:02 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
cdn.adskeeper.co.uk/images/adskeeper_svg.svg
104.18.34.236200 OK 11 kB URL HTTP/2 cdn.adskeeper.co.uk/images/adskeeper_svg.svg
IP 104.18.34.236:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (30387)
Hash 1eaa94a55591258677e805f05c00f6dd
afe6407d81e75d3d5c0e526534de5d2f9fc4acd7
ef1fa037e0d70645dd01760b053880a194a2fcf16d3e34cad24b4de22127a6c4
GET /images/adskeeper_svg.svg HTTP/1.1
Host: cdn.adskeeper.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: image/svg+xml
x-amz-id-2: 9+wK7//B9wiKymVhwJBS49yIWsknA1BYnHtl2rpiLd1F4bVgMRR1xL0U37+qHDuhswdKTk5XkFw=
x-amz-request-id: P23ZACW8NK08CPPP
last-modified: Tue, 08 Dec 2020 08:34:59 GMT
etag: W/"93f6d1136fb77e38a0a2c72108588f09"
x-amz-meta-s3cmd-attrs: atime:1607416491/ctime:1607416491/gid:0/gname:root/md5:93f6d1136fb77e38a0a2c72108588f09/mode:33206/mtime:1607416491/uid:0/uname:root
x-amz-version-id: null
cf-cache-status: HIT
age: 5258
expires: Fri, 27 Jan 2023 00:15:55 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec64dc530b39-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js
151.101.129.229200 OK 58 kB URL HTTP/2 cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/p2p-engine.min.js
IP 151.101.129.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0becec4bdcca549fbbcd7449f29912b6
d66b429990c5ae2199da67aee0647a5e24f86833
915b977e0a3c99494844dafd859abc548219517def0d3ce109a8d2e9f1285257
GET /npm/swarmcloud-hls@latest/dist/p2p-engine.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.6.1
x-jsd-version-type: version
etag: W/"2f8c3-sTJMFf3XyOrzQlaA97IEIZ4ANRc"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 26 Jan 2023 20:15:56 GMT
age: 40118
x-served-by: cache-fra-eddf8230033-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 58053
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js
151.101.129.229200 OK 4.2 kB URL HTTP/2 cdn.jsdelivr.net/npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js
IP 151.101.129.229:0
Hash 02f1b993093091d0a9d48db3bcfee8f2
5f5e821d5e0df4293cf0a22d7b4f3adef3837f45
a5382e86201c9393665a359eb8ae3fd2886b4bd7ee86b688fd4e649a5cd1625a
GET /npm/swarmcloud-hls@latest/dist/clappr-p2p-plugin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.6.1
x-jsd-version-type: version
etag: W/"c19-SLjttAW8dcDjADi6J1T2hbhokWc"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 26 Jan 2023 20:15:56 GMT
age: 42637
x-served-by: cache-fra-eddf8230114-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1157
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03201e381b6ad1cd03f4805d1512987b
4383185a3b03d13e37fb0378fc1e74edfa688b29
6287bdb027538b227d0857f8f9122946aa6f05c64b61f452a0ef192d9c6316b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6287BDB027538B227D0857F8F9122946AA6F05C64B61F452A0EF192D9C6316B6"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17075
Expires: Fri, 27 Jan 2023 01:00:31 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 361016edd86e1d52fcdaaee91e600ba4
9a8d4a7d23d689519e608be9ebc11b4bf3c82642
3ef3161407ba4c5e008d4f03f23c22a2733c89828b1d62bce35e675ffbbb174a
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D12433D8EC0DFE70B8A5E80E719950AEA9326A52"
Expires: Fri, 27 Jan 2023 07:00:00 GMT
Last-Modified: Thu, 26 Jan 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2122
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78fbec67bcc0fac4-OSL
cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
151.101.129.229200 OK 141 kB URL HTTP/2 cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
IP 151.101.129.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141142 bytes)
Hash 7e7fdfacdb1943ea810449001d165a53
fc230e8b4a933497a2da4a783574a5b07b889a7e
d530a67ca2ed5e6d11c2f4ef080c8b8c1cc55a587af2ef45da9a9415ebd788cf
GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 26 Jan 2023 20:15:56 GMT
age: 1779
x-served-by: cache-fra-eddf8230106-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 141142
X-Firefox-Spdy: h2
prototypewailrubber.com/pixel/purst?dl=0&th=0&sc=0&rs=832&rd=832&fd=699&bv=22.10.v.9&tmpl=70
173.233.137.44200 OK 0 B URL HTTP/1.1 prototypewailrubber.com/pixel/purst?dl=0&th=0&sc=0&rs=832&rd=832&fd=699&bv=22.10.v.9&tmpl=70
