{"report_id":"5b9905c6-c651-42d1-9325-04c02ee8fc9f","version":6,"status":"done","tags":[],"date":"2023-11-04T20:45:40Z","url":{"schema":"http","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"title":"Ver Siniestro (2012) Online | Cuevana 3 Peliculas Online"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T15:49:31Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"my.rtmark.net","ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2014-10-29","domain_rank":9054,"first_seen":"2015-02-04 10:54:57","last_seen":"2023-11-04 05:09:22","alert_count":0,"request_count":7,"received_data":5183,"sent_data":3519,"comment":"","tags":null,"fingerprints":null},{"fqdn":"platform.bidgear.com","ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2011-08-30","domain_rank":30367,"first_seen":"2016-07-27 13:51:48","last_seen":"2023-11-04 14:12:27","alert_count":0,"request_count":3,"received_data":9794,"sent_data":1344,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lyricsgrand.com","ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2023-09-23","domain_rank":0,"first_seen":"2020-01-03 12:46:15","last_seen":"2023-11-04 14:27:16","alert_count":4,"request_count":4,"received_data":16424,"sent_data":1865,"comment":"","tags":null,"fingerprints":null},{"fqdn":"g.jwpsrv.com","ip":{"addr":"151.101.194.114","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-10-04","domain_rank":113622,"first_seen":"2018-01-19 14:34:33","last_seen":"2023-11-04 08:16:04","alert_count":0,"request_count":1,"received_data":325,"sent_data":540,"comment":"","tags":null,"fingerprints":null},{"fqdn":"offerimage.com","ip":{"addr":"172.67.22.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2019-06-10","domain_rank":304078,"first_seen":"2019-06-10 13:11:53","last_seen":"2023-11-04 12:44:33","alert_count":0,"request_count":3,"received_data":38327,"sent_data":1334,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fleraprt.com","ip":{"addr":"139.45.195.254","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2022-01-14","domain_rank":0,"first_seen":"2022-01-14 23:55:14","last_seen":"2023-11-04 12:24:51","alert_count":1,"request_count":1,"received_data":481,"sent_data":523,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cuevana3.ch","ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2022-09-20 07:17:05","last_seen":"2023-11-03 13:47:56","alert_count":0,"request_count":14,"received_data":321110,"sent_data":7024,"comment":"","tags":null,"fingerprints":null},{"fqdn":"tzegilo.com","ip":{"addr":"104.21.11.245","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2022-01-14","domain_rank":0,"first_seen":"2022-01-14 16:27:15","last_seen":"2023-11-04 12:44:32","alert_count":0,"request_count":1,"received_data":110571,"sent_data":394,"comment":"","tags":null,"fingerprints":null},{"fqdn":"friendshipmale.com","ip":{"addr":"172.64.98.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-10-21","domain_rank":0,"first_seen":"2022-10-21 14:15:25","last_seen":"2023-11-04 05:11:02","alert_count":0,"request_count":1,"received_data":86409,"sent_data":399,"comment":"","tags":null,"fingerprints":null},{"fqdn":"nandweandthe.org","ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-09-30","domain_rank":0,"first_seen":"2023-10-30 08:47:30","last_seen":"2023-10-30 08:47:30","alert_count":0,"request_count":5,"received_data":3025,"sent_data":2576,"comment":"","tags":null,"fingerprints":null},{"fqdn":"accounts.google.com","ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":81,"first_seen":"2016-03-20 13:44:49","last_seen":"2023-11-04 12:45:01","alert_count":0,"request_count":11,"received_data":20742,"sent_data":6694,"comment":"","tags":null,"fingerprints":null},{"fqdn":"replicafixedly.com","ip":{"addr":"173.233.137.36","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2023-10-10","domain_rank":0,"first_seen":"2023-10-10 11:28:28","last_seen":"2023-11-04 06:21:07","alert_count":1,"request_count":1,"received_data":467,"sent_data":486,"comment":"","tags":null,"fingerprints":null},{"fqdn":"meenetiy.com","ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2023-01-04","domain_rank":0,"first_seen":"2023-01-04 10:41:02","last_seen":"2023-11-04 17:53:06","alert_count":2,"request_count":2,"received_data":75397,"sent_data":1522,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.movcloud.net","ip":{"addr":"172.67.210.193","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2020-04-11","domain_rank":45353,"first_seen":"2020-05-05 19:55:01","last_seen":"2023-11-04 14:20:56","alert_count":0,"request_count":1,"received_data":813,"sent_data":425,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2023-11-04 12:29:34","alert_count":0,"request_count":3,"received_data":280755,"sent_data":1294,"comment":"","tags":null,"fingerprints":null},{"fqdn":"professionalswebcheck.com","ip":{"addr":"3.122.74.31","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2022-04-01","domain_rank":0,"first_seen":"2022-04-02 00:47:29","last_seen":"2023-11-04 05:11:01","alert_count":0,"request_count":4,"received_data":1306,"sent_data":1940,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ssl.p.jwpcdn.com","ip":{"addr":"151.101.194.114","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-08-07","domain_rank":2512,"first_seen":"2017-01-30 06:00:14","last_seen":"2023-11-04 06:10:35","alert_count":0,"request_count":1,"received_data":16529,"sent_data":416,"comment":"","tags":null,"fingerprints":null},{"fqdn":"pelisplay.info","ip":{"addr":"172.67.68.54","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2023-10-17","domain_rank":0,"first_seen":"2020-04-26 03:15:19","last_seen":"2023-11-04 01:38:35","alert_count":0,"request_count":7,"received_data":694710,"sent_data":3323,"comment":"","tags":null,"fingerprints":null},{"fqdn":"hugorelease.com","ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2023-04-06","domain_rank":0,"first_seen":"2023-04-06 14:29:55","last_seen":"2023-11-04 06:16:17","alert_count":1,"request_count":1,"received_data":59904,"sent_data":434,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dt.raggledordures.com","ip":{"addr":"142.91.159.95","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"domain_registered":"2023-06-08","domain_rank":0,"first_seen":"2023-06-08 09:24:17","last_seen":"2023-11-03 03:08:28","alert_count":0,"request_count":1,"received_data":1447,"sent_data":418,"comment":"","tags":null,"fingerprints":null},{"fqdn":"pelisimg.online","ip":{"addr":"104.26.8.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-11-23","domain_rank":0,"first_seen":"2022-11-23 03:36:11","last_seen":"2023-11-03 04:09:19","alert_count":0,"request_count":1,"received_data":44850,"sent_data":428,"comment":"","tags":null,"fingerprints":null},{"fqdn":"use.fontawesome.com","ip":{"addr":"172.64.103.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":942,"first_seen":"2017-01-30 05:43:25","last_seen":"2023-11-04 05:09:04","alert_count":0,"request_count":2,"received_data":154922,"sent_data":1027,"comment":"","tags":null,"fingerprints":null},{"fqdn":"d1ha41wacubcnb.cloudfront.net","ip":{"addr":"54.230.241.99","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2023-02-11 08:12:38","last_seen":"2023-10-21 19:13:26","alert_count":0,"request_count":2,"received_data":56148,"sent_data":1076,"comment":"","tags":null,"fingerprints":null},{"fqdn":"abusedthrown.com","ip":{"addr":"23.109.82.17","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"domain_registered":"2023-05-09","domain_rank":0,"first_seen":"2023-05-15 14:27:26","last_seen":"2023-10-10 16:12:46","alert_count":0,"request_count":1,"received_data":1431,"sent_data":408,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fvcwqkkqmuv.com","ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"domain_registered":"2022-12-05","domain_rank":0,"first_seen":"2023-01-17 11:41:57","last_seen":"2023-11-04 14:02:13","alert_count":0,"request_count":3,"received_data":95451,"sent_data":1884,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dweatherbe.org","ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2023-09-30","domain_rank":0,"first_seen":"2023-10-22 23:07:52","last_seen":"2023-10-22 23:07:52","alert_count":0,"request_count":4,"received_data":6965,"sent_data":2820,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.r2m03.amazontrust.com","ip":{"addr":"108.157.233.112","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2007-05-11","domain_rank":0,"first_seen":"2023-02-21 01:06:24","last_seen":"2023-11-04 12:12:46","alert_count":0,"request_count":1,"received_data":942,"sent_data":340,"comment":"","tags":null,"fingerprints":null},{"fqdn":"rndskittytor.com","ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2021-08-09","domain_rank":31865,"first_seen":"2021-08-10 15:00:55","last_seen":"2023-11-03 00:12:05","alert_count":7,"request_count":7,"received_data":102424,"sent_data":6196,"comment":"","tags":null,"fingerprints":null},{"fqdn":"almstda.tv","ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":76235,"sent_data":1464,"comment":"","tags":null,"fingerprints":null},{"fqdn":"shortlyamusement.com","ip":{"addr":"173.233.137.52","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"domain_registered":"2023-04-12","domain_rank":0,"first_seen":"2023-04-12 14:51:50","last_seen":"2023-11-03 22:17:12","alert_count":1,"request_count":1,"received_data":24200,"sent_data":440,"comment":"","tags":null,"fingerprints":null},{"fqdn":"unseenreport.com","ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"domain_registered":"2022-03-30","domain_rank":0,"first_seen":"2022-03-30 16:33:17","last_seen":"2023-11-04 05:14:13","alert_count":2,"request_count":2,"received_data":846,"sent_data":1473,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.cdn4js.com","ip":{"addr":"172.67.150.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-04-20","domain_rank":0,"first_seen":"2022-04-21 16:09:49","last_seen":"2023-11-04 01:38:36","alert_count":0,"request_count":1,"received_data":90768,"sent_data":414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.buypass.com","ip":{"addr":"23.33.119.65","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2004-08-13","domain_rank":157566,"first_seen":"2017-01-30 05:59:29","last_seen":"2023-11-04 05:14:10","alert_count":0,"request_count":2,"received_data":4356,"sent_data":660,"comment":"","tags":null,"fingerprints":null},{"fqdn":"push-sdk.net","ip":{"addr":"157.90.88.11","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2022-10-25","domain_rank":0,"first_seen":"2022-11-02 01:04:10","last_seen":"2023-11-04 00:04:23","alert_count":0,"request_count":2,"received_data":15084,"sent_data":861,"comment":"","tags":null,"fingerprints":null},{"fqdn":"compolegimmer.com","ip":{"addr":"23.109.82.169","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"domain_registered":"2023-06-12","domain_rank":0,"first_seen":"2023-06-12 14:04:10","last_seen":"2023-10-29 13:36:41","alert_count":0,"request_count":1,"received_data":1434,"sent_data":414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"pogothere.xyz","ip":{"addr":"172.64.201.15","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-08-22","domain_rank":0,"first_seen":"2022-09-04 21:11:25","last_seen":"2023-11-04 09:46:15","alert_count":0,"request_count":2,"received_data":105350,"sent_data":958,"comment":"","tags":null,"fingerprints":null},{"fqdn":"if.pelisplay.io","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2023-06-14","domain_rank":0,"first_seen":"2023-06-14 17:42:50","last_seen":"2023-11-03 03:08:37","alert_count":0,"request_count":1,"received_data":672,"sent_data":573,"comment":"","tags":null,"fingerprints":null},{"fqdn":"imp9.bidgear.com","ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2011-08-30","domain_rank":34078,"first_seen":"2021-03-15 12:09:09","last_seen":"2023-11-04 12:03:48","alert_count":0,"request_count":3,"received_data":3351,"sent_data":1557,"comment":"","tags":null,"fingerprints":null},{"fqdn":"limurol.com","ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"domain_registered":"2022-07-12","domain_rank":0,"first_seen":"2022-07-12 15:53:17","last_seen":"2023-11-04 05:14:11","alert_count":0,"request_count":2,"received_data":1637,"sent_data":3560,"comment":"","tags":null,"fingerprints":null},{"fqdn":"banquetunarmedgrater.com","ip":{"addr":"172.64.198.37","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2022-08-04","domain_rank":0,"first_seen":"2022-08-04 17:12:50","last_seen":"2023-11-04 05:11:03","alert_count":0,"request_count":2,"received_data":1662,"sent_data":839,"comment":"","tags":null,"fingerprints":null},{"fqdn":"d37tb4r0t9g99j.cloudfront.net","ip":{"addr":"54.230.241.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2008-04-25","domain_rank":0,"first_seen":"2023-07-25 16:15:44","last_seen":"2023-11-04 01:38:36","alert_count":0,"request_count":1,"received_data":55235,"sent_data":418,"comment":"","tags":null,"fingerprints":null},{"fqdn":"eu.can-get-some.in","ip":{"addr":"136.243.249.75","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2022-05-19","domain_rank":0,"first_seen":"2022-05-24 07:11:18","last_seen":"2023-11-04 01:38:36","alert_count":0,"request_count":1,"received_data":3655,"sent_data":416,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"shortlyamusement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"replicafixedly.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"unseenreport.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"unseenreport.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"meenetiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"fleraprt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"hugorelease.