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=832&rd=832&fd=699&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: prototypewailrubber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php&t=%C2%BB%20Real%20Madrid%20vs%20Atletico%20Madrid%20En%20Vivo%20%7C%20Copa%20del%20Rey%20%7C%20Cuartos%20Final%20%7C%20Rojadirecta HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
173.233.137.52200 OK 216 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.137.52:0
Hash 94726ee35859d0d29ade2f7ff11f6af4
3f020f30171d7b2ab941d440aa77d2e1900f5dd6
89f5085a332db6db189d5007015e19397de2ed7a4b2fe21eb35db39d4a22fda3
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7a879b96fc65b254a8453d55c5614f2c
Strict-Transport-Security: max-age=0; includeSubdomains
gkld0v3zukqi.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 gkld0v3zukqi.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: gkld0v3zukqi.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2fd3b5487710791cafa87110d681647a
6f3de59c79cf8f93c3312d917e9bb225a8bb25f9
35c24aa8f70e97185a0a18761f04b283cefecdce3abcd2261ccc6377077730c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35C24AA8F70E97185A0A18761F04B283CEFECDCE3ABCD2261CCC6377077730C5"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Thu, 26 Jan 2023 21:29:49 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r=&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
67.202.105.33200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r=&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 67.202.105.33:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r=&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 20:15:56 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Thu, 26 Jan 2023 20:15:55 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=9bf22e57266744d0be4aae4d1c23daac
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=9bf22e57266744d0be4aae4d1c23daac
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 3fdf5f912643846b468487cf77331ba0
e135dea06f5c1a4b64f5954fe54ca2a5cc4ec2c5
84c81cb0d17c14b349bad69940048b5c27ad53fdefcf9b34ccc544aca51091e8
GET /gid.js?userId=9bf22e57266744d0be4aae4d1c23daac HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capoplay.com
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://capoplay.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=9bf22e57266744d0be4aae4d1c23daac; expires=Fri, 26 Jan 2024 20:15:56 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
141.101.120.11200 OK 1.1 kB URL HTTP/2 t.dtscout.com/i/?l=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 141.101.120.11:0
File type ASCII text, with very long lines (2077)
Hash 92018f03fd8730e1f2be06b77efca00b
06fa2743b743d25c4ac438e7e09a4fd8a0399bb5
48030d9e6455b8923e075d52f334992acc8e06f7db0d9c7dc1a5c47b0a671876
GET /i/?l=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Cookie: m=1; oa=1; df=1674764155
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=2; Domain=dtscout.com; Expires=Thu, 26-Jan-2023 21:39:15 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=2; Domain=dtscout.com; Expires=Fri, 27-Jan-2023 00:15:55 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
x-t: 0.439
expires: Thu, 26 Jan 2023 20:15:54 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3NqQ5sATLMT%2FMiYYc8XZ%2B%2BhSsWLZe7XhtcVPUPn9HPe%2BQN1Bu7XBtq6xzxb3jF1muDtTYRbje%2BA52KkxmTvohFX8u6HwIUWH0cfJkEFVELItXOh1qZ5iX9QrjKgwKdk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec650b08f156-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ac219af7df6a08280d2ab55cfa0e5469
8b32fa019a94e9c13c3b2574870301de8b57b539
37c7b91c30052309120af4f2fe7337e61cbf125a2c63505ed1336fd613dff812
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 05:22:26 GMT
Expires: Wed, 01 Feb 2023 05:22:25 GMT
Etag: "8b32fa019a94e9c13c3b2574870301de8b57b539"
Cache-Control: max-age=464188,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fbec6b4c7c0b4d-OSL
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1674764155683&dn=TC&iso=0&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2023%2Freal-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ac219af7df6a08280d2ab55cfa0e5469
8b32fa019a94e9c13c3b2574870301de8b57b539
37c7b91c30052309120af4f2fe7337e61cbf125a2c63505ed1336fd613dff812
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 05:22:26 GMT
Expires: Wed, 01 Feb 2023 05:22:25 GMT
Etag: "8b32fa019a94e9c13c3b2574870301de8b57b539"
Cache-Control: max-age=464188,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fbec6ae80fb523-OSL
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:56 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
youradexchange.com/ut/hb.php?cb=0.5716723989412147
35.190.41.116204 No Content 0 B URL HTTP/2 youradexchange.com/ut/hb.php?cb=0.5716723989412147
IP 35.190.41.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ut/hb.php?cb=0.5716723989412147 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 706
Origin: https://capoplay.com
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: openresty
date: Thu, 26 Jan 2023 20:15:56 GMT
access-control-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13998
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13998
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13998
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13998
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d59b0db3cc1f31f9154d32804a8e3940
498c310e0f4a84c1350bae55aec0d2a0192f8dda
14a2b4e9763a62478015d8f61bf9e44eb67dfe08a58cc94dc836dc8ff3f1b6cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd53f06d1-60cf-4ced-8bcd-877162b44d2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7014
x-amzn-requestid: 689ad8b2-4ec8-4f61-a31e-7813c9143f9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyFHmEIAMFsHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-7ce5fef1456ecc73690eff07;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t-84fZv6Btjp5l37tn35lW8fY-jNChCVD6qeKV23KtUwnBSphyRkOw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 17:55:36 GMT
age: 8420
etag: "498c310e0f4a84c1350bae55aec0d2a0192f8dda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c02dd6c034e4bd536ba8f1559a02747
a62fca30aac444a13a5c6b48ecb019e50430459c
f16c9d4294973abb91b0f0d63346ab6bf7e3cd8a45899b02842091a790028b5b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F16C9D4294973ABB91B0F0D63346AB6BF7E3CD8A45899B02842091A790028B5B"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9849
Expires: Thu, 26 Jan 2023 23:00:05 GMT
Date: Thu, 26 Jan 2023 20:15:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62e9b7bdca82d18c945851912d8fea8
a7ca44d337c43bc5c6145b26778661c71cc50484
5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:57:18 GMT
age: 80318
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41fd0074a6ce752b1271302feade4cee
6311d1365504f06cb7516606c56c502d553c9d16
544c508899fe8855b0975a87cb0bf35663ab4ad0ec8fd057b3962d50cc001b8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71e9b44e-6d59-411b-90e8-54e0efae62a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7365
x-amzn-requestid: c2a8ae3d-47f8-415f-bf08-78dd12ede3d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwEUbIAMFnag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-38f72fec78120cf113c7a4f7;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rB4HXb1BDKiMZ5Xsb_U1UzBInPftuAryrVUhcE7v6C5qprrGRFooFg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:51:26 GMT
age: 80670
etag: "6311d1365504f06cb7516606c56c502d553c9d16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 80834
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13cd008fb3e2739ec7caadadbd427655
c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1
a300a4fde1863c8b806d0557d9f0adaed19e1c612989d7e3f79a7bb45e6e74dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8822
x-amzn-requestid: e16ae781-25f3-4b7d-b62b-85b35d6571c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwF2KIAMFjDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-377f24bd18dea32564b148bd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n2ULSpeRMRZ9CDjmrwd56ti_gPYh9ApC521naXURI2Bh1eiKwjyHZw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:51:26 GMT
age: 80670
etag: "c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 80608
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:08:23 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 931365461
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:57 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
prototypewailrubber.com/pixel/pure
173.233.137.44204 No Content 0 B URL HTTP/1.1 prototypewailrubber.com/pixel/pure
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: prototypewailrubber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.capoplay.net/
Origin: https://www.capoplay.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:57 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