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"meenetiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"limurol.com/ssp/req/1995260/?pb=1829d64f50225cd6282abd79354ee0851699137920\u0026psp=_jODNbRpyfWFyTJgi6lgGAp2lV8105Zy5gdbkQV3MHjDVo9bGSWp1K2ToovusogIEggK97J1JFodr2nvXV4euCgo38YdrbZcFys19zuO8UGj6GdpTJf92VuOUBnrG3Op8HgcwyjabSm3vjnh-hXAh1MYm9j5_OqbJtSp9lz71BZe92BbDNv1lM-qo0--_GUn69AyqAFUGXebgjkIxa0pznOddEJoAODIFl8NcZsBcg575Kh_Wy1u9m0TWSBSZbE3cBZiBdWIx2iY_ML_dF3MDekpwB9CM0o0wGjZ3iANzG_1TazW2zex1KZoVlIZ1O2PB3VC6BepwwAS2fJDpLoGLSxMO94oLto0pxlwPaYUK93VJ90Ff86JEoBDWsbpLMWpHFU437qhGk7-0gDUpaMY2Eco16jCXDL9R6kDPxM0UC4Hm_tMCEjjbDoSU4BJVAg9MZxgC1pU8KIPmcbtpmFIW_Y03HbWWuA4CINrv2ayXNKlx4aGJB4cHeEp_w7_1Z7Ubpid_QlN2E4fh7nqRliTLUY_3y7KFgaqaK48oDE1yQ5KoX-So_rCDg46aV8crCuAPm9zQaja6o4ydKGWiuVXUmG9MFMyf_TJqORQMAcwmt18jXmFn2TRym1G_a8l3QGBu8KEwU8yYfaDLoam3dhYOZ994kqgMfDmWT6yjgqMDnieg_5vYF4E04gW78T2rckaVxS5BZbfnqJP_ULqewNAFndPsckhi4WtBLysKL1OkythzgQhp_YvqneJjZArVwGALh5D_rFyHqoiL87TOqZIMHFvRb7f2Yf8noiSySndaxGXWREQcmeLIzUQPlmRQM6HAS93yK4-cTsX96IEwx6LsojJEUHIksPlAy3-2FZpEYan7nuHtt0-yFmhzYU6J7Yga0uS5E94ZVM_4L0Y7N0qk8uZIJYBEuqLMUQTTrHxTOkwqiD5bu7FyLq9to8ozzRq1A==\u0026im=1\u0026cb=_cls3s7764delo4dqwqojqu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"limurol.com","domain":"limurol.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"a97eb6fbe6f13b601d5d48c0eba8baae","sha1":"736efb938caf3d0edec406932ada889f1a4f2268","sha256":"a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821","sha512":"df4014be228e56baafdc0adaa57f261ac7879be4ca3a883b790f325569f75d30fe1c1f5c85989f87c0cadf48cbdc845265c805fcd3bfba518d168b6a9f31814d","ssdeep":"","tlshash":"e550000030030000003003003003300000000000c3000c0300c0000c00000303000000","size":7,"data":"","first_seen":"2023-03-07T01:02:23Z","last_seen":"2024-08-21T09:41:44.630733Z","times_seen":2901,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/provider.hlsjs.js","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"15f611be6ff382db1034a3f94cbd5e6a","sha1":"0ebf30d81fb97fb62d828c57bda21b73e5b48734","sha256":"fee72764da4f138b46e1f7787918d0dae1627a83e8ed59502753fd340a8ba6d9","sha512":"cfead4677dccaa8d9dd69940af3f240e1b7e632d7bada033f329d5e5863c4512fea13ef62077e39224e2cf5657762f4a8850c4c7b5c6563ecb19ea1030cf76fb","ssdeep":"3072:FulC0x5SnStY39wk7LAJcm0Pqw/vQBzwGxTfyDEH3cwlfJ07:0SStC95LAJDgqw/vQVwMXcwlfy7","tlshash":"93643b8d77e47866438361a5503f120b723aac1da408c06cbb56f9fa1dbd84da53bf78","size":313109,"data":"","first_seen":"2023-03-07T12:06:55Z","last_seen":"2024-09-19T21:57:32.471876Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"friendshipmale.com/sfp.js","fqdn":"friendshipmale.com","domain":"friendshipmale.com","tld":"com"},"ip":{"addr":"172.64.98.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2d0450888479d4ddda305bd96206b240","sha1":"5b4595aab1cd3f854718e05db9be0c65a12ab2f6","sha256":"44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6","sha512":"3d9f8990f7fb6885869efd08dabd9e7e74202cc9531b9d4e5ac67d8f10ea13e6b5a86e77a82b03e6e666c2d3c9bad14254c9d2ac9c37e0df016eb5906ffcc6ca","ssdeep":"768:MpmI29BZeWZssERU8jnQY8vhqdNUHHiVAWnNniZtyrXGQA3STN+hnnNYJ/dLbO/x:o+ZfZBh8jT/0uLp5OpSoTjAdJxyxua","tlshash":"4883b7807fe0648ad3979f77b71bb4c9f8aa385a7dc4048bc601fd80796662ad9f1530","size":85471,"data":"","first_seen":"2023-08-25T12:30:49Z","last_seen":"2023-11-23T01:47:35Z","times_seen":6642,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-V792JX3QG3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fb8abcc65fd6f04fa93eb6404f130345","sha1":"a3de1b76e130f095d4db572c3b057e3834fbc739","sha256":"0deb9f3cb73abb42977d55d47731e3e2894c8c23f59a46be72afa2c480b713a5","sha512":"a8a46e80e3f75d1c502397f54bd22f565fdfeeb9879cd8d7575765d21a128eb984cc987b02900d0ef9483d31ac8ede745dbf1587b3db275811e07c81cd363b9f","ssdeep":"3072:bK4a+K36EllMSX/tyeUyj4eKIxXAKqM8GyP8QUCWaXb3WV/iwB2I9LZVokA6hEW5:m4GZBVyeUyHQFP8FCWaXb30KcYkfh5","tlshash":"705419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","size":280626,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-V792JX3QG3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9d01cf2d03da80b23fc9568820d674e4","sha1":"72a6f9e756dac4bb8cfba5630d29c3a9fe50cf98","sha256":"adbc6063b34b662c47a988d2abe0da84ea2883ea08600094f28206d2705620fd","sha512":"898cd370d4ba4233f4080056c9e30323e42e6bdd52f8da3cc5b1cae8af2d8d464d63a1171cfcf889d3ce8c8d2ea6146741625b6fbcec737aa6b4ef033321f5aa","ssdeep":"3072:bK4a+K36EllMSX/tyeUyjPeKIxXAKqM8GyP8QUCWaXb3WV/iwB2I9LZVokA6hEW5:m4GZBVyeUyGQFP8FCWaXb30KcYkfh5","tlshash":"1a5419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","size":280626,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0a00b8f124bac4df688a8ff869b764c4","sha1":"b87346a88133a67753cbcbe716ca077488a2df01","sha256":"ac170bd0a264beccff4958b8a05bb4e92563f03cb68914d11c392f90d3b3a48c","sha512":"694e0026cdd914e78ce8229ded53bdb4f3ab07140f82fb038afc1608ede5210eb62efb0fd0da6726a37f4c51b4c1b31a47782c28ccb66f91159d829b9d7c97fa","ssdeep":"","tlshash":"d9212238f1284020009c1079f032cb1868b26155ec633840c89e8a0c6430f890821cb8","size":1395,"data":"","first_seen":"2024-08-20T20:53:58.908646Z","last_seen":"2024-08-20T20:53:58.908646Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"e5bd17b94943195249ca2bb98d0c77c2","sha1":"1f6dc361965cfeb23c0e1cb9530c297c78963733","sha256":"24fcbf4bc116d27abc67431ba3c22227e6fa07c6b98ef7ac89033bc7cf603357","sha512":"84c7b1c384dcbc88b0c0b7aa89f53fc12d9dbd43cf57dad5630b143fa28e804cf79fa3d57375b39e1101c359d4005ac1758d31739b9cd5916c99aa14bc0905b9","ssdeep":"","tlshash":"13b0926a4d11926bba8bd144b23c96c07af2665d6203f792b40d96c61fc186434658a5","size":115,"data":"","first_seen":"2023-03-08T02:53:57Z","last_seen":"2025-08-20T11:04:07.45788Z","times_seen":97,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"baad9739bc64d6d4cc47e1e4585bb065","sha1":"fdcf51504b3815d73644fc58c867ed69e939003f","sha256":"b203875da912f8f38ed0b51b6a6b9a00a400dc382246d819dc7c674b8c39f973","sha512":"5db11c1ff77d8218e830a085d38c229f069f2741eac35fbcc282a39bcb6571cae8c42cabf11c8b7e96204e15428954f2f57d0a2030ca1d2f9616bbd228acd308","ssdeep":"","tlshash":"eee07d1361c16574e116265da07ff33420f241102c11e03d2c0cfa6c5120d53c23ddc8","size":310,"data":"","first_seen":"2023-03-13T23:12:23Z","last_seen":"2024-12-24T23:42:52.257739Z","times_seen":75,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cdn4js.com/js/jquery-3.6.0.min.js","fqdn":"cdn.cdn4js.com","domain":"cdn4js.com","tld":"com"},"ip":{"addr":"172.67.150.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b5704a4cc61699108493a0ba8cac977","sha1":"1dd274f2f680332228985faa9ec2492075c64d8a","sha256":"8e6a34c097b7066b63993fc615dacf4ac24c6059b7da71c413ff6799d30a3b15","sha512":"dff9157200d682424390a010c3ad5fff4c2b330e972e4b35192868c3914befa5b38640ed92a587e1bf88707780e31b0957d39fa3aa4c4d86b177a1fc400bddb3","ssdeep":"1536:YSQ5CPCaTHCQ/WnDMiVLpA5hhbs4+HQoiQl:YZYiQK/cbgl","tlshash":"3793b6557183304663ebeafd403f368aa8758c14954a4ca5b6b1e7c3dc204c9d8e7bbe","size":90039,"data":"","first_seen":"2023-04-30T22:46:58Z","last_seen":"2023-12-11T22:40:01Z","times_seen":110,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"de28078543da464ef12cb314c4d16673","sha1":"0b6dc7dc601130dbf13b14a122f098643f92ea91","sha256":"91df46e3660dcfd6d6d097faf2a767f5a4ce2ce3ee9d695003b7e24b8d8fcafd","sha512":"318b6c26c8516229d415b53f28903e0f33a52eb91661af7a73456cac5130b6a0ad27104e67bcc1c1fe4447d145c87d4f50e9c0cd0a4c811cba2715792f14d6fe","ssdeep":"","tlshash":"f4a002408cb3d125145b5086450fc0066e940031468cd588915ddd44c9d0d4b45124df","size":59,"data":"","first_seen":"2023-03-12T16:34:53Z","last_seen":"2024-12-24T23:42:52.258948Z","times_seen":87,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"5ac78a6d2c3b2da768f2f35b7a608ffa","sha1":"26516f3f9b9aa75e6e9d1f5084638f6c676648b7","sha256":"4dfe231f1d0f0d3b8696a7a21497140830cfe3a6c2f7b972bcb11f89b7aa2232","sha512":"c9a3e5220dec16908e43db67529c49398779b600fc9ed47b41b7d8791897f1fdfdb0fd0a9c7f6cac3c191f5281ca4479be22f27b5348e00ab4132d9d3892c281","ssdeep":"","tlshash":"f6c09b8c615a5c7155f73b408b7fb604f442321498e5693589596348ae30e17d754954","size":153,"data":"","first_seen":"2023-10-01T04:30:17Z","last_seen":"2024-08-21T05:25:58.229557Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/jwplayer.core.controls.js","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7f4630fbe6f360083d55d3440f61d111","sha1":"f705b7321b7e598bb3e4c45eb2965b8172c3b537","sha256":"81d08468f247ab230ea5a091d643143eb1979ced04581584e892aaeaa33a587a","sha512":"6a3b89472b46e0e7ceaf4094802d9355156529a4a5f2bdd59e4ecc6493c09581934913b8801114bf6c23d8b319a58378080b760e3926747789750b36b2199563","ssdeep":"3072:FpjEemq0gDsur3zp7G5fylviYdEFrmqqIDB071CA:2lur3NDlv7d2DB07d","tlshash":"d0440839718271705ad793aa625f1209b33a8041f556cb9cfb26d8d88dbc88b31f7b74","size":278668,"data":"","first_seen":"2023-03-07T12:06:55Z","last_seen":"2024-09-19T21:57:32.477554Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hugorelease.com/bf/fd/0c/bffd0ccd70480e9ae2e30278718389bf.js","fqdn":"hugorelease.com","domain":"hugorelease.com","tld":"com"},"ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"35b1580dbc1dcbe7d9df2b1e311ab528","sha1":"c53cf3d2e1381121a5cee93d06719c9971b69aa2","sha256":"ce4e0eff90de8dd17c57a616e922db67854763f98d776e0ae488ac992d60324d","sha512":"56a4dee18863dd90f4a09b916c9ee8850e0671af257d97cd2ed6e7e12fc528d852c16814b6ce1542f947842c745b4debb11ccb110f4c57319fbd5c81ef157ddc","ssdeep":"768:VLSD/HsaS8UCMDlWJMUKfwxf7MP47Lyq5Z0Db5IONlhknpMAG2vUuUua1:VLSD/HR2DlWJ++7l39M43G2vlU31","tlshash":"e943b6cc7f547c65529774b3731f9287e42b4d19da88c4ddf223aca4292932af4327a8","size":59072,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-GFW2EQJ0P4","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e53d98bbbbebfe8d7012f6187289b21","sha1":"54d2f6f00fc3d7ff9e6b884a6b0a1a67edadfb52","sha256":"d318e6cf8b58e63f27c07a63f4b40bed4461fc919943792c15b4f3f8758de75e","sha512":"7aa1594ccd645bc32849d025f7b7df67451ca2f2a41cafc40b0581ed76727e60e9e721a5b8b1688b8f17204bd7f50b01e8b31b427ade5e12b6a3959a9ecc2c08","ssdeep":"3072:/K4a+K36EllMSX/tyeUyjceKdxXAKqM8GyP8QUCWaXb3WV/iwR2I9LZVokA6hEW5:y4GZBVyeUyUQFP8FCWaXb30KIYkfh5","tlshash":"875419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","size":280626,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/player/js/jquery.min.js?v=1.6","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"ed72e2a6ae1afb03eb3e917c2dbe2b50","sha1":"b23ec2f5041209e5d1d567740fe5ad323688b76a","sha256":"f8e5351fc39356f8f94d7f334b11f9a0f44a67a9461bbd3e8be10cf44acdf780","sha512":"a8d07dc2966d3e0f2f26087c9218cb2e7d4c45206de50f821929c698481c76a34456c3797bae822c7d1acf3063f353d6e18ca2d6b13a9c8eaed618338705f9fd","ssdeep":"1536:u5hEyisTikEJqRdXXe2pP7lgoVMEXvdVhvLHSh4xzAdXtqTyZSusjvKx/w7Ug2xC:0QGvHhvLJzuXkTSc6//MTDU8Cu5","tlshash":"a183e5d9b2c670529b7730b850bf450bb17a98dab44c8c60f1a8d5d57eb8a8d407bf2c","size":86349,"data":"","first_seen":"2023-03-07T01:03:26Z","last_seen":"2025-02-01T17:45:35.503047Z","times_seen":496,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.movcloud.net/v1/count/movie/es/episode/28501","fqdn":"api.movcloud.net","domain":"movcloud.net","tld":"net"},"ip":{"addr":"172.67.210.193","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fvcwqkkqmuv.com/aas/r45d/vki/1995260/29fbd76b.js","fqdn":"fvcwqkkqmuv.com","domain":"fvcwqkkqmuv.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"58cdf9bfc1ca007db803a3f741c3cb18","sha1":"239890413cc3e9b61e450913537816ce672a5bd2","sha256":"a77722b5ec9adb31cbfea18fdb1cd70edcde67e1780c5200e43e06511f6d65d1","sha512":"934554674dea6e59bc54fc9e74f1788a8b22ec6f9450d15dd5ab878a8ed25058023e1a78788a6fc679ccb305e23ae4c416695ff35d25e8ce49742909ae85ea59","ssdeep":"1536:YQt85KpXOZJK+mNk+erSrlU8tbKDYHggKgrYgzrIRoQxgJ9sB7+jO/2+rGu5R8g8:YIiK0LK+mTh1Jjmfu/t","tlshash":"45832dc873c174a62a06e53e0f6f6c3b556d89c145798442a533f1cabc2335ea1eaef1","size":88714,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-05T08:12:14Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/owl.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"883f41b48b014cb22784f5b09729ec8b","sha1":"c1a9ff684662647040971f4926db914e2cee6ea9","sha256":"4388c2b7009bc437605e6ff62c170faf788b1d8b8800717223160bbacec0ae5f","sha512":"15ca4d9fce347ccb8cd7c2d74baa629ccc03363b1dff5dc65d4b2c22fb8b71130f9d1231006f2b2abfc3dd45f98e700304b77b76afada70c0dfca70c14f26156","ssdeep":"768:OCI7dmuMFAAJG4dlQKNORpnXGAtep2lcwJeL+wr2RSWc7UuHjRUQuFBt33:VITMFC4dbMVRSWcgRDV","tlshash":"6f137346b3202d2a869b61a0663f160bb23a241ce414547d7d79e6de6d7d88c213ffbc","size":44174,"data":"","first_seen":"2023-03-07T01:34:40Z","last_seen":"2026-04-01T00:07:28.397986Z","times_seen":640,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"997b23f2ae0c4e0d8e987a069f3757f8","sha1":"209c0b7b08d24865102ec92b4fad533f534c53ef","sha256":"23bcaa006ffa2fabbc5b9f347397ebdb223172515e74a22a1f1bba66249949cc","sha512":"f1ea47ea3d632effa1e01b89ab08fff8bb773000bfde385548274ce9976ffba6f1996ceed4bff5a00dd184f7cfe7783a04ed268ee5124a2ec33c00374d7df081","ssdeep":"","tlshash":"04d02ba2f59541810372eab1983b244dd21531020de05b10be1c84789fa66ac3c558ed","size":279,"data":"","first_seen":"2024-08-20T20:53:58.91247Z","last_seen":"2024-08-20T20:53:58.91247Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/js/hamfunction.js?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e78690213ce561cd930dbac6299f6303","sha1":"33d563ac21489094ec9c1cd3e2af796c0622a98b","sha256":"f8ff1c29d461bee3eecc4ca23a6f03ecee85c6b9054e37d721d8666b2b43c1f4","sha512":"dbe952346c4cf20d11d5d5f81b7c425642111331c602f9e4df3b02a36c2b3c531a9737fe17e656714d98af14f805b9681f82dd40dd09948b8de8af15416950d7","ssdeep":"","tlshash":"fa211f1e31594a3396372febcc3f02802a28768a40a48690fc4d84c7df59819ea62b5f","size":1257,"data":"","first_seen":"2023-03-12T16:34:53Z","last_seen":"2024-12-24T23:42:52.274204Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/loadMoreResults.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"3b5f05cb700b6f065d243a5c4516ba17","sha1":"c8f6d9c33b67b5014e15bbe75ef7f729c29bcba1","sha256":"fa733679e530b478ff221b3cbf3cad590e459d42f999710522433f938348e761","sha512":"fe61f1c66d58842d5fad7ee6ce136e1b93379e798b8509a86b19994e48c9827c04a971278c33da6f959131b32f74e716262057e512c8903e936acadd6afdaf28","ssdeep":"","tlshash":"2131044d782ed3701bfb01e760936b5b3d66ac37c094321449e8c8f197b5dab2477a26","size":1728,"data":"","first_seen":"2023-03-07T15:22:32Z","last_seen":"2025-11-29T08:09:01.088059Z","times_seen":98,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fvcwqkkqmuv.com/get/1995260?zoneid=1995260\u0026jp=_clefblj4bvztax3fuzjvu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"fvcwqkkqmuv.com","domain":"fvcwqkkqmuv.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":false,"md5":"6b89022efd188319fdc69aa526c0c213","sha1":"0620c6b9d6f883fd4b4791e0c82a82ee01b2446f","sha256":"779419f41bad44192a5d7ab59d9d20e385a603f987b8eadfff951c2fa68f949c","sha512":"77d4df6f4139db674ec74a045a258e86e9b219112064e4ef3977687a1a63c42317739c58727e10af85ab8d421c910606729874e84733b9710613716557ef3481","ssdeep":"96:8dDaH993UeDaH993UFsB21VDT0mFm1m23qcmgOm7niPepX9Cva:pH9ZU5H9ZUFxDTB47YLeZAva","tlshash":"7481c65d2d185c43f3945deee3fcadf6549623173692902eeba189060a30273cf56e8d","size":4144,"data":"","first_seen":"2024-08-20T20:53:58.914811Z","last_seen":"2024-08-20T20:53:58.914811Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"8f5bf5d28dd98b24b745ea6751622461","sha1":"c29d3a0994670dc4c0c1183b4a4f401f09a5dbd3","sha256":"746fd20bc9d02d5bf613d4014c02d6ce8b267b5c59bfbc614c84ca18caebda80","sha512":"e0887afcdb581164c4d47ad5894dda8ed2831b8088a39d1b3d8fd371d7c7151955a4efb743338caab5290fc95aeb87648e1165523f57a968965dd538f26cf614","ssdeep":"","tlshash":"0801294cbd8fed2326326176042e949c3a7efd474580a20af33614418fe0726b89f919","size":820,"data":"","first_seen":"2023-03-12T16:34:53Z","last_seen":"2024-12-24T23:42:52.271643Z","times_seen":87,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"almstda.tv/5/5737819","fqdn":"almstda.tv","domain":"almstda.tv","tld":"tv"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fd5a4dfde3b4ee1e14801a2381f2add","sha1":"b002143790aa9eaf91d3dfac15576d14d1f843c2","sha256":"10f95ddf64c1efe29d1a5f2fa08c2f33ac80dc46d942b887548afa0699c1c92a","sha512":"87c6b433236450a78da249ac039d039d3bafd41a7a8b6cc92e85edd5571b787130729c139ecfbb961b1f380477bff9755f1e4725ec3803a3d238be4aece0efc8","ssdeep":"1536:JKdYTTrm68TQ36vjAwHdrDBo7LycVAXhLrwghdKctPlXBBgg5F2:kdYrm6h36veo/dBXe","tlshash":"0063d59df2a5703592a721b9613fa219b33768292c494410b52ed8c03e3de4ea377f6d","size":71185,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d37tb4r0t9g99j.cloudfront.net/?trbtd=994416","fqdn":"d37tb4r0t9g99j.cloudfront.net","domain":"d37tb4r0t9g99j.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1ccd579a2e9600bc8a31bfcd44447781","sha1":"0042849d205dac978f094a95c02bf6f9bc0676c8","sha256":"670f4e9f3eaee39bc3b726bfbc5e7f897619d3005d7a383469a899e4ab36fa3e","sha512":"b1dce41dc16bff0a4676e66c3c2645b5738bb1370371bea178a998b3996cc8df2bf180c31c323c1376e183d859af943c39bfdbc556eed67d99c362b6fc646e2e","ssdeep":"1536:syDzbTOJxzRWO1UA5knouwTI5LCsMB3OsOebgkT4jlaTEp0AN0p7wFO4TgKvmY9g:WS9XPLAya82hrZ5LxjFYiUUFvVI4Gmt","tlshash":"92f33bc9be523869835374a640ff128a723f4669b8084dd4b49ad4d17db8d0643bffac","size":168048,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d1ha41wacubcnb.cloudfront.net/?awahd=977549","fqdn":"d1ha41wacubcnb.cloudfront.net","domain":"d1ha41wacubcnb.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.99","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"bda4003636a6d74d019b44a51cb33fd0","sha1":"5c36c95a0c1b068cdf0bbf39010218f6cbeb6dfd","sha256":"e0e456e8ad47b6120376abdce06476ba970114f9e6b4e89373d7412e773bae20","sha512":"09b273dba11eac8bf6ef3ed6d554fbf6aad9b761245b515a55b2227d39ac65ca5d6882e751087d092d4c11b2fc061b8805933e62f8087e7e2d69331a577208b2","ssdeep":"1536:syDzbTOJxzRWO1UA5knouwTI5LCsMB3OsOebgkT4jlaTEp0AN0p7wFO4TgKvmY9G:WS9XPLAya82hrZ5LxjFYiUUFvVI4Gm/","tlshash":"16f34bc9be523869835374a650ff128a723f4669b8084dd4b49ad4d13db8d0643bffac","size":168012,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/jwplayer.js?v=1.6","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d21721173f070a01a0f8120fad5a889b","sha1":"6ddb1c434f41ec3968ca2fdcd4b87cf0562b41b3","sha256":"3e061854c5a7141f3b8671a32e22513584b04ecbc185fe1bdc642fa9c3a891a9","sha512":"2e1e86cc424c74d89de383859a40d117518ccf127c8435fa5c65b45fb8c3276e33f4d01b1dd75207d15a3331f7b67d03b7c0e3c5dab08963bd631ee96a720cd6","ssdeep":"768:FLRy0r3hx9usmC2K203x01q0jfhEDscP8RvePo93Q7wiGNuOsBfyW+L1HoHty+pC:FLRtTNJJh0Y0EEioKyuOmfr+apOISio","tlshash":"e5b3a48db6c2f0b5439b34b4813f510bf27aadd6284e9950d625d8d17e7898d8033fae","size":109209,"data":"","first_seen":"2023-03-07T12:06:55Z","last_seen":"2024-09-19T21:57:32.473586Z","times_seen":78,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"555bf7306fd3ad5836321a380d7e57cd","sha1":"f8fc4ee8809c23485b4c7007723aa54134699435","sha256":"17d6183d61bf94f2a01eeaa514d9983763fafe7a281cd8c8729140cf4574dbf7","sha512":"9e25a0e433f2b0c823236f817330385ccc5f8caba01fc377f09d539f662723d14f9f06e21d1d153f6d205780dd93450e94c698577e8f59ade6b9fed45a783df3","ssdeep":"","tlshash":"f631781ef1b3d5a54077303d4f1f8540af2c580bb104ee20bdae08828f08a599a7679e","size":1691,"data":"","first_seen":"2023-03-08T23:43:10Z","last_seen":"2024-08-21T09:32:47.561984Z","times_seen":50,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/ads.php?domainid=6991\u0026sizeid=17\u0026zoneid=7797","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"212a49c0967262707b1e6ddd04f9d56b","sha1":"0add54edb969a5595fa79fd170524e82d1c2b4c6","sha256":"18ec4058a574cb4c889de4fdb56b8c35171c732ea24c50d74f261287eeabdea6","sha512":"c0307db1488fc3f5f368ef82ca86f839b27e0f80f5732c55e260ebd94d6c4c4ee6636ba2be42c1114f1ed4284c1ff944d97d3a9925fc9e10fefffe21b6b0ea3a","ssdeep":"","tlshash":"771199007ca1c71b827a14e19536e37d5416e11dd936cdcae1ea0625b280fad2b05e88","size":879,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d37tb4r0t9g99j.cloudfront.net/GN25hRjNUAQ8gDEMHBXsKDlpVdwURBBIpXUdTMDNmVSgVJ2pOOgZwZ14ENGBHTQpcdhVbDw8hDhELDyUOBkgAIlEKWkcyQ1gFXCxGUBYFIUZVDxJgRlZTDClJXgINJxYFKFRoAxJcUW5LBl9EdXESXFEqWlkbGWMBBxZZcGwBWkR1cRJcUTRFEl0gdwMOQF-FvFgVeBiNQXAFEdHUFXlB2AwZeUGMBBwgINFZRARljAXFfUHcdB0gUewI","fqdn":"d37tb4r0t9g99j.cloudfront.net","domain":"d37tb4r0t9g99j.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"012d782287b40babd1706b48a9329b0e","sha1":"6cfb280fbae68d567aaa720b5056f85b523d2b0c","sha256":"a49f6f9b97fe52eeecc7a9d38bfa81f8af0de8e3755ea510bc85e059a2651278","sha512":"fbb15f531d68e8989683c48cef5c0399dd76e42b50bd7329739c66acde3f1cca4b3f58e4819d459c84502037d133db0bf3568ea02f21087b0f0ca9c462e21c61","ssdeep":"","tlshash":"4a011e6a26084896acf32a0b03f5f05d56c331ca21a206123a1347b3f648b9aca88229","size":820,"data":"","first_seen":"2024-08-20T20:53:58.917485Z","last_seen":"2024-08-20T20:53:58.917485Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/ads.php?domainid=5786\u0026sizeid=17\u0026zoneid=6326","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"62950beebab4c674f61522d1e1f2adeb","sha1":"220b3aae37dfa31075da9d49af1010b4097e219f","sha256":"78cd96fe7667df2469875252a6aa825576368c4ba7aa724f70ff7a53c6a7f902","sha512":"59ca6cb1c73ad84ba698ae0106b9d24c27a253888b781d5c00ab0e48d43b54756c08fc48b0ae0637c4c7fd20cfcb6f322f1a9cd722fa5a1dda2cae8850008473","ssdeep":"192:Ae6stTAiqJnuE+ieF5e0N/XdeCP1cN7dbXF7jQcChLZNrFeWqyrImCFd99/W4nn4:9vtUiauE+ieF5e0dXkNhXlcnpZMyrIvY","tlshash":"9132e80d7fc1ba154363cbb8202fe0cef969b55e682dc84ad0619ca135043abfdd59b9","size":11798,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/400/6554748","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"24f1e17acbfba4a89fb765e04eaa45aa","sha1":"1c3cd009dafdc991d9f811835642b8a93b0bf3d7","sha256":"d1ddad4cac079e1b1b888f424363b65ca17e465771edbb943ec57e70c3995999","sha512":"7ed2d6479e8d86c5f09277983e97965d8d69751a41c66ca39a67dc4b9dc47126e197c2faf707bd10d9e58cdc869bd52c1cd5176fea693bd8616eb6bda3ffa45a","ssdeep":"1536:CDlqP7JqOO3hJ5zkq88tunUEQwpO+L1YJAL+U:JlwO1qA+U","tlshash":"348384a5f16674ea4222f87309af225b977a6664f82f8570a03db251373011ff16f8dc","size":82030,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"push-sdk.net/f/sdk.js?z=829726","fqdn":"push-sdk.net","domain":"push-sdk.net","tld":"net"},"ip":{"addr":"157.90.88.11","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"aa7723ddc86d39d9a0819c16f4edd278","sha1":"95e35d7cf2399ca66a4ca5d8e5317415ecf8c06a","sha256":"0bf3637d1dd3b7acff96a15a58a4887e3eed934818e54e0aa460a39b8e342ae7","sha512":"1fca6cc3ea71eded4134231cbad03bc03ebc01604dd908b32176fae9b1f74ab8d7ced95115a74abee3232316d1d3f8be2570601757c57bb4d6108b59e4a37345","ssdeep":"1536:45BbtykoAiMuTMgcuM+H1uakHMR/FMUelhfx/l8pMaiUh/Ssk:45Cluakapk","tlshash":"dd33b58c7bc670241297a428186f10d6ee377ca5a10dc542fc56f7d23b68a2ade33db4","size":51777,"data":"","first_seen":"2023-07-21T05:21:35Z","last_seen":"2023-12-07T23:41:41Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"89e89aea544ea2785d49cc4cd9cf26f6","sha1":"7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b","sha256":"86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9","sha512":"4b8dd773d9f31126c5ede9c02f2ba5bffd5086cb28bd60838479afb76929b73fc9242306dc83b8ff9ab89a272274041f8a2c58df55c4399f420d70bdd0348e43","ssdeep":"384:WD0oj9jB5FCCLbGPLG8wXcO0SXcxu7YB2glWqKbexTRl6mo+rv:Voq8UtwX30SXcvB/lHzRgMv","tlshash":"cd82c8da3219bd6a5ef02073437f3b6dba6694a4f47f85b2805678a4393154bf203ec1","size":19019,"data":"","first_seen":"2023-09-07T20:07:13Z","last_seen":"2024-08-21T07:20:54.605423Z","times_seen":2395,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ssl.p.jwpcdn.com/player/v/8.9.2/jwpsrv.js","fqdn":"ssl.p.jwpcdn.com","domain":"jwpcdn.com","tld":"com"},"ip":{"addr":"151.101.194.114","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"9ce4655dbc7b8410f510da753f3be441","sha1":"eca19a305bcc0901be83cdc88f9d1f1030636738","sha256":"f44ac5619379731a4dd9a546101768c537a472dcbe049735c3740661a9f582d7","sha512":"fe673d789c045265239ef11bb5ff829fdfa89afc1562fe43175fbe9e44c71365fab952dcd946d8347a82679c4a00a92e3e819dcc700c917b48a09d4ad13f3467","ssdeep":"768:zhLd3kB4edhHjBWJ8KKJ6Bwq1cjmUcSOmWW4Kw4EV9/zp74GX:b8njBWJ8KKQLcaUcSHWW4Kw4Ebl74G","tlshash":"f633c78e3689712a5a53747c90afb546723d19e3304ec710ea50fe893c2da5ee633b5c","size":52723,"data":"","first_seen":"2023-03-07T01:19:37Z","last_seen":"2026-04-02T03:48:08.94332Z","times_seen":369,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ade05f53491aebeb90339f7f8758d88b","sha1":"2ecf4c2880057839e68565d086ecbbc7f4d09a9d","sha256":"f094858de1edfc30fa9032ae5b9cdd8a865acf3a3e0291e2bd23239c16c5c547","sha512":"205b8a234e858a7f47549ed367c1c1ce6ffc35bcb93167104c50436741ba774a7c144976ab3d5118b5466d8e8200b4523ba059020c96f4d6800722f770b02e7f","ssdeep":"192:y2QECf5e0N/Be2h1CN3bhFrQc63LPxTSW6yrINR9ouvLUPLfxjTYoU1P:y2QECf5e0d8Nh637P+yrIXBwjJooAP","tlshash":"b6229549efc039050353dbba341f60c6ed7d3a9ee85d884ae022eca13955227fde9479","size":10495,"data":"","first_seen":"2024-08-20T20:53:58.918596Z","last_seen":"2024-08-20T20:53:58.918596Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"meenetiy.com/5/6169305","fqdn":"meenetiy.com","domain":"meenetiy.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"b2bcc6e59751b0c41542e525d743a4e0","sha1":"d835a2cfe27f6a20c63ae816a571129921cf6e0b","sha256":"36304071f77a6c48106d1ab17153d53a1ae27a5e8b2367d26396848d72b6b24c","sha512":"18d9125c6b15b21d74edb387f1c459ecd19bf396c6a7f3184db3265b840f7b44b2fabf1dce0aa494e7e4130ed9fb1190334dd3c345241b44b722ccf671891905","ssdeep":"1536:JKdYTTrm68TQ36vjAwHdrDBo7LycVAXhLrwghdKctPlXBBgg5Y:kdYrm6h36veo/dBXq","tlshash":"1563e58df2a5703592a721b9613fa219b33768292c494410b52eddc03e3de4ea377f6d","size":71189,"data":"","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dweatherbe.org/dW9mZWMUDQUIXBRSBEMWBwNbQFEzSlQjB0ZYEgdXB18SXARMVgxLABkAEwEFBwAIEU0bChJAUTMoKFdWHT0MKzY0Pl4CJzAiLic7BiQiCRMjCxEwMTctLxU7IAsyKCc7AjA2BCMlVBUsOgg8EjlEWyMrJDcnMjQTFgsOMwExGF4NJx0qKiEaICAkDgQ0JgogKCIEBRwyRAggPSANKDMnOjMmMz81MRcsAjEZNTIhIBklPgIqOyUePCU+KTQKIg0lBTA0QCMkCVowCz4gMC0pIxQ0GQQEIjQ4LSQdOS8MIRIhIgQ0VAAnJQUwNycpIwlTEgsRKCwkKUsjFTMIMAAhHCE3PSIzKgItNjM3CidRNBg8ADYyIiQnFBImKCM5Jy40CQk0NyADNj0MAidTEjoDEipTBRUKDQVSNxA2FykSBDoMOwFTNxwFMw","fqdn":"dweatherbe.org","domain":"dweatherbe.org","tld":"org"},"ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"927b4252deccd1175e082a1dd03648db","sha1":"72d84f70612bf55438cd895ed7779dd241b3d33c","sha256":"1faf30d8c78104476070596ddb7dc0d35b97a253e4e3101c5e7a21a70f7b19fc","sha512":"91d6c44e0fc7e52385fef91e7e72daaa1051232efb94c4e6b88141b4dd0b2d34ea3a67a79f1e952141613a1b2aa449a51aeb6fbb9558a148067d184ca707f555","ssdeep":"","tlshash":"b551d28d34f360c2c2b66025553b7856fa284990974ccb58873d92bdbd715ee6317f4c","size":2985,"data":"","first_seen":"2024-08-20T20:53:58.919564Z","last_seen":"2024-08-20T20:53:58.919564Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"dc162737c6839a5c15cbcf1240b5effb","sha1":"d87d57a2de24261b6385958aecdedfa21253ea23","sha256":"a38253914bf694d53dbf85304c2dcc046667297556448235de955e826f448f0a","sha512":"fdea936ec38bae4959e56feffcf93096c6dfefc73627f84a044a8a2ff9838bb76612bc3867e47a7c68772f7ac899b213833c6d90a8307ecea9e932bbc45f720d","ssdeep":"","tlshash":"35c02b9c212e1cb051f73f408b7fb704b021720494d07931480a73444d20e03d745814","size":151,"data":"","first_seen":"2023-10-01T04:30:17Z","last_seen":"2024-12-24T23:42:52.272953Z","times_seen":73,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/jquery.