de.tynt.com/deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
67.202.105.33200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 67.202.105.33:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
expires: Fri, 27 Jan 2023 20:15:57 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Thu, 26 Jan 2023 20:15:56 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ac219af7df6a08280d2ab55cfa0e5469
8b32fa019a94e9c13c3b2574870301de8b57b539
37c7b91c30052309120af4f2fe7337e61cbf125a2c63505ed1336fd613dff812
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 05:22:26 GMT
Expires: Wed, 01 Feb 2023 05:22:25 GMT
Etag: "8b32fa019a94e9c13c3b2574870301de8b57b539"
Cache-Control: max-age=464187,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fbec6cde1e0b4d-OSL
prototypewailrubber.com/pixel/pure
173.233.137.44200 OK 0 B URL HTTP/1.1 prototypewailrubber.com/pixel/pure
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: prototypewailrubber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.capoplay.net
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:57 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1674764156466&dn=TC&iso=1&pu=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 26 Jan 2023 20:15:57 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4718769&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mcapoplay.com%20-%20Embedded%20player&@n0&@ohttps%3A%2F%2Fwww.capoplay.net%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:63862184&@b3:1674764157&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fcapoplay.com%2Fcapo.php%3Fplayer%3Ddesktop%26live%3Dextremotvhuawei&@w
54.39.156.32200 OK 53 B URL HTTP/1.1 s4.histats.com/stats/0.php?4718769&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mcapoplay.com%20-%20Embedded%20player&@n0&@ohttps%3A%2F%2Fwww.capoplay.net%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:63862184&@b3:1674764157&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fcapoplay.com%2Fcapo.php%3Fplayer%3Ddesktop%26live%3Dextremotvhuawei&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash 625578b1c440148d8cae42b1670c440f
96661327a8c8fe750c9f1e186ab528a5ab41d674
0b60b299c6a17ece7811f27b64096c1c6c4861dece2134c385c5692d95ef28d0
GET /stats/0.php?4718769&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mcapoplay.com%20-%20Embedded%20player&@n0&@ohttps%3A%2F%2Fwww.capoplay.net%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:63862184&@b3:1674764157&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fcapoplay.com%2Fcapo.php%3Fplayer%3Ddesktop%26live%3Dextremotvhuawei&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:57 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 53
Connection: close
prototypewailrubber.com/pixel/pure
173.233.137.44200 OK 0 B URL HTTP/1.1 prototypewailrubber.com/pixel/pure
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: prototypewailrubber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.capoplay.net
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 26 Jan 2023 20:15:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 94624e42703a8d05ff562564498cee9b
294a659a7aec0c047e097c50f86d70b952588312
69e75356de8466c767fcd27042fa90585f9c655941f77b2c86548756a718d44f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 20:15:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 00:54:18 GMT
Expires: Wed, 01 Feb 2023 00:54:17 GMT
Etag: "294a659a7aec0c047e097c50f86d70b952588312"
Cache-Control: max-age=448098,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fbec712a04b523-OSL
visariomedia.com/tySvC.php?_=BQFiAAAAAAAACZUAAseFGRBx9xfAWiv5jTma198OBqnsiY7JDk0QmS_VYcDKvgnx2Rrogt2Brj4hAIxy2QesBRARMCiTzenhDOI9_RYIFPmvILd2teFLiGApwcBrAlO4Tq8a5_uVQ6RVuGgv43QuJZkM86_l7jSR4dOeTU_JurauwPprye4E6tG7UQIVETkWRC_KgjfptKyX4pCd0NJSyV-UMcP7F-5wuT1Ujc8BywB7BZxYHsS03q6MnPR6NalmmdS9Ncbwn1eR5M4vY7qLKlpitu7BpY7sEVFXKLaTaiSF541TigSF_1orpirw717mQTwepIgk_ndZggRQhguBJsOUmbnfkGMIvmCKgMQ4vl1YClV7qsHjcrHZCQqygCPZt81_JHw8xJfkqNNwAUMifytGYDV8dNtqQiRD29PRghScFZatG3JM2o7q89KH4K-IrUN89orwXpWWzMPzPBc25ud-9nKU1pGfRiokjX8&v=4&IxFdCXqY=3754710&minBid=&eWUQIqwV=0,0&omNSkGQv=&TdWLCiJo=&s=1280,1024,1,1280,1024,0