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b72afe07a6f6f477120f3b0803d0a983","sha1":"78ef8329a917d65f8bedf5e1336724c6f5b80404","sha256":"f1a9c17b50d6278a694406d9e5dce160f81afd7a2683dfdf07f0651c38bdaa8e","sha512":"823b863fe8840923178a5cf7da42ad9a99c019ca237c320c080338a0b96d95a4662405e91877372bf664e0b6947e70202958a6513727b450cf9d04d29f50da26","ssdeep":"1536:hLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6tv:nkn6x2xe9NK6nC6N","tlshash":"708319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86923,"data":"","first_seen":"2023-03-07T12:33:50Z","last_seen":"2026-04-02T11:13:57.55491Z","times_seen":405,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/bct-public.js?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fff33af90dea13ff6a179ce5c80a1126","sha1":"2bea0194d58d6b8d84c4224bf4762a62d8847a50","sha256":"e01d80f20a88e84420c158b48c39174fab30e1fa8bc0ef8a3cfdf2a07fa93386","sha512":"f71a27a3fd6ab2b32d591d882e6527069a1d515641ed151187f7c3660b2c535b36eadd6f6be126b49d9772074672bdbfff3e3474977d16e03fe0ff89b121ab0e","ssdeep":"768:CyYHIMD63u55YBkk71NVIM1M40lkqSKDKqLbdarrasu3Ts5GK5ZyGK5Zyz6s:CywIMYkk71NVpM403SKDKqLbdarrasuC","tlshash":"5423090c7a64a7fb409f666e541f1a072a392e92c002d508f47d8ce58eb9d0db22773f","size":46203,"data":"","first_seen":"2023-03-12T16:34:53Z","last_seen":"2024-12-24T23:42:52.253155Z","times_seen":87,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"connect.facebook.net/es_LA/sdk.js#xfbml=1\u0026version=v3.2\u0026appId=164766160851609","fqdn":"connect.facebook.net","domain":"facebook.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b938e0b835c600209bdaae9d8ccda6d7","sha1":"d5ee79d277057e05f002a18381722b5eb75d3883","sha256":"d1b95aeb57c3285042e1e24c00cc56a8560d16daf7ee5cdfd5c75296b21ac91b","sha512":"f519d10ba250add8cdb46a82b3cddc68e01735c6c80b24d4af37aa0ca108340b59a21bd2cc19bcd4753f66ff5a5dc17f6e3500e91be6436fdd90c954a6ed3800","ssdeep":"384:Ps5FfMCDA9SQM/Psw1A9uW1HVMJDXMlS3RpU9JCo4wiLF:kU9SVjoHqXMA3CJCodiLF","tlshash":"1672b51e46f31232456370766b4b72047235d0473a0afe993f9c87542f8aa6e86f27ec","size":16896,"data":"","first_seen":"2023-05-05T22:33:37Z","last_seen":"2026-04-04T06:44:25.140163Z","times_seen":146911,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"39e18d2edbe11833842fdede1a1e1c41","sha1":"f94c0c1407959375750c67747971bf8914a0979d","sha256":"a1978ac7366d9bb1e99216f247f968b6421b2267969e874385080257ce13f3d3","sha512":"c117b4d54fe2fb9c473bfdb46b892885521a9ab079ed86c36b51e6d202e93766c8152e8bac7f3a1a3733c890cf01f4f2f66e118f1ea6184d9d4d6f0999b0f34b","ssdeep":"","tlshash":"a3310226ff13b4b6039606fd92bbe0449c913121d512c04240cdd8099d3cec54461a5b","size":1810,"data":"","first_seen":"2024-08-20T20:53:58.922616Z","last_seen":"2024-08-20T20:53:58.922616Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"51ead1a0cbab7a9e9ed69995063257c3","sha1":"00da5944d5602a8cea542aaa18fdd0316cbc0540","sha256":"23fd44d7160c51d4ce07fca3368b0474c956f0475d918d74ef939e46339cc096","sha512":"d7cb9437d2ca1178a9c4f83955ae547fde34390b6277654ef20b20560ae8907629691e022b8634856b8a1bcead9496fd175ff7ab58dfbbebac5420f96cc8699a","ssdeep":"","tlshash":"6fd05e38e4e1d825463750161dbfa80c6e15701b9307eaa0f92e99d80f9426cb7673a4","size":273,"data":"","first_seen":"2023-03-08T02:53:57Z","last_seen":"2024-08-21T09:32:47.562652Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"moz-extension","addr":"moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/lib/shim_messaging_helper.js","fqdn":"94b86a3e-a8f5-4509-b451-a3e524e5069f","domain":"94b86a3e-a8f5-4509-b451-a3e524e5069f","tld":"94b86a3e-a8f5-4509-b451-a3e524e5069f"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"865f01cbb34eb505834e826380d7dc2e","sha1":"c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e","sha256":"30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17","sha512":"9e37cd2e9fb9e4e926e2d1e1232c4c4ba3531d89b1d165293708849e0f88df6a40711d87c2b267ced9b6c4a27ac13079b5cb907334e2e297b588318df629b9ee","ssdeep":"","tlshash":"c5319c1f6968093c1622bed977b33403721672581151f662be5cc357239a62bc2b1bec","size":1684,"data":"","first_seen":"2023-05-05T22:33:37Z","last_seen":"2026-04-04T06:43:15.294174Z","times_seen":151911,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dt.raggledordures.com/tfV1aVkhjL8iyoL1/61515","fqdn":"dt.raggledordures.com","domain":"raggledordures.com","tld":"com"},"ip":{"addr":"142.91.159.95","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"5340000c00300000000000000000f000000c00000c000300c000000c00030c000c0000","size":5,"data":"","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-04T05:44:52.415364Z","times_seen":13609,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lyricsgrand.com/f8/88/ac/f888acd50ef9fba1586e8fc2d06e8e67.js","fqdn":"lyricsgrand.com","domain":"lyricsgrand.com","tld":"com"},"ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"267795d129d2013fd226c81964867577","sha1":"179993ebff6d7e5bdc9fa2c5fbf1809b7375027f","sha256":"8b9e225283282df17a4cab5008619343dd794086cae63a4c84617d59d533013d","sha512":"ea2b9fecb6cfbdc611d18ec46b88841de1d8dafa4f2bfd6b7166ef2baf107da0474c8925e80e041fdb22fbfd1756d76ba8d17de86a52664f9012a2a2deae950d","ssdeep":"768:VLqSjjvd1LgTjV5cmc0damPUzJnULQJLivKxWE8kAJH2wiJT4U:VLB4pRdvi5iv4JA+d","tlshash":"f603648537c0688917876b7ab61fa5e5f8690caf3c41844bb102fca0769673eeef1531","size":40590,"data":"","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"bd6ff43bc580e066aca3655cb9da3459","sha1":"486c3a6b4c2bcd3ecb1097de805e47440b2e1887","sha256":"484202c8cc4159a0bd766c878ccb7918c7ec86cea8065679133a84ebffb47689","sha512":"dad12c8f1a1653b35908e4021b62beb1046291b2aafe204f78adf665c3fc852714086f1145ffaaf7a58cb035719eb51d2ce20681950b38d074971f889caa4311","ssdeep":"","tlshash":"81d0a7e72db3a21449d631b7637e9525a457e01b4cd0cc087c9cc8bc2f51fa98a45e75","size":272,"data":"","first_seen":"2023-11-03T03:08:50Z","last_seen":"2024-08-20T21:19:46.872553Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/async.php?domainid=5786\u0026sizeid=2\u0026zoneid=6858\u0026k=1699130719416","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"240df5a00d05f37feb7a8a753a225349","sha1":"643a1969309e25c91ef54d860e758b5b312f8dbb","sha256":"3ec597ea8612cfaa55a96f44e3cd79ec25a820afc927abd20321f2eb00be417d","sha512":"2c664f3454b8b15bf7c92b14d4a526063c6886849b90fb5b7fc4eb1cb710731657ca8263bf4e7cadd991c613c5f66b8904f5aceb7c399f6b00067cc566a36086","ssdeep":"","tlshash":"db5181aa72103271c5132bb66fb976183422b106f80be4315a7ac81c2fedb390465f3c","size":2740,"data":"","first_seen":"2024-08-20T20:53:58.926499Z","last_seen":"2024-08-20T20:53:58.926499Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eu.can-get-some.in/p/1060293?c=zc_1060293","fqdn":"eu.can-get-some.in","domain":"can-get-some.in","tld":"in"},"ip":{"addr":"136.243.249.75","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"6f66d8f5645b3836ced0a458ba0bf43c","sha1":"8b809dad8bbb7578fa5ddac5f65be146e4f7f79b","sha256":"c7036eace5b72ba5887b25be42544a33555e99a7ef87c51055656ffaa566fd1c","sha512":"57afc8e65357bd544bc388d80d0cf02e96fe44ba63178619e523eb70fb1f05b85de135dd7febae7b3937c89d393b26122f05f6e60dc24b939cb183a28bf88a8f","ssdeep":"192:PHfQvXIUGiLYCM+g8SETQsnbdRGQikaPyFu9qJ5o1d:P/QvX5ruEFnhRGCqqJO","tlshash":"29f183947391f0c70ba54efbeac770c0e755b05e2a300409a7817ae625bd432d6c6bb7","size":8169,"data":"","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shortlyamusement.com/df/7b/bb/df7bbb30c095eb93d7f8eea76459e06f.js","fqdn":"shortlyamusement.com","domain":"shortlyamusement.com","tld":"com"},"ip":{"addr":"173.233.137.52","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8069ffae12d8de580c24e11bb7237256","sha1":"2d8784606d89e2ebb61d8c3f1193e6c2ecaf41a2","sha256":"e1fb123d82ef3228120043a661358ca7076445dfe7e642cb101d250a38fbc881","sha512":"8f8194e62146a39638e674782797e3bfb6bff053afce4f2701ec8f942529d83044e0fce4bd2b0c5e0f47c5ff2e48d0d45f6b8e3bd9e0bc9a4df5259a7437af19","ssdeep":"768:aLSD/HsaS8ECMDlWJMUKfwxf7MP47Lyq5Z0Db5IONlhknpMAGsvUuUuaP:aLSD/HRGDlWJ++7l39M43GsvlU3P","tlshash":"4743b7cc7f547c65529774b3731f9287e42b4d19da88c4ddf223aca4292932af4327a8","size":59051,"data":"","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/3325/siniestro","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"2ddbc1e7fcfe34245163ba34e1650377","sha1":"06a3b1e1b838852a9118482461bd23f0b16e7139","sha256":"a9c00acf3b05426658568ddf5d464ad93c7e3e497a9af98831484da0a7fdd5ab","sha512":"6a80b2f8547fd7eb88e3499ce4ddd7ee3f3104303473da9fc17631eea07713f9d5fee0929261e2c2501e1e8362d327b2bec7a1216e08b6df133c63dbc89ead4c","ssdeep":"","tlshash":"b9012d1e6317b339117732caa717910c18729053a240c08cb78c972a8f75faed6df689","size":713,"data":"","first_seen":"2023-03-13T23:12:23Z","last_seen":"2024-12-24T23:42:52.281089Z","times_seen":86,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"d4084f82a07675eda9bafe6d277a5cfe","sha1":"d40c0f4eaa6ad38d03c833f92d937345fdd06c13","sha256":"5117dfb30f6d03b36ffe88933ff0b6d9c696dacd912770e68f5490275159583c","sha512":"aea00cfba78f0507cc87c6a8be873b6dd236bfc5ca0744809cb12e6c9fdc3605b3ecb242ea60724b004e321c4ccc44cdae6b913cf576ecd9e6f896a9e8db3d80","ssdeep":"","tlshash":"aae0f10118c06a05440e35d0fdb5f7be9423d30dfe7d6e0c5b2c93867bd536c5a18610","size":420,"data":"","first_seen":"2024-08-20T20:53:58.928402Z","last_seen":"2024-08-20T20:53:58.928402Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"13b490fa5c2180266a3eb33e435a73f9","sha1":"636bbce37cc5fb53122b289cf8fee0d0c035e274","sha256":"c867066160baee315672385a74acbc9c156b19c530b952ca92cb85ead4c64199","sha512":"df629a0a3e0757179c0a4691e251e59dcbbcf7e3b3d0d27cdecb1fa36a832c03ced17e6e3fd9296dd711bb513abadd09cc09c9101c976b45e56b37035bffc1ce","ssdeep":"192:NscV4tTAu/2QECf5e0N/Be2h1CN3bhFrQc63LPxTSW6yrINR9ouvLUPLfxjTYoUV:+04tUu/2QECf5e0d8Nh637P+yrIXBwjE","tlshash":"a832d7097fc0a5054393cbba302ff0cae97d765e281dc84ae0a1eca17914667fde9479","size":11411,"data":"","first_seen":"2024-08-20T20:53:58.929406Z","last_seen":"2024-08-20T20:53:58.929406Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"d60ba3a4017e53a8264935d520ebf73f","sha1":"941041db5d075ce6c6fca93c660ad0d28e0b30fe","sha256":"844a901f425b5017733947ca89cafd32ba6fd42aec077bf50cd221f79c69cfde","sha512":"264bffa9baa041bc3bf816579235858f6297fffab592ff4dc5fff5556695a1d4963c1198c040d804d4fe2df2bb697ff74c04996d61df9c4d5df6f71ccc6c6708","ssdeep":"","tlshash":"82011e013c46ca1f857b24e0c975e33d601af00cd932cdd9a2e94121f395fcd6e09d84","size":831,"data":"","first_seen":"2024-08-20T20:53:58.930438Z","last_seen":"2024-08-20T20:53:58.930438Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"cuevana3.ch/static/img/cuevana3.png","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.273Z","timestamp":1699130719273,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/cuevana3.png HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 4675\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: \"61d24c07-1243\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=uIjBr9qIsfAtP233BgpgGk085c477eTcNqXr5sk5MR2RNqTRrEHuqcpkhy6g1vMoU6yQ0E%2BQA2f5xI9MN1KP%2FFD9QMdBD%2BjlRpmh2Up5ta3QavL3hg347wsYIJjO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3334bb5569c-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4675,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 60, 8-bit/color RGBA, non-interlaced\\012- data","md5":"30ecf26d81b4d18a7a568d42e674705e","sha1":"c846ca657d113edcdb68ae7e53b8ecede50a15cb","sha256":"f856cb85a867ba1f60a337dbbb095142c0590b426b30c5d35dcbbbd158b79927","sha512":"52d41ac87da9bf78aa8766e44886cbf20c5f9285380ba6b9d51310cd2d770d375b9eb4df5c96b63b8d0a56de100d4b86792a0fb25f066365f65319b9ee53c248","ssdeep":"96:AY10Ax5cmcjL52VPPV/iZ3ZBkcC1otkb/hl/R+lwunkOs4XaLEP2io:+AxSCPPV/U3ZaRfOwunrs8DP2io","tlshash":"d1a19e6344133242e3e201d439eacc76230b84174b418776558ef85c75869aee18d4fe","first_seen":"2023-04-10T19:46:15Z","last_seen":"2026-03-28T00:43:29.451774Z","times_seen":142,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/img/loading.gif","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.287Z","timestamp":1699130719287,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/loading.gif HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/gif\r\ncontent-length: 13952\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: \"61d24c07-3680\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=YFOCUdIEu735LYHSuj4jLTodpy7DbDF0AN6QaKO15m1wi0lQzdWUdTzR0RzBJe56xN29LwOkIZZWz%2BG3SmpUkviIFhRhJ0hQZ%2BlDfd3u649sDjD7nT1w7g6VtQHl\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3334bbc569c-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13952,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 250 x 250\\012- data","md5":"34cc62d1df1c8328f56ae7a7acf2e83a","sha1":"afb49cf3ebd59e0a02b33ef8f0c1f4ea2cefe1fc","sha256":"c4492147e1e36bd65d7237c1961a3dc3505852b195bd9fd0ca042b3e7427bb65","sha512":"bdc1d52b1a7d449e732a796f218dd5f8eea8c86963600b14afc7d6ed8144597e6a0230f39395c85dd3473c4deb20d0a2a5b9a5aa436ead161001fe0c199a8742","ssdeep":"384:Fa4Kgj5khwpw4aIm3eZfsr/qluiCIUjmw25eqnsY4h:F2gj5khwd7yS9uilb5eqU","tlshash":"6152c02e7cf91210ec5e5f162f91cd0d2c832de46a55b82bd179c0821e0d2a7293b9b7","first_seen":"2023-04-10T19:46:15Z","last_seen":"2026-04-03T20:40:39.086022Z","times_seen":915,"resource_available":false,"data":null}},"time_used":42,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/img/cuevana-logo.png","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.301Z","timestamp":1699130719301,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/cuevana-logo.png HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 5783\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: \"61d24c07-1697\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=37nFywn6gFZTnfNcMlw1jxtD8vgHTOWUpIwdBdxNAKXz8FOxmNvPVex7Cyr%2FXyk4ktSODG7O%2F5ryU43lpmQdtnnTYDZP0WNPPS9XgunIx4GwIlgoNT65Q8%2FgK2oe\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3335bcd569c-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5783,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 240 x 60, 8-bit/color RGBA, non-interlaced\\012- data","md5":"a60e73427dd677b3a22ff75d7a989317","sha1":"69d9c3b34502c3455ef4a70480a5eb78bb185be8","sha256":"bb8b54eb1859167182f80670354003360d5380d3ac9315a5c7be2bf3e250df07","sha512":"0803cdbdc24794254bfd44e12e7707ab349e764d722419773f028a3a0ed327c2dcc6fc1dc4cadc05a101306b1f5fdb102e20b701a53830171d8d887aadf70b48","ssdeep":"96:mwea2byKVPP4AzzyVIkIk4E2Ed7GxWmCwoEXbQw3rhu:mweJby/irkbVGp7bQGu","tlshash":"2ec18de4685524228b8243751286fde020b8925f2c76fa1225d3dfbabe26d84c9099dc","first_seen":"2023-04-10T19:46:16Z","last_seen":"2026-03-28T00:43:29.465665Z","times_seen":112,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/img/google.png","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.303Z","timestamp":1699130719303,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/google.png HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/png\r\ncontent-length: 1546\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: \"61d24c07-60a\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=DvC8CWbgo%2FMRNrOR%2FUSNFoKNvxseuvvm00rjo13TXnA6yuQTDVswQS64O0JqBDih%2BOl%2FH6MlGvGHW4%2FOEqOMfVdoxkYGXCYATLAnvb4wI7lfo77Z%2BRx4p0xdEurO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3336bd1569c-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1546,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 27 x 24, 8-bit/color RGBA, non-interlaced\\012- data","md5":"39fa61abc6882900163b6aac110681ac","sha1":"c8de5c8663686c6678c8f53dcfd46b980e6e309a","sha256":"6405e410140d23417d9dd63cb53590188906b0b79bab039d3d0bec253e950993","sha512":"88046c60730b1ad79de1ad89570d27229cdd3ee100abc72f228c2cc3c01740f607aaf02b884bc6ef83a6cc2308bbf84849600e7ee51d56851ae2b7dda24d7e83","ssdeep":"","tlshash":"db31b769dbc1bd0295c5d95634ea483b8c234e81aac5d870a9dfcc175e701f5802e5cb","first_seen":"2023-04-10T19:46:15Z","last_seen":"2025-10-04T17:29:42.911602Z","times_seen":143,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-GFW2EQJ0P4","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.318Z","timestamp":1699130719318,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:30 GMT","end":"Mon, 08 Jan 2024 08:02:29 GMT"},"fingerprint":{"sha1":"3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA","sha256":"B2:36:22:7D:39:74:21:4E:E2:98:4A:15:1D:E5:2D:20:AC:EF:50:AB:7E:1D:E2:0F:75:35:83:BB:BE:A1:9E:ED"}}},"request":{"raw":"GET /gtag/js?id=G-GFW2EQJ0P4 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\nexpires: Sat, 04 Nov 2023 20:45:19 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 92996\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":92996,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"7e53d98bbbbebfe8d7012f6187289b21","sha1":"54d2f6f00fc3d7ff9e6b884a6b0a1a67edadfb52","sha256":"d318e6cf8b58e63f27c07a63f4b40bed4461fc919943792c15b4f3f8758de75e","sha512":"7aa1594ccd645bc32849d025f7b7df67451ca2f2a41cafc40b0581ed76727e60e9e721a5b8b1688b8f17204bd7f50b01e8b31b427ade5e12b6a3959a9ecc2c08","ssdeep":"3072:/K4a+K36EllMSX/tyeUyjceKdxXAKqM8GyP8QUCWaXb3WV/iwR2I9LZVokA6hEW5:y4GZBVyeUyUQFP8FCWaXb30KIYkfh5","tlshash":"875419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":331,"timings":{"blocked":110,"dns":1,"connect":21,"send":0,"wait":27,"receive":27,"ssl":140},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisimg.online/cover/siniestro.jpg","fqdn":"pelisimg.online","domain":"pelisimg.online","tld":"online"},"ip":{"addr":"104.26.8.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.277Z","timestamp":1699130719277,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sun, 26 Mar 2023 00:00:00 GMT","end":"Sun, 24 Mar 2024 23:59:59 GMT"},"fingerprint":{"sha1":"E8:BD:F1:D4:FA:85:A7:00:87:E3:98:2F:48:F9:3C:59:50:95:BD:16","sha256":"58:BD:73:0F:5F:02:D0:F6:82:EA:B7:0C:01:0F:EB:47:2F:58:6C:DD:16:4E:9C:3B:B8:ED:5E:F6:D0:1D:22:B4"}}},"request":{"raw":"GET /cover/siniestro.jpg HTTP/1.1\r\nHost: pelisimg.online\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 44159\r\ncf-bgj: h2pri\r\netag: \"5ccfe335-ac7f\"\r\nlast-modified: Mon, 06 May 2019 07:33:09 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=wf2uFP74bcIYpK3zf9bVq9znxQEvCCCBKkcrWPsbgQyHcIMXFuF%2FKIB1kqZdZ%2BqlLUtQVszCte22fz65wBwt6SPSlK5HIaSBlvB0gQZs5%2FAROqQQj685FIV%2B%2BqEgIbVSoA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3348889b4ee-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":44159,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: \"CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80\", baseline, precision 8, 326x480, components 3\\012- data","md5":"8266b9e17bf161ccc0c312f98eb7f449","sha1":"7cfa95d447a743c8e8829526156ddd04344b261b","sha256":"dd799e9bf0050dc3199f6e7df4d545abcfab536010f736718a04a5277c213cac","sha512":"e3855c1609855f5b00843ac16938576d02631cd4b848c0084df5c46a1128d3db44de896bbd615225efce5ec3209ec00d598b7b1fcce5d9085092ba3a209f4eed","ssdeep":"","tlshash":"","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":436,"timings":{"blocked":165,"dns":64,"connect":12,"send":0,"wait":54,"receive":15,"ssl":123},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/owl.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.310Z","timestamp":1699130719310,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/cdn/owl.js HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-ac8e\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=aXd8TkWSmvLvJW7z2%2BzaMk0r%2FBaz4fGxd%2BmxN6WdyId4%2FOY05mUykvaUy1XNfLkeN6RB9Xn6Qa1D83weVr0vMm7PisXbul4tl%2B6oV%2Ba%2BwYL3xD7%2B%2F9ewt5KvEVMs\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336bdc569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13565,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (44174), with no line terminators","md5":"883f41b48b014cb22784f5b09729ec8b","sha1":"c1a9ff684662647040971f4926db914e2cee6ea9","sha256":"4388c2b7009bc437605e6ff62c170faf788b1d8b8800717223160bbacec0ae5f","sha512":"15ca4d9fce347ccb8cd7c2d74baa629ccc03363b1dff5dc65d4b2c22fb8b71130f9d1231006f2b2abfc3dd45f98e700304b77b76afada70c0dfca70c14f26156","ssdeep":"768:OCI7dmuMFAAJG4dlQKNORpnXGAtep2lcwJeL+wr2RSWc7UuHjRUQuFBt33:VITMFC4dbMVRSWcgRDV","tlshash":"6f137346b3202d2a869b61a0663f160bb23a241ce414547d7d79e6de6d7d88c213ffbc","first_seen":"2023-03-07T01:34:40Z","last_seen":"2026-04-01T00:07:28.397986Z","times_seen":640,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imp9.bidgear.com/rec?t=1\u0026z=6858\u0026uuid=a63bdc82d40340448e661f45c8326c3d\u0026p=85\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130719","fqdn":"imp9.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.774Z","timestamp":1699130719774,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /rec?t=1\u0026z=6858\u0026uuid=a63bdc82d40340448e661f45c8326c3d\u0026p=85\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130719 HTTP/1.1\r\nHost: imp9.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 599\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3IL1Z3MXkCtb8kAFe1XAnaNhXbi%2BhUhznEuLreEIYdqZFlLw3v0eWsQ5MD0Isv6MAGFu9cG08IsxTpAAj7u1ZHUAogTOjtEOpXNVK%2BTJvl4wsFgfCGmcuhSewwRvG50dCBc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3369e43b4fd-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":599,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1x1, components 3\\012- data","md5":"ca49a7e783b806a4e8576ea80346203d","sha1":"6fe9d083221dae98f6c76f7121c37bc884b02d82","sha256":"3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28","sha512":"b564eb9ab87f42e8ec4794647a1ccb84972b435062a81569ce543c3a6e2252125c2c966a35885d0269635212e1f7d44ee64eb0a2378f7ad849e704aecfa48651","ssdeep":"","tlshash":"e9f0202aab132610df1395be040a24b3a1db45823d603a312db186a5c620cf48449708","first_seen":"2023-04-05T02:54:02Z","last_seen":"2024-08-21T09:44:12.864116Z","times_seen":1585,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":140,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imp9.bidgear.com/rec?t=1\u0026z=6326\u0026uuid=9886f7702bd04df3a0efcdbcb11f363b\u0026p=10\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130719","fqdn":"imp9.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.815Z","timestamp":1699130719815,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /rec?t=1\u0026z=6326\u0026uuid=9886f7702bd04df3a0efcdbcb11f363b\u0026p=10\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130719 HTTP/1.1\r\nHost: imp9.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 599\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=FKk2lZQ2JsaR9Ahkr7ipcmzrjrZmNgV3TQ7CNY2qqnXz%2FBSOP9IS6Fty7t47CoCPg2L5%2FkyFamIQDDGKbNlSRV2qQjz1kIQ8nFYtpJw5Rrgu09IN5QCujBAxVTcSkMrjuSc%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb336de7ab4fd-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":599,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1x1, components 3\\012- data","md5":"ca49a7e783b806a4e8576ea80346203d","sha1":"6fe9d083221dae98f6c76f7121c37bc884b02d82","sha256":"3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28","sha512":"b564eb9ab87f42e8ec4794647a1ccb84972b435062a81569ce543c3a6e2252125c2c966a35885d0269635212e1f7d44ee64eb0a2378f7ad849e704aecfa48651","ssdeep":"","tlshash":"e9f0202aab132610df1395be040a24b3a1db45823d603a312db186a5c620cf48449708","first_seen":"2023-04-05T02:54:02Z","last_seen":"2024-08-21T09:44:12.864116Z","times_seen":1585,"resource_available":false,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":125,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.6.3/webfonts/fa-solid-900.woff2","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.103.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.757Z","timestamp":1699130719757,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Thu, 12 Oct 2023 00:00:00 GMT","end":"Thu, 10 Oct 2024 23:59:59 GMT"},"fingerprint":{"sha1":"CB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78","sha256":"29:64:7D:BB:E2:78:A4:FC:4C:B9:DA:F0:4C:9D:D9:B3:4A:8A:7F:05:C0:AB:83:05:32:CC:89:BF:07:9A:98:E6"}}},"request":{"raw":"GET /releases/v5.6.3/webfonts/fa-solid-900.woff2 HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 79100\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\netag: \"5dc01cfcd5336f696cb85da7ce53fa9b\"\r\nlast-modified: Fri, 22 Sep 2023 01:45:45 GMT\r\nvary: Origin, Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 285939\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=hLIPTWo8d2KL3rpxhpxLNNAW6NSTv7x2fCqimhifJ3SE7rD9Yp0iikAGJri0XZ9EYJQdJGooT0uJ0iPzIWQQYbfq0PnHlDZxK42L%2FAhagWvVL9uWeZEhpni21CY3YHr91XvV8Shq\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3379afa4194-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":79100,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 79100, version 1.0\\012- data","md5":"5dc01cfcd5336f696cb85da7ce53fa9b","sha1":"28a1f2fadc35c5343e0280389fe7955e3d1be607","sha256":"f419ad7a4477f36ce73c74a23dce784150ca38fa5075a8e06109709cbb716903","sha512":"e38f03ef448a304331e307da790021f2ba8c70ac7165af98713c23bad271f3a9748f466326854b341b1eb48857d66df816d71128b0fa73ca0ae36ae4e5530cb9","ssdeep":"1536:M8wA8lwB/pq1v8vTYOw5nn6zCaqY7uDUy6+p+VuQ7HQg8Qf0Rm:qNlk/oB8vT7wyaqu674UHGvm","tlshash":"c2730284f9241ae8a6836a8b860df237315c77aed258a1c14e7e81d84dd6f1d3fd97c0","first_seen":"2023-04-10T19:46:16Z","last_seen":"2026-04-04T04:13:18.332561Z","times_seen":7693,"resource_available":false,"data":null}},"time_used":430,"timings":{"blocked":159,"dns":1,"connect":35,"send":0,"wait":37,"receive":68,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"use.fontawesome.com/releases/v5.6.3/webfonts/fa-brands-400.woff2","fqdn":"use.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.64.103.11","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.759Z","timestamp":1699130719759,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"use.fontawesome.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Thu, 12 Oct 2023 00:00:00 GMT","end":"Thu, 10 Oct 2024 23:59:59 GMT"},"fingerprint":{"sha1":"CB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78","sha256":"29:64:7D:BB:E2:78:A4:FC:4C:B9:DA:F0:4C:9D:D9:B3:4A:8A:7F:05:C0:AB:83:05:32:CC:89:BF:07:9A:98:E6"}}},"request":{"raw":"GET /releases/v5.6.3/webfonts/fa-brands-400.woff2 HTTP/1.1\r\nHost: use.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 74288\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\netag: \"eac60e8a656781e13d2a674b4d9051c0\"\r\nlast-modified: Fri, 22 Sep 2023 01:45:45 GMT\r\nvary: Origin, Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 286547\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=TsFN76ahs3%2FYFULVk0b11MQvHtaZFb9hPc%2FpSHWdDhCdwjypd5ikWcCgOF0NVjuq4Vz51ACwEgskT4uzAseU1zpS26aaUMID4LUN2i1z6XZvsEzc3r1sdVJOKytek%2FuEwKWtk8io\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3379af84194-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":74288,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 74288, version 1.0\\012- data","md5":"eac60e8a656781e13d2a674b4d9051c0","sha1":"0039be9d8a99d1e5cf200ca3e08757692020460e","sha256":"eed474a49bdbf745c19e463f070e67977c1ab27835603eb749d9e5c249cf81f8","sha512":"a992025f80a43af41d6c84ee0d530bf44ca2df012787d06ca52b626cb4c40b52b74ec475e25772bb8f3078323bed5f5f8f132b8db95ca85dcf009887d8013f97","ssdeep":"1536:9my0Y11bRDQRqH2HBUaU9cICjYEXBs6NvBX5Se:09Y1NRDQtFuQBVtEe","tlshash":"377312b93de0675c3210eb7826ca07c0169d55aeaef976146fa3b24fcd3830190a7db5","first_seen":"2023-04-11T00:21:20Z","last_seen":"2026-04-04T04:13:18.356469Z","times_seen":5330,"resource_available":false,"data":null}},"time_used":433,"timings":{"blocked":155,"dns":2,"connect":35,"send":0,"wait":82,"receive":30,"ssl":125},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.buypass.com/","fqdn":"ocsp.buypass.com","domain":"buypass.com","tld":"com"},"ip":{"addr":"23.33.119.65","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:20.108959873Z","timestamp":1699130720108,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.buypass.