216.21.12.16200 OK 44 B URL HTTP/2 visariomedia.com/tySvC.php?_=BQFiAAAAAAAACZUAAseFGRBx9xfAWiv5jTma198OBqnsiY7JDk0QmS_VYcDKvgnx2Rrogt2Brj4hAIxy2QesBRARMCiTzenhDOI9_RYIFPmvILd2teFLiGApwcBrAlO4Tq8a5_uVQ6RVuGgv43QuJZkM86_l7jSR4dOeTU_JurauwPprye4E6tG7UQIVETkWRC_KgjfptKyX4pCd0NJSyV-UMcP7F-5wuT1Ujc8BywB7BZxYHsS03q6MnPR6NalmmdS9Ncbwn1eR5M4vY7qLKlpitu7BpY7sEVFXKLaTaiSF541TigSF_1orpirw717mQTwepIgk_ndZggRQhguBJsOUmbnfkGMIvmCKgMQ4vl1YClV7qsHjcrHZCQqygCPZt81_JHw8xJfkqNNwAUMifytGYDV8dNtqQiRD29PRghScFZatG3JM2o7q89KH4K-IrUN89orwXpWWzMPzPBc25ud-9nKU1pGfRiokjX8&v=4&IxFdCXqY=3754710&minBid=&eWUQIqwV=0,0&omNSkGQv=&TdWLCiJo=&s=1280,1024,1,1280,1024,0
IP 216.21.12.16:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /tySvC.php?_=BQFiAAAAAAAACZUAAseFGRBx9xfAWiv5jTma198OBqnsiY7JDk0QmS_VYcDKvgnx2Rrogt2Brj4hAIxy2QesBRARMCiTzenhDOI9_RYIFPmvILd2teFLiGApwcBrAlO4Tq8a5_uVQ6RVuGgv43QuJZkM86_l7jSR4dOeTU_JurauwPprye4E6tG7UQIVETkWRC_KgjfptKyX4pCd0NJSyV-UMcP7F-5wuT1Ujc8BywB7BZxYHsS03q6MnPR6NalmmdS9Ncbwn1eR5M4vY7qLKlpitu7BpY7sEVFXKLaTaiSF541TigSF_1orpirw717mQTwepIgk_ndZggRQhguBJsOUmbnfkGMIvmCKgMQ4vl1YClV7qsHjcrHZCQqygCPZt81_JHw8xJfkqNNwAUMifytGYDV8dNtqQiRD29PRghScFZatG3JM2o7q89KH4K-IrUN89orwXpWWzMPzPBc25ud-9nKU1pGfRiokjX8&v=4&IxFdCXqY=3754710&minBid=&eWUQIqwV=0,0&omNSkGQv=&TdWLCiJo=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: visariomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Thu, 26 Jan 2023 20:15:58 GMT
X-Firefox-Spdy: h2
www.rojadirectaenvivo.club/2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php
188.114.96.1200 OK 0 B URL HTTP/2 www.rojadirectaenvivo.club/2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php
IP 188.114.96.1:0
GET /2023/real-madrid-vs-atletico-madrid-copa-en-vivo.php HTTP/1.1
Host: www.rojadirectaenvivo.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6twAvYWKbaQspXtA1uBVY1E%2FUBuEQck76k3fyTPKRwP1WFzTYc2fZr0e9kbEzs2D61yJNZlnKPpqby3MPDY0Fie4adlipoQ3uxJm5sBbdNrUHR6kh2kHvDzLGpQaQuoAc%2F%2FNH7E89rWfsqNe%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec5cbed9b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=0.879&v=27&r=1528
104.22.74.171200 OK 0 B URL HTTP/2 whos.amung.us/pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=0.879&v=27&r=1528
IP 104.22.74.171:0
GET /pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capoplay.net%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=0.879&v=27&r=1528 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capoplay.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78fbec693a049926-ARN
X-Firefox-Spdy: h2
cdnondemand.org/script/bootstrap.js
104.16.166.16200 OK 0 B URL HTTP/2 cdnondemand.org/script/bootstrap.js
IP 104.16.166.16:0
GET /script/bootstrap.js HTTP/1.1
Host: cdnondemand.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsJI3qBmEmA5imPg6DDr03rt4tjrabTTZZLsxPz0ylbNWCgmTd-zIqpIT_deRlTO_eE7XRfIcKBzhoqVmQYfROCETFzgeKb
x-goog-generation: 1674554932798474
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100716
x-goog-hash: crc32c=jg2Y+g==, md5=PkfV0f1nh0Fd2nS4GOUUrg==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 27 Jan 2023 00:15:56 GMT
cache-control: public, max-age=14400
last-modified: Tue, 24 Jan 2023 10:08:52 GMT
etag: W/"3e47d5d1fd6787415dda74b818e514ae"
cf-cache-status: HIT
age: 662
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec69ff2bb4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdnondemand.org/script/ut.js?cb=1674764156489
104.16.166.16200 OK 0 B URL HTTP/2 cdnondemand.org/script/ut.js?cb=1674764156489
IP 104.16.166.16:0
GET /script/ut.js?cb=1674764156489 HTTP/1.1
Host: cdnondemand.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycduGp8e7IZkYUeYCzUWhO1MGY0-Im4YR-u41hQNfUKvf4HrchLJ74aJvdZMyC_sOiqC2FwJ50SkAe2nzPSEPw1474tTmiw7T
x-goog-generation: 1674555186374348
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 72138
x-goog-hash: crc32c=WRmDUA==, md5=MsvAQARi18+r2IeVMZ4lmw==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Fri, 27 Jan 2023 00:15:56 GMT
cache-control: public, max-age=14400
last-modified: Tue, 24 Jan 2023 10:13:06 GMT
etag: W/"32cbc0400462d7cfabd88795319e259b"
cf-cache-status: HIT
age: 2727
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec6a8fdcb4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.capoplay.net/play/espndeportes.php
104.21.84.8200 OK 0 B URL HTTP/2 www.capoplay.net/play/espndeportes.php
IP 104.21.84.8:0
GET /play/espndeportes.php HTTP/1.1