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 78\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nAccess-Control-Allow-Origin: https://www.buypass.no\r\nAccess-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale\r\nAccess-Control-Allow-Credentials: false\r\nAccess-Control-Allow-Methods: GET,POST\r\nMDC-correlationId: cf495b28-536d-408e-bfbd-1ce15eb5bb84\r\nContent-Length: 1704\r\nDate: Sat, 04 Nov 2023 20:45:20 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1704,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"d81f3671847c32a4b023dbe05a83e11b","sha1":"bbd03a5a69e16d8b32c96879c8031bdd6a1f4b5f","sha256":"a4f5d18133ff6732a61567bdddb2445cdebade8dbc97a97a54d2e9b9aa8adf21","sha512":"9da0050a5037f9570a38987ed6242a9e6a0db02e2309d29bfdb8367a6cdee6267efa5f5588167808283d3708f708c829fd05abe08ef3e096590a03efbfae5fcb","ssdeep":"","tlshash":"9b31b652af342a555b828f53e1cccca699f481c46f242c8e11bac746994d3f37dd8c6c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"d1ha41wacubcnb.cloudfront.net/?awahd=977549","fqdn":"d1ha41wacubcnb.cloudfront.net","domain":"d1ha41wacubcnb.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.99","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:20.142484996Z","timestamp":1699130720142,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /?awahd=977549 HTTP/1.1\r\nHost: d1ha41wacubcnb.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 54748\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\naccess-control-allow-origin: *\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: rwhC0ja8Vt7cO-kKAytzOlPiRkOBbX2U9tkDVj9B2ak3sb2AdUdE7A==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":54748,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (15948)","md5":"bda4003636a6d74d019b44a51cb33fd0","sha1":"5c36c95a0c1b068cdf0bbf39010218f6cbeb6dfd","sha256":"e0e456e8ad47b6120376abdce06476ba970114f9e6b4e89373d7412e773bae20","sha512":"09b273dba11eac8bf6ef3ed6d554fbf6aad9b761245b515a55b2227d39ac65ca5d6882e751087d092d4c11b2fc061b8805933e62f8087e7e2d69331a577208b2","ssdeep":"1536:syDzbTOJxzRWO1UA5knouwTI5LCsMB3OsOebgkT4jlaTEp0AN0p7wFO4TgKvmY9G:WS9XPLAya82hrZ5LxjFYiUUFvVI4Gm/","tlshash":"16f34bc9be523869835374a650ff128a723f4669b8084dd4b49ad4d13db8d0643bffac","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"abusedthrown.com/ryWiOh38XLURn/61519","fqdn":"abusedthrown.com","domain":"abusedthrown.com","tld":"com"},"ip":{"addr":"23.109.82.17","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.824Z","timestamp":1699130719824,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"abusedthrown.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 24 Sep 2023 23:49:54 GMT","end":"Sat, 23 Dec 2023 23:49:53 GMT"},"fingerprint":{"sha1":"54:76:58:A4:43:8D:1A:F2:AC:19:F7:DB:29:A5:5E:D1:9B:70:BE:89","sha256":"AE:C0:CD:D6:AD:FE:08:07:03:E0:52:97:2D:E6:9E:F3:C7:F9:D2:31:7A:04:F7:F8:71:4F:2A:4B:FE:0A:FB:82"}}},"request":{"raw":"GET /ryWiOh38XLURn/61519 HTTP/1.1\r\nHost: abusedthrown.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 04 Nov 2023 20:45:20 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://cuevana3.ch\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Sun, 05-Nov-2023 20:45:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 05-Nov-2023 20:45:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":806,"timings":{"blocked":385,"dns":36,"connect":25,"send":0,"wait":27,"receive":1,"ssl":312},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/css/footer.css?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.305Z","timestamp":1699130719305,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/css/footer.css?v=2.3 HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-d470\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=uoqLvKcOULm6t%2BpJUBEQqE0isJK6knSnEKeYkhq8F1D31mq%2F%2BORAMsCIB5HHnFtYn2dbWRJ4JK65KSaEsy5mzcXa%2Bs7h1hI%2B9%2FkcLA4HIheW7hZask6LB16usuI2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336bd6569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11696,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (54384), with no line terminators","md5":"f79afdef6b4bfa003028cdef4fffdff1","sha1":"3e53151b0aa9c2c7d6b5ae1382cac00d5b7bdd06","sha256":"3fddef2f6536f7548e8f496800e05ecbf6d4ccf364a446585af93742c47f03a3","sha512":"955c74016dafee113d3d2dcc8ed78533baec3672664f4633075bac7e794991371bfd0da2432bf543b7b6c430370075ef268e6ecc86fba015a44d6cbb86275c22","ssdeep":"768:BV316z1MPq4lQuU63HJgkQCZ/mMQyjJKp7CzuNnQzK:BizGC4lvzH6BCQgu7cum2","tlshash":"53330bb8e54d41c9a731c04bff82b2bc61b6f73ce5914d95f00e691c2ad26a811c5fba","first_seen":"2023-04-07T19:33:11Z","last_seen":"2026-03-28T00:43:29.409547Z","times_seen":95,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/jquery.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.306Z","timestamp":1699130719306,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/cdn/jquery.js HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-1538b\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=csuleZk%2Ff6WBPSjw0KOdpnKcHOJ%2BFUHWIDsPnn4kKqkRIws35BgsMHMUizm45AUseWqbnMV%2FSmrxSsoCzDsrva%2FhEBUhdXno7vW9QLCk%2Bge0WsrEi34YWQOLxgCH\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336bd8569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54680,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"b72afe07a6f6f477120f3b0803d0a983","sha1":"78ef8329a917d65f8bedf5e1336724c6f5b80404","sha256":"f1a9c17b50d6278a694406d9e5dce160f81afd7a2683dfdf07f0651c38bdaa8e","sha512":"823b863fe8840923178a5cf7da42ad9a99c019ca237c320c080338a0b96d95a4662405e91877372bf664e0b6947e70202958a6513727b450cf9d04d29f50da26","ssdeep":"1536:hLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6tv:nkn6x2xe9NK6nC6N","tlshash":"708319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T12:33:50Z","last_seen":"2026-04-02T11:13:57.55491Z","times_seen":405,"resource_available":true,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.r2m03.amazontrust.com/","fqdn":"ocsp.r2m03.amazontrust.com","domain":"amazontrust.com","tld":"com"},"ip":{"addr":"108.157.233.112","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:20.888934885Z","timestamp":1699130720888,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.r2m03.amazontrust.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nContent-Length: 471\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=7200\r\nDate: Sat, 04 Nov 2023 20:45:20 GMT\r\nLast-Modified: Sat, 04 Nov 2023 19:15:26 GMT\r\nServer: ECAcc (ska/F6ED)\r\nX-Cache: Miss from cloudfront\r\nVia: 1.1 b301fa8d72072cc0289eb055d8389e68.cloudfront.net (CloudFront)\r\nX-Amz-Cf-Pop: ARN56-P2\r\nX-Amz-Cf-Id: HyHHMZk3DOGGaYh-W-0DZq359SW6RKS1Rvv0rczSqeSYLjQdzRlgNQ==\r\nAge: 5394\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"fec7cbd8d692ee1251b308b5da0e3551","sha1":"3633c01f807f03ed7e4b77033e0514fd4a5bdcd5","sha256":"ad5dc1510a81edd5facd539b5d239ebe7800a3a5a5b5eea56832399235fcb676","sha512":"96ff73af0c9e21e7a5e5e06fbde89d7d33bf79b8f73871337926c256b8f853563f733628ec32ba9e803336bb6371d3a2d5a7956f3da105f1c55f1feee41f745e","ssdeep":"","tlshash":"8ef0d405869430c0110cfd5b8ffbce2174818c4124c6165a613c4f5ad889ab58e06188","first_seen":"2023-11-04T05:37:55Z","last_seen":"2023-11-05T07:09:06Z","times_seen":174,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionalswebcheck.com/stats","fqdn":"professionalswebcheck.com","domain":"professionalswebcheck.com","tld":"com"},"ip":{"addr":"3.122.74.31","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.593Z","timestamp":1699130721593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"professionalswebcheck.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 30 Aug 2023 00:00:00 GMT","end":"Fri, 27 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C","sha256":"34:E2:43:43:4E:FA:CF:25:BA:94:FB:DC:E9:CD:BA:35:F1:15:90:E2:F3:90:42:3E:A2:52:2B:30:7D:BC:5C:69"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionalswebcheck.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://cuevana3.ch\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nset-cookie: uid_id2=35b94086-d0a4-45ac-9b56-e09679ab9671:3:1; expires=Tue, 01 Nov 2033 20:45:20 GMT; secure; SameSite=None\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"1473294c061011a5962f2babc8f7e6a8","sha1":"b42efb7cec1271870fffa8158cb29c7838914ded","sha256":"1404e998741e9829d099654bf49f992a50de8d6dcd485eecf7332a7375e455e9","sha512":"98fd36c2c821e5f0aef74b7d8de14ec3657cf5ad23a2feb27ed1d51770473eae991061e448f0c6ce01e7f78abd21b2baee7db1c379bdae19682170ba4f6d4ec4","ssdeep":"","tlshash":"e190044410341004c100511715d04d150c470011c4f073c1fd3554111c50070ddf0431","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fvcwqkkqmuv.com/solid.gif?z=1995260\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"fvcwqkkqmuv.com","domain":"fvcwqkkqmuv.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.906Z","timestamp":1699130720906,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Sat, 28 Oct 2023 11:35:09 GMT","end":"Wed, 24 Apr 2024 21:59:00 GMT"},"fingerprint":{"sha1":"F4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D","sha256":"EB:91:E9:89:F6:74:9E:1B:67:48:AE:D7:6F:3F:A8:A9:09:0F:95:F2:5A:39:04:5F:48:19:61:FC:E4:60:38:5F"}}},"request":{"raw":"POST /solid.gif?z=1995260\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1 HTTP/1.1\r\nHost: fvcwqkkqmuv.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-route-id: stats.tag.loaded\r\nset-cookie: CHCK=1; Path=/; Expires=Sat, 07 Dec 2024 20:45:20 GMT; HttpOnly; Secure; SameSite=None\nUID=2311041545320e9f49b5324dfcb0e848bc6f; Path=/; Expires=Sat, 07 Dec 2024 20:45:20 GMT; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"28e463819a210071de3b45ebe7633613","sha1":"6dccd571828ec0912629119cf7eabfea9f33ddbc","sha256":"44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84","sha512":"8a82ac5a7883cd9b74bdb561cf825ce86474e259ad8c445e538d697b0003e3f2b1d6edcd3dc6512f4ad16e9074da204a79938257c457ecf68f4329eac0182e67","ssdeep":"","tlshash":"04900003e280e082c3a0c0300e0ccb802b88a2308a28030fb0fc2baefc3a3a20c23000","first_seen":"2023-04-05T09:26:54Z","last_seen":"2026-04-04T06:19:11.134515Z","times_seen":20429,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nandweandthe.org/M055dVMccRoGbmAYOyYedj5MLBR+BhxGalsXKDspVRkRGxB7dl8BOldzQEJkBnpAUyNaKkREdUA6GAEmQHNIUzpdKBZIdUVzSFtgB2BKQX0DaAxIYhU6CRQ0Dn9fBSdHIkREZQp3SEZjBHxJQmQH","fqdn":"nandweandthe.org","domain":"nandweandthe.org","tld":"org"},"ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.785Z","timestamp":1699130720785,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nandweandthe.org","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Oct 2023 06:45:49 GMT","end":"Sun, 28 Jan 2024 06:45:48 GMT"},"fingerprint":{"sha1":"1F:B6:15:88:D9:CB:F8:82:C6:0C:AE:98:CF:A4:E2:D8:06:4E:0D:6D","sha256":"B8:01:DE:85:2B:65:C6:B5:37:64:91:0A:F7:91:37:EF:98:07:84:8C:76:CA:46:E7:54:71:E3:23:E4:02:DE:6D"}}},"request":{"raw":"GET /M055dVMccRoGbmAYOyYedj5MLBR+BhxGalsXKDspVRkRGxB7dl8BOldzQEJkBnpAUyNaKkREdUA6GAEmQHNIUzpdKBZIdUVzSFtgB2BKQX0DaAxIYhU6CRQ0Dn9fBSdHIkREZQp3SEZjBHxJQmQH HTTP/1.1\r\nHost: nandweandthe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=yjRSzsvzbVa%2FVvMf0GL7lnqIGjJ688KkAIMlH3tsK%2B3vbloiAeIoNCLwsDACma6f0x4CVXm2EHhLDpCmH9wTJHPjA3Bux%2FEvoi1taMQVu29KPMNwqzwhtr8IW7XF%2BX4fejrx\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb33d6ef70b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":261,"timings":{"blocked":72,"dns":4,"connect":1,"send":0,"wait":116,"receive":0,"ssl":56},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dweatherbe.org/eGQ0dDkZBlcZBhlZVlJMCggJUQs+QQYyXUkMVUAIDwVXAVsbClZaWhQLQRBfCgtaABcWAUBRCz4AYR5dEgdsE0EvJQQsawE+UTYJACZuJXsvNmEyCSA2dRF/ES1/OUFMMnwyUhQlXiUKHgMNLH07DGAsUj4BZBhgNiJfIgktAwQnay8pZjVRLQVWA3c+JmUTACAiACN4Oz5xMV4pLntEAT4yQ0RDOwMAEXgSEFYwQToAbTx/LzwEHAo6MnoueD8pcyZSMVJQA28sLGYxASkMQCFqFS5kIwkbCm41dz81XgQKOjJ5MH0WB3E9UjotVQxVLDNyRV46ExklbD8eWC1rEykRRnshJVAnaC0MXjYIMjFnGXMqJ1M5XTYiUxZvPQthNlUyJWIZcCoiXwxzXg5HG1cIWWQbVDYKcgd1HS1Y","fqdn":"dweatherbe.org","domain":"dweatherbe.org","tld":"org"},"ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.824Z","timestamp":1699130720824,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dweatherbe.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sun, 22 Oct 2023 00:00:00 GMT","end":"Tue, 19 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"B9:18:AC:1F:87:E4:2C:E9:36:35:FF:E7:F8:8F:F7:77:F0:AB:4C:4A","sha256":"50:E5:D8:5C:74:BC:BB:FD:C9:EC:F8:CB:E7:31:E6:48:4D:16:4E:C9:56:2D:FA:E7:02:D5:38:25:45:DD:BE:9A"}}},"request":{"raw":"GET /eGQ0dDkZBlcZBhlZVlJMCggJUQs+QQYyXUkMVUAIDwVXAVsbClZaWhQLQRBfCgtaABcWAUBRCz4AYR5dEgdsE0EvJQQsawE+UTYJACZuJXsvNmEyCSA2dRF/ES1/OUFMMnwyUhQlXiUKHgMNLH07DGAsUj4BZBhgNiJfIgktAwQnay8pZjVRLQVWA3c+JmUTACAiACN4Oz5xMV4pLntEAT4yQ0RDOwMAEXgSEFYwQToAbTx/LzwEHAo6MnoueD8pcyZSMVJQA28sLGYxASkMQCFqFS5kIwkbCm41dz81XgQKOjJ5MH0WB3E9UjotVQxVLDNyRV46ExklbD8eWC1rEykRRnshJVAnaC0MXjYIMjFnGXMqJ1M5XTYiUxZvPQthNlUyJWIZcCoiXwxzXg5HG1cIWWQbVDYKcgd1HS1Y HTTP/1.1\r\nHost: dweatherbe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1170\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\nserver: openresty/1.17.8.2\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: Ug_Myq2Kn6fIYirlisW6hF9FKEKkn9KvIlKNQnXzjyj2K2L5N1D8xQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1170,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (3018), with no line terminators","md5":"58adcd42838e4116bbd1331ba1c5d55f","sha1":"46974676910830b91b5fb920c19d5579d536f553","sha256":"f9e61d9abc37be2d9774915b1295a4d120a4f4efd08ddcf5255ead83f4ebacc4","sha512":"908b5c07058fdc57f78357a5850150b0110f1bf8f5a9e34ea5804c7fe56524325945e12a28ceeb2ef716380384460e6a55a069565064be347214457348cd9a31","ssdeep":"","tlshash":"3251f18d34f3a0c282f26064447bb59afa385a91834cdb14863d96bcbd715de6317f4c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":210,"timings":{"blocked":44,"dns":8,"connect":11,"send":0,"wait":129,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=afb77b39e395429dbff87a971902674d","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.951Z","timestamp":1699130720951,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=afb77b39e395429dbff87a971902674d HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:21 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":344,"timings":{"blocked":139,"dns":15,"connect":35,"send":0,"wait":34,"receive":4,"ssl":113},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"ocsp.buypass.com/","fqdn":"ocsp.buypass.com","domain":"buypass.com","tld":"com"},"ip":{"addr":"23.33.119.65","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:21.246648745Z","timestamp":1699130721246,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.buypass.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 78\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nAccess-Control-Allow-Origin: https://www.buypass.no\r\nAccess-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale\r\nAccess-Control-Allow-Credentials: false\r\nAccess-Control-Allow-Methods: GET,POST\r\nMDC-correlationId: ad66fea5-bb14-4e73-b4a4-765146cfc315\r\nContent-Length: 1704\r\nDate: Sat, 04 Nov 2023 20:45:21 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1704,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"d37041557a5f72bfc8ed9ccde930fdb5","sha1":"ff3062f4bd957c279ae702d4355ba7a3aeeea6b4","sha256":"2aa8a646492b8271113ae0de083a2b1e3040085aff1367e82c2fbf96a7a60af1","sha512":"31c453bdcce14d83992c37d4fff7ddbe19107c7f7ea59cc8e7467336e42d23ee2204728a7a214e327bd48e0eb0ec1607afffd83d2aece4bdbb14896b2c48175e","ssdeep":"","tlshash":"d531b612af20691667438a23e08cc8a699f9c6c45f242c8a2476c7476e493f67cd8849","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"push-sdk.net/f/sdk.js?z=829726","fqdn":"push-sdk.net","domain":"push-sdk.net","tld":"net"},"ip":{"addr":"157.90.88.11","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.919Z","timestamp":1699130720919,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"push-sdk.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Oct 2023 03:31:28 GMT","end":"Thu, 18 Jan 2024 03:31:27 GMT"},"fingerprint":{"sha1":"BD:1B:36:07:5B:5E:F4:8C:BC:A3:4A:4A:64:D7:B1:14:8A:A8:97:9B","sha256":"A1:99:F4:0B:E8:6F:25:67:CF:68:F9:7C:2F:86:39:3D:28:E1:52:68:C5:73:D3:46:EA:C4:71:04:4C:0B:C7:17"}}},"request":{"raw":"GET /f/sdk.js?z=829726 HTTP/1.1\r\nHost: push-sdk.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 14071\r\ncontent-encoding: gzip\r\ncache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14071,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (51737), with no line terminators","md5":"aa7723ddc86d39d9a0819c16f4edd278","sha1":"95e35d7cf2399ca66a4ca5d8e5317415ecf8c06a","sha256":"0bf3637d1dd3b7acff96a15a58a4887e3eed934818e54e0aa460a39b8e342ae7","sha512":"1fca6cc3ea71eded4134231cbad03bc03ebc01604dd908b32176fae9b1f74ab8d7ced95115a74abee3232316d1d3f8be2570601757c57bb4d6108b59e4a37345","ssdeep":"1536:45BbtykoAiMuTMgcuM+H1uakHMR/FMUelhfx/l8pMaiUh/Ssk:45Cluakapk","tlshash":"dd33b58c7bc670241297a428186f10d6ee377ca5a10dc542fc56f7d23b68a2ade33db4","first_seen":"2023-07-21T05:21:35Z","last_seen":"2023-12-07T23:41:41Z","times_seen":65,"resource_available":true,"data":null}},"time_used":618,"timings":{"blocked":283,"dns":26,"connect":56,"send":0,"wait":48,"receive":1,"ssl":199},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"limurol.com/ssp/req/1995260/?pb=1829d64f50225cd6282abd79354ee0851699137920\u0026psp=_jODNbRpyfWFyTJgi6lgGAp2lV8105Zy5gdbkQV3MHjDVo9bGSWp1K2ToovusogIEggK97J1JFodr2nvXV4euCgo38YdrbZcFys19zuO8UGj6GdpTJf92VuOUBnrG3Op8HgcwyjabSm3vjnh-hXAh1MYm9j5_OqbJtSp9lz71BZe92BbDNv1lM-qo0--_GUn69AyqAFUGXebgjkIxa0pznOddEJoAODIFl8NcZsBcg575Kh_Wy1u9m0TWSBSZbE3cBZiBdWIx2iY_ML_dF3MDekpwB9CM0o0wGjZ3iANzG_1TazW2zex1KZoVlIZ1O2PB3VC6BepwwAS2fJDpLoGLSxMO94oLto0pxlwPaYUK93VJ90Ff86JEoBDWsbpLMWpHFU437qhGk7-0gDUpaMY2Eco16jCXDL9R6kDPxM0UC4Hm_tMCEjjbDoSU4BJVAg9MZxgC1pU8KIPmcbtpmFIW_Y03HbWWuA4CINrv2ayXNKlx4aGJB4cHeEp_w7_1Z7Ubpid_QlN2E4fh7nqRliTLUY_3y7KFgaqaK48oDE1yQ5KoX-So_rCDg46aV8crCuAPm9zQaja6o4ydKGWiuVXUmG9MFMyf_TJqORQMAcwmt18jXmFn2TRym1G_a8l3QGBu8KEwU8yYfaDLoam3dhYOZ994kqgMfDmWT6yjgqMDnieg_5vYF4E04gW78T2rckaVxS5BZbfnqJP_ULqewNAFndPsckhi4WtBLysKL1OkythzgQhp_YvqneJjZArVwGALh5D_rFyHqoiL87TOqZIMHFvRb7f2Yf8noiSySndaxGXWREQcmeLIzUQPlmRQM6HAS93yK4-cTsX96IEwx6LsojJEUHIksPlAy3-2FZpEYan7nuHtt0-yFmhzYU6J7Yga0uS5E94ZVM_4L0Y7N0qk8uZIJYBEuqLMUQTTrHxTOkwqiD5bu7FyLq9to8ozzRq1A==\u0026im=1\u0026cb=_cls3s7764delo4dqwqojqu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"limurol.com","domain":"limurol.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.900Z","timestamp":1699130721900,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Sat, 28 Oct 2023 13:52:28 GMT","end":"Wed, 24 Apr 2024 21:59:00 GMT"},"fingerprint":{"sha1":"F5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E","sha256":"14:DA:75:D7:95:9A:68:73:79:69:2A:9B:60:D2:09:4D:12:07:95:BA:2F:54:59:1B:4B:74:94:C8:2E:DC:A6:0D"}}},"request":{"raw":"GET /ssp/req/1995260/?pb=1829d64f50225cd6282abd79354ee0851699137920\u0026psp=_jODNbRpyfWFyTJgi6lgGAp2lV8105Zy5gdbkQV3MHjDVo9bGSWp1K2ToovusogIEggK97J1JFodr2nvXV4euCgo38YdrbZcFys19zuO8UGj6GdpTJf92VuOUBnrG3Op8HgcwyjabSm3vjnh-hXAh1MYm9j5_OqbJtSp9lz71BZe92BbDNv1lM-qo0--_GUn69AyqAFUGXebgjkIxa0pznOddEJoAODIFl8NcZsBcg575Kh_Wy1u9m0TWSBSZbE3cBZiBdWIx2iY_ML_dF3MDekpwB9CM0o0wGjZ3iANzG_1TazW2zex1KZoVlIZ1O2PB3VC6BepwwAS2fJDpLoGLSxMO94oLto0pxlwPaYUK93VJ90Ff86JEoBDWsbpLMWpHFU437qhGk7-0gDUpaMY2Eco16jCXDL9R6kDPxM0UC4Hm_tMCEjjbDoSU4BJVAg9MZxgC1pU8KIPmcbtpmFIW_Y03HbWWuA4CINrv2ayXNKlx4aGJB4cHeEp_w7_1Z7Ubpid_QlN2E4fh7nqRliTLUY_3y7KFgaqaK48oDE1yQ5KoX-So_rCDg46aV8crCuAPm9zQaja6o4ydKGWiuVXUmG9MFMyf_TJqORQMAcwmt18jXmFn2TRym1G_a8l3QGBu8KEwU8yYfaDLoam3dhYOZ994kqgMfDmWT6yjgqMDnieg_5vYF4E04gW78T2rckaVxS5BZbfnqJP_ULqewNAFndPsckhi4WtBLysKL1OkythzgQhp_YvqneJjZArVwGALh5D_rFyHqoiL87TOqZIMHFvRb7f2Yf8noiSySndaxGXWREQcmeLIzUQPlmRQM6HAS93yK4-cTsX96IEwx6LsojJEUHIksPlAy3-2FZpEYan7nuHtt0-yFmhzYU6J7Yga0uS5E94ZVM_4L0Y7N0qk8uZIJYBEuqLMUQTTrHxTOkwqiD5bu7FyLq9to8ozzRq1A==\u0026im=1\u0026cb=_cls3s7764delo4dqwqojqu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1 HTTP/1.1\r\nHost: limurol.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 7\r\nx-route-id: ssp.bet\r\nset-cookie: CHCK=1; Path=/; Expires=Sat, 07 Dec 2024 20:45:21 GMT; HttpOnly; Secure; SameSite=None\nUID=2311041545280b99d0a05a494399ecb5c465; Path=/; Expires=Sat, 07 Dec 2024 20:45:21 GMT; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"a97eb6fbe6f13b601d5d48c0eba8baae","sha1":"736efb938caf3d0edec406932ada889f1a4f2268","sha256":"a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821","sha512":"df4014be228e56baafdc0adaa57f261ac7879be4ca3a883b790f325569f75d30fe1c1f5c85989f87c0cadf48cbdc845265c805fcd3bfba518d168b6a9f31814d","ssdeep":"","tlshash":"e550000030030000003003003003300000000000c3000c0300c0000c00000303000000","first_seen":"2023-03-07T01:02:23Z","last_seen":"2024-08-21T09:41:44.630733Z","times_seen":2901,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"d1ha41wacubcnb.cloudfront.net/dUjdjcXgxWA0XRyZeB0xBZQBWRUF0XRAeFiIKMx4VHFklAjQ3fg9XDChTXkFePlYNFkV0Ug0SRWMRAhUabwNFBQg9XF4WACZEEgQJO08FVw0zCg4eAjtbDxBdYHFWX0h3BVNZAGMGRkI6dwVTHRE8QhtUSmJPW0cnZANGQjp3BVMDDncEIkBIaxlTWF1gBw-QUGzlYRkM+YAdSQUhjB1JUSmJRCgMdNFgbVEoUBlJAVmIRFkxJ","fqdn":"d1ha41wacubcnb.cloudfront.net","domain":"d1ha41wacubcnb.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.99","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:21.389017681Z","timestamp":1699130721389,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /dUjdjcXgxWA0XRyZeB0xBZQBWRUF0XRAeFiIKMx4VHFklAjQ3fg9XDChTXkFePlYNFkV0Ug0SRWMRAhUabwNFBQg9XF4WACZEEgQJO08FVw0zCg4eAjtbDxBdYHFWX0h3BVNZAGMGRkI6dwVTHRE8QhtUSmJPW0cnZANGQjp3BVMDDncEIkBIaxlTWF1gBw-QUGzlYRkM+YAdSQUhjB1JUSmJRCgMdNFgbVEoUBlJAVmIRFkxJ HTTP/1.1\r\nHost: d1ha41wacubcnb.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://dweatherbe.org/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 562\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\naccess-control-allow-origin: *\r\ncache-control: max-age=31556926\r\ncontent-encoding: gzip\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: sd4UrKU4FcE-0PpKjHb_fdPkjuPcpgARYMQBO3Lci6PmV7x_kKeo-A==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":562,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (779), with no line terminators","md5":"27464f7c9b40b12e3b5d0b53d5fa85cf","sha1":"c05cf9fcc76f6ec77efa0aef53c7db1ac836142d","sha256":"ee9505b6a00357cd7bd743fc8484f2810293b36e00bb50e8da8ee6fc698ede6b","sha512":"cb6b14cccef907f455d248e8486bc91edf8b21e9c9922a6ee17262f7e833056f15c3f2fe0bb215c002ff0b68d8fcca3a6bc7d278a48a77bb1edf59e9f91f7bb2","ssdeep":"","tlshash":"a20125b6d9e8890318aa070ed3f4b1748bd911df90b3131b25964b72b90d509c745978","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/ads.php?domainid=5786\u0026sizeid=17\u0026zoneid=6326","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.317Z","timestamp":1699130719317,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /ads.php?domainid=5786\u0026sizeid=17\u0026zoneid=6326 HTTP/1.1\r\nHost: platform.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\npragma: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=vpW2PDAYpaRMQIoL4ZCo%2BoNWOTra1qe44eu2HWP9PNVWC6ZLVJTKZS5v0c8O1LM6ftFwBLSrlVv6DqN9OSDCPwy8dDZJQBfdGLCJJXE6tbXbwuJgFOCPlXC83xl4kP%2FGgMmn0Na2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb333db7cb4fd-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4667,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (11798), with no line terminators","md5":"62950beebab4c674f61522d1e1f2adeb","sha1":"220b3aae37dfa31075da9d49af1010b4097e219f","sha256":"78cd96fe7667df2469875252a6aa825576368c4ba7aa724f70ff7a53c6a7f902","sha512":"59ca6cb1c73ad84ba698ae0106b9d24c27a253888b781d5c00ab0e48d43b54756c08fc48b0ae0637c4c7fd20cfcb6f322f1a9cd722fa5a1dda2cae8850008473","ssdeep":"192:Ae6stTAiqJnuE+ieF5e0N/XdeCP1cN7dbXF7jQcChLZNrFeWqyrImCFd99/W4nn4:9vtUiauE+ieF5e0dXkNhXlcnpZMyrIvY","tlshash":"9132e80d7fc1ba154363cbb8202fe0cef969b55e682dc84ad0619ca135043abfdd59b9","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":11,"dns":23,"connect":4,"send":0,"wait":112,"receive":0,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"limurol.com/ssp/req/1995260/?pb=1829d64f50225cd6282abd79354ee0851699137920\u0026psp=_jODNbRpyfWFyTJgi6lgGAp2lV8105Zy5gdbkQV3MHjDVo9bGSWp1K2ToovusogIEggK97J1JFodr2nvXV4euCgo38YdrbZcFys19zuO8UGj6GdpTJf92VuOUBnrG3Op8HgcwyjabSm3vjnh-hXAh1MYm9j5_OqbJtSp9lz71BZe92BbDNv1lM-qo0--_GUn69AyqAFUGXebgjkIxa0pznOddEJoAODIFl8NcZsBcg575Kh_Wy1u9m0TWSBSZbE3cBZiBdWIx2iY_ML_dF3MDekpwB9CM0o0wGjZ3iANzG_1TazW2zex1KZoVlIZ1O2PB3VC6BepwwAS2fJDpLoGLSxMO94oLto0pxlwPaYUK93VJ90Ff86JEoBDWsbpLMWpHFU437qhGk7-0gDUpaMY2Eco16jCXDL9R6kDPxM0UC4Hm_tMCEjjbDoSU4BJVAg9MZxgC1pU8KIPmcbtpmFIW_Y03HbWWuA4CINrv2ayXNKlx4aGJB4cHeEp_w7_1Z7Ubpid_QlN2E4fh7nqRliTLUY_3y7KFgaqaK48oDE1yQ5KoX-So_rCDg46aV8crCuAPm9zQaja6o4ydKGWiuVXUmG9MFMyf_TJqORQMAcwmt18jXmFn2TRym1G_a8l3QGBu8KEwU8yYfaDLoam3dhYOZ994kqgMfDmWT6yjgqMDnieg_5vYF4E04gW78T2rckaVxS5BZbfnqJP_ULqewNAFndPsckhi4WtBLysKL1OkythzgQhp_YvqneJjZArVwGALh5D_rFyHqoiL87TOqZIMHFvRb7f2Yf8noiSySndaxGXWREQcmeLIzUQPlmRQM6HAS93yK4-cTsX96IEwx6LsojJEUHIksPlAy3-2FZpEYan7nuHtt0-yFmhzYU6J7Yga0uS5E94ZVM_4L0Y7N0qk8uZIJYBEuqLMUQTTrHxTOkwqiD5bu7FyLq9to8ozzRq1A==\u0026im=1\u0026cb=_cls3s7764delo4dqwqojqu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"limurol.com","domain":"limurol.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.900Z","timestamp":1699130721900,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Sat, 28 Oct 2023 13:52:28 GMT","end":"Wed, 24 Apr 2024 21:59:00 GMT"},"fingerprint":{"sha1":"F5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E","sha256":"14:DA:75:D7:95:9A:68:73:79:69:2A:9B:60:D2:09:4D:12:07:95:BA:2F:54:59:1B:4B:74:94:C8:2E:DC:A6:0D"}}},"request":{"raw":"GET /ssp/req/1995260/?pb=1829d64f50225cd6282abd79354ee0851699137920\u0026psp=_jODNbRpyfWFyTJgi6lgGAp2lV8105Zy5gdbkQV3MHjDVo9bGSWp1K2ToovusogIEggK97J1JFodr2nvXV4euCgo38YdrbZcFys19zuO8UGj6GdpTJf92VuOUBnrG3Op8HgcwyjabSm3vjnh-hXAh1MYm9j5_OqbJtSp9lz71BZe92BbDNv1lM-qo0--_GUn69AyqAFUGXebgjkIxa0pznOddEJoAODIFl8NcZsBcg575Kh_Wy1u9m0TWSBSZbE3cBZiBdWIx2iY_ML_dF3MDekpwB9CM0o0wGjZ3iANzG_1TazW2zex1KZoVlIZ1O2PB3VC6BepwwAS2fJDpLoGLSxMO94oLto0pxlwPaYUK93VJ90Ff86JEoBDWsbpLMWpHFU437qhGk7-0gDUpaMY2Eco16jCXDL9R6kDPxM0UC4Hm_tMCEjjbDoSU4BJVAg9MZxgC1pU8KIPmcbtpmFIW_Y03HbWWuA4CINrv2ayXNKlx4aGJB4cHeEp_w7_1Z7Ubpid_QlN2E4fh7nqRliTLUY_3y7KFgaqaK48oDE1yQ5KoX-So_rCDg46aV8crCuAPm9zQaja6o4ydKGWiuVXUmG9MFMyf_TJqORQMAcwmt18jXmFn2TRym1G_a8l3QGBu8KEwU8yYfaDLoam3dhYOZ994kqgMfDmWT6yjgqMDnieg_5vYF4E04gW78T2rckaVxS5BZbfnqJP_ULqewNAFndPsckhi4WtBLysKL1OkythzgQhp_YvqneJjZArVwGALh5D_rFyHqoiL87TOqZIMHFvRb7f2Yf8noiSySndaxGXWREQcmeLIzUQPlmRQM6HAS93yK4-cTsX96IEwx6LsojJEUHIksPlAy3-2FZpEYan7nuHtt0-yFmhzYU6J7Yga0uS5E94ZVM_4L0Y7N0qk8uZIJYBEuqLMUQTTrHxTOkwqiD5bu7FyLq9to8ozzRq1A==\u0026im=1\u0026cb=_cls3s7764delo4dqwqojqu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1 HTTP/1.1\r\nHost: limurol.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: CHCK=1; UID=2311041545280b99d0a05a494399ecb5c465\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/javascript\r\ncontent-length: 7\r\nx-route-id: ssp.bet\r\nset-cookie: CHCK=1; Path=/; Expires=Sat, 07 Dec 2024 20:45:21 GMT; HttpOnly; Secure; SameSite=None\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"a97eb6fbe6f13b601d5d48c0eba8baae","sha1":"736efb938caf3d0edec406932ada889f1a4f2268","sha256":"a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821","sha512":"df4014be228e56baafdc0adaa57f261ac7879be4ca3a883b790f325569f75d30fe1c1f5c85989f87c0cadf48cbdc845265c805fcd3bfba518d168b6a9f31814d","ssdeep":"","tlshash":"e550000030030000003003003003300000000000c3000c0300c0000c00000303000000","first_seen":"2023-03-07T01:02:23Z","last_seen":"2024-08-21T09:41:44.630733Z","times_seen":2901,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":13,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"push-sdk.net/event?z=829726","fqdn":"push-sdk.net","domain":"push-sdk.net","tld":"net"},"ip":{"addr":"157.90.88.11","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.459Z","timestamp":1699130721459,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"push-sdk.