Host: www.capoplay.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PSXpW0l9uC00%2BXgxop0wtBziWpRNLkFijHZ%2B5owluYMtlG%2BfayMqfL1oEcxYDiw6CweOmIoQm4eiMbd%2Br42aHA6ocRTU2ITiUycZ02b4YrFxY5P7kt13EFFU1ZDCPU98xJaO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fbec5fce77b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.visariomedia.com/jquery.PrintArea.min.js
185.76.9.24200 OK 0 B URL HTTP/2 www.visariomedia.com/jquery.PrintArea.min.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /jquery.PrintArea.min.js HTTP/1.1
Host: www.visariomedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:54 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Sat, 28 Jan 2023 12:30:59 GMT
access-control-allow-origin: *
link: <https://visariomedia.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1674909059
server: CDN77-Turbo
x-77-nzt: AblMCRT9gln/dwQHAA
x-77-nzt-ray: af5856302918c0617adfd263d2d7c934
x-cache: HIT
x-age: 459895
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
c.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sun, 26 Feb 2023 20:15:55 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2154116
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec611ab01c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
potsaglu.net/5/5674606
139.45.197.245200 OK 0 B IP 139.45.197.245:0
Analyzer Verdict Alert quad9 Sinkholed
GET /5/5674606 HTTP/1.1
Host: potsaglu.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: application/javascript
x-trace-id: 5978ce95ca10bcc7b1deaf5dbbb70ecb
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=9bf22e57266744d0be4aae4d1c23daac; expires=Fri, 26 Jan 2024 20:15:56 GMT; path=/; secure; SameSite=None
oaidts=1674764156; expires=Fri, 26 Jan 2024 20:15:56 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
104.18.36.173200 OK 0 B IP 104.18.36.173:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 20:39:18 GMT
vary: Accept-Encoding
etag: W/"63bdccf6-4571"
content-encoding: gzip
cf-cache-status: HIT
age: 141065
expires: Sun, 29 Jan 2023 20:15:55 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 78fbec654ab8b4f7-OSL
X-Firefox-Spdy: h2
waust.at/s.js
104.26.5.7200 OK 0 B IP 104.26.5.7:0
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:54 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:36 GMT
etag: W/"63c04128-2170"
expires: Fri, 27 Jan 2023 19:17:29 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 3505
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9PctFUWDeAjhqOucc551L5XmPHbtoVpyu7GWzwxCeq6Blc3gCcato0sj1387%2Br9NQ1wFINj8PMzLxfYWXEgZoy4DX2GKAK%2FX6E2XpVLvwGRPE6M0WbA8Y5Ei"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fbec5ebd74b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 104.18.11.207:0
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/13/2021 20:18:53
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 48135f30fbfcba704628453df5764d8f
cdn-cache: HIT
cf-cache-status: HIT
age: 20213640
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78fbec668cb0b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.11.0.min.js
69.16.175.10200 OK 0 B URL HTTP/2 code.jquery.com/jquery-1.11.0.min.js
IP 69.16.175.10:0
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capoplay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 20:15:55 GMT
content-encoding: gzip
content-length: 33357
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1787d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674764155.dop065.sk1.t,1674764155.cds206.sk1.hn,1674764155.cds206.sk1.c
X-Firefox-Spdy: h2
youradexchange.com/script/suurl4.php?r=6468862&cbur=0.38561298070110883&cbiframe=1&cbWidth=647&cbHeight=384&cbtitle=&cbpage=https%3A%2F%2Fwww.capoplay.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=cdnondemand.org&aggr=0
35.190.41.116200 OK 0 B URL HTTP/2 youradexchange.com/script/suurl4.php?r=6468862&cbur=0.38561298070110883&cbiframe=1&cbWidth=647&cbHeight=384&cbtitle=&cbpage=https%3A%2F%2Fwww.capoplay.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=cdnondemand.org&aggr=0
IP 35.190.41.116:0
GET /script/suurl4.php?r=6468862&cbur=0.38561298070110883&cbiframe=1&cbWidth=647&cbHeight=384&cbtitle=&cbpage=https%3A%2F%2Fwww.capoplay.net%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=cdnondemand.org&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://capoplay.com/
Origin: https://capoplay.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Thu, 26 Jan 2023 20:15:56 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2