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 20 Oct 2023 03:31:28 GMT","end":"Thu, 18 Jan 2024 03:31:27 GMT"},"fingerprint":{"sha1":"BD:1B:36:07:5B:5E:F4:8C:BC:A3:4A:4A:64:D7:B1:14:8A:A8:97:9B","sha256":"A1:99:F4:0B:E8:6F:25:67:CF:68:F9:7C:2F:86:39:3D:28:E1:52:68:C5:73:D3:46:EA:C4:71:04:4C:0B:C7:17"}}},"request":{"raw":"POST /event?z=829726 HTTP/1.1\r\nHost: push-sdk.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 82\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-length: 0\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\ncache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 00:00:00 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lyricsgrand.com/f8/88/ac/f888acd50ef9fba1586e8fc2d06e8e67.js","fqdn":"lyricsgrand.com","domain":"lyricsgrand.com","tld":"com"},"ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.763Z","timestamp":1699130720763,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lyricsgrand.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 00:46:58 GMT","end":"Fri, 22 Dec 2023 00:46:57 GMT"},"fingerprint":{"sha1":"28:E4:D8:15:E1:DE:1D:5E:9A:06:59:BF:F4:6E:E3:7F:F8:09:03:30","sha256":"FF:B3:13:64:E7:00:48:7D:7C:A8:17:8C:52:7D:B3:66:97:E1:EC:F2:D2:A4:2C:8D:60:0C:41:F2:D5:63:82:AC"}}},"request":{"raw":"GET /f8/88/ac/f888acd50ef9fba1586e8fc2d06e8e67.js HTTP/1.1\r\nHost: lyricsgrand.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:21 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nX-Request-ID: 56542d0d2d0a172f0ec112a0fc4080b2\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14311,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (40590), with no line terminators","md5":"267795d129d2013fd226c81964867577","sha1":"179993ebff6d7e5bdc9fa2c5fbf1809b7375027f","sha256":"8b9e225283282df17a4cab5008619343dd794086cae63a4c84617d59d533013d","sha512":"ea2b9fecb6cfbdc611d18ec46b88841de1d8dafa4f2bfd6b7166ef2baf107da0474c8925e80e041fdb22fbfd1756d76ba8d17de86a52664f9012a2a2deae950d","ssdeep":"768:VLqSjjvd1LgTjV5cmc0damPUzJnULQJLivKxWE8kAJH2wiJT4U:VLB4pRdvi5iv4JA+d","tlshash":"f603648537c0688917876b7ab61fa5e5f8690caf3c41844bb102fca0769673eeef1531","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1060,"timings":{"blocked":551,"dns":0,"connect":98,"send":0,"wait":101,"receive":98,"ssl":203},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/img/cropped-favicon-1-32x32.png","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.544Z","timestamp":1699130721544,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/cropped-favicon-1-32x32.png HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05; __PPU___PPU_SESSION_URL=%2F3325%2Fsiniestro; more_options=1; _ga_GFW2EQJ0P4=GS1.1.1699130721.1.0.1699130721.0.0.0; _ga=GA1.1.172223158.1699130721\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: image/png\r\ncontent-length: 993\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: \"61d24c07-3e1\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 5617\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=OPSnmprtfBes9yEoP%2Buwx94j8KI3679q8zmbAjtklw81PCldVHxr9qJKRKi%2FHi57rUYrNYrG0QBmYpOR0eMscf3Qgk1mk8FvFcxeDexyturbF7T6Zf1GMWrJ0yuo\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3418fcb569c-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":993,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\\012- data","md5":"3d8e8d34146a64e3e2f58660f7dc1c39","sha1":"4169d2484f1ae2e8eb4a47c39bef4e7db4c30321","sha256":"bea29e0130d9568137ca3c590a2748c244abb51a032bc985374c3b883a164079","sha512":"b9feac75f4ecfb3699eeaa2918c9b061336b0f0ebeb235db634fce36003892f1ee38100dd817171a63b9d4e10de70c1ac27e422e5805803196fe67d72704e356","ssdeep":"","tlshash":"7f1198bcc0708cf9e0986fad1f741c468b3a60e459f02150597ae5823265492acc757a","first_seen":"2023-04-10T19:46:16Z","last_seen":"2026-03-28T00:43:29.494664Z","times_seen":123,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"professionalswebcheck.com/stats","fqdn":"professionalswebcheck.com","domain":"professionalswebcheck.com","tld":"com"},"ip":{"addr":"3.122.74.31","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.593Z","timestamp":1699130721593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"professionalswebcheck.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 30 Aug 2023 00:00:00 GMT","end":"Fri, 27 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C","sha256":"34:E2:43:43:4E:FA:CF:25:BA:94:FB:DC:E9:CD:BA:35:F1:15:90:E2:F3:90:42:3E:A2:52:2B:30:7D:BC:5C:69"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionalswebcheck.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: uid_id2=35b94086-d0a4-45ac-9b56-e09679ab9671:3:1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://cuevana3.ch\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"1473294c061011a5962f2babc8f7e6a8","sha1":"b42efb7cec1271870fffa8158cb29c7838914ded","sha256":"1404e998741e9829d099654bf49f992a50de8d6dcd485eecf7332a7375e455e9","sha512":"98fd36c2c821e5f0aef74b7d8de14ec3657cf5ad23a2feb27ed1d51770473eae991061e448f0c6ce01e7f78abd21b2baee7db1c379bdae19682170ba4f6d4ec4","ssdeep":"","tlshash":"e190044410341004c100511715d04d150c470011c4f073c1fd3554111c50070ddf0431","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.526Z","timestamp":1699130721526,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:48 GMT","end":"Mon, 08 Jan 2024 08:10:47 GMT"},"fingerprint":{"sha1":"16:5A:F1:76:25:96:2A:7F:80:A7:89:81:CE:D5:F4:5F:3D:29:9C:93","sha256":"64:6F:80:C0:FA:2B:EF:10:75:97:55:49:68:C2:2B:C7:64:DD:CA:1B:54:1C:FE:1A:31:B8:A7:DB:C1:8F:8D:7A"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:wGHkTzOs2Zl-Uxz96SkTV9F2npAyAQ:Wl2JBjGylAAxCH-g; Expires=Mon, 03-Nov-2025 20:45:21 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxoKBYaaJWqNTnRj1Cpp_MgCZJNnKvoDXtf_OBhREGPVW8fJyRcq0fqSQFSk8UOtGsA79zfHA\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-opener-policy: unsafe-none\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-nAIrtQWVeTdru57p7E-lDw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\ncross-origin-resource-policy: cross-origin\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":77,"dns":0,"connect":8,"send":0,"wait":25,"receive":1,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dweatherbe.org/utx?cb=USRoOmzAOOQv\u0026top=cuevana3.ch\u0026tid=977549","fqdn":"dweatherbe.org","domain":"dweatherbe.org","tld":"org"},"ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.563Z","timestamp":1699130721563,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dweatherbe.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sun, 22 Oct 2023 00:00:00 GMT","end":"Tue, 19 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"B9:18:AC:1F:87:E4:2C:E9:36:35:FF:E7:F8:8F:F7:77:F0:AB:4C:4A","sha256":"50:E5:D8:5C:74:BC:BB:FD:C9:EC:F8:CB:E7:31:E6:48:4D:16:4E:C9:56:2D:FA:E7:02:D5:38:25:45:DD:BE:9A"}}},"request":{"raw":"GET /utx?cb=USRoOmzAOOQv\u0026top=cuevana3.ch\u0026tid=977549 HTTP/1.1\r\nHost: dweatherbe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://cuevana3.ch\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sat, 04 Nov 2023 20:46:21 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: hXpn0q1P00mYjrH60Yzllh7LMjsVrIyWD5EJp9z0_MWdtooSr_YQjw==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":135,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":135,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.068Z","timestamp":1699130724068,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:SnTq-VZrWKhcGsAffpmNkKLzZtT2Mw:vC2KXDB3z_QGhZ3C; Expires=Mon, 03-Nov-2025 20:45:21 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyzvFD9cwQNuoI-r0oDe54vYNY0HUhzgEh2lE-i0WKprEG8EL59shCsg5VNehKsDpcgsDaxi9g\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-mBdqRKN8Cit0izQupj2rxw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncross-origin-resource-policy: cross-origin\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-V792JX3QG3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.747Z","timestamp":1699130721747,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:30 GMT","end":"Mon, 08 Jan 2024 08:02:29 GMT"},"fingerprint":{"sha1":"3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA","sha256":"B2:36:22:7D:39:74:21:4E:E2:98:4A:15:1D:E5:2D:20:AC:EF:50:AB:7E:1D:E2:0F:75:35:83:BB:BE:A1:9E:ED"}}},"request":{"raw":"GET /gtag/js?id=G-V792JX3QG3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\nexpires: Sat, 04 Nov 2023 20:45:21 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 92998\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":92998,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"fb8abcc65fd6f04fa93eb6404f130345","sha1":"a3de1b76e130f095d4db572c3b057e3834fbc739","sha256":"0deb9f3cb73abb42977d55d47731e3e2894c8c23f59a46be72afa2c480b713a5","sha512":"a8a46e80e3f75d1c502397f54bd22f565fdfeeb9879cd8d7575765d21a128eb984cc987b02900d0ef9483d31ac8ede745dbf1587b3db275811e07c81cd363b9f","ssdeep":"3072:bK4a+K36EllMSX/tyeUyj4eKIxXAKqM8GyP8QUCWaXb3WV/iwB2I9LZVokA6hEW5:m4GZBVyeUyHQFP8FCWaXb30KcYkfh5","tlshash":"705419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"tzegilo.com/stattag.js","fqdn":"tzegilo.com","domain":"tzegilo.com","tld":"com"},"ip":{"addr":"104.21.11.245","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:21.925890518Z","timestamp":1699130721925,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /stattag.js HTTP/1.1\r\nHost: tzegilo.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 07 Sep 2023 08:19:52 GMT\r\netag: W/\"64f987a8-4a4b\"\r\nlink: \u003chttps://flerap.com/\u003e; rel=preconnect; crossorigin, \u003chttps://fleraprt.com/\u003e; rel=preconnect; crossorigin\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 6809\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=zZDhAc5M%2F1s%2B6TpCfHoWJgWhmIO4fhcyHjw1%2BfTPtFQ%2FOByNrSWQfusQX%2FYUUbxjNNpAT9rXQuVcr9kjD6AlydcKdZUK%2FFx%2BvixlSULWuDvvXg0JMkvmwvZck2b9UQ%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3407aba1c0a-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":109759,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with very long lines (18369)","md5":"89e89aea544ea2785d49cc4cd9cf26f6","sha1":"7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b","sha256":"86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9","sha512":"4b8dd773d9f31126c5ede9c02f2ba5bffd5086cb28bd60838479afb76929b73fc9242306dc83b8ff9ab89a272274041f8a2c58df55c4399f420d70bdd0348e43","ssdeep":"384:WD0oj9jB5FCCLbGPLG8wXcO0SXcxu7YB2glWqKbexTRl6mo+rv:Voq8UtwX30SXcvB/lHzRgMv","tlshash":"cd82c8da3219bd6a5ef02073437f3b6dba6694a4f47f85b2805678a4393154bf203ec1","first_seen":"2023-09-07T20:07:13Z","last_seen":"2024-08-21T07:20:54.605423Z","times_seen":2395,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/ads.php?domainid=6991\u0026sizeid=17\u0026zoneid=7797","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.762Z","timestamp":1699130721762,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /ads.php?domainid=6991\u0026sizeid=17\u0026zoneid=7797 HTTP/1.1\r\nHost: platform.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\npragma: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=55YODqIaEljp%2FIR9SliWdOXhjlcELoi2E25P0B1I4TczGeseEWH3kWW7JhOe3r4C9EFRmgpFAkBWQW6nv%2B4Ynj8KbFm%2BN1BbM3mTOPnPgl2QuEKzVQ0iYKnvu%2F0lUgDCTgiLZ95L\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb342f8b4b4fd-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":480,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document text\\012- HTML document, ASCII text, with very long lines (879), with no line terminators","md5":"212a49c0967262707b1e6ddd04f9d56b","sha1":"0add54edb969a5595fa79fd170524e82d1c2b4c6","sha256":"18ec4058a574cb4c889de4fdb56b8c35171c732ea24c50d74f261287eeabdea6","sha512":"c0307db1488fc3f5f368ef82ca86f839b27e0f80f5732c55e260ebd94d6c4c4ee6636ba2be42c1114f1ed4284c1ff944d97d3a9925fc9e10fefffe21b6b0ea3a","ssdeep":"","tlshash":"771199007ca1c71b827a14e19536e37d5416e11dd936cdcae1ea0625b280fad2b05e88","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":106,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b4bo511734gv237436208e8q7wbtk727","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:23.320Z","timestamp":1699130723320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=b4bo511734gv237436208e8q7wbtk727 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:21 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ssl.p.jwpcdn.com/player/v/8.9.2/jwpsrv.js","fqdn":"ssl.p.jwpcdn.com","domain":"jwpcdn.com","tld":"com"},"ip":{"addr":"151.101.194.114","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.909Z","timestamp":1699130721909,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jwplayer.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 30 Aug 2023 18:09:48 GMT","end":"Mon, 30 Sep 2024 18:09:47 GMT"},"fingerprint":{"sha1":"AB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A","sha256":"93:FF:54:28:D7:70:8D:4A:52:3B:9F:FF:25:32:7B:20:95:15:C5:7C:D5:E3:57:DE:72:21:DF:BA:36:CE:93:B5"}}},"request":{"raw":"GET /player/v/8.9.2/jwpsrv.js HTTP/1.1\r\nHost: ssl.p.jwpcdn.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Wed, 25 Nov 2020 15:46:29 GMT\r\netag: \"9ce4655dbc7b8410f510da753f3be441\"\r\ncontent-type: application/javascript\r\nserver: AmazonS3\r\ncontent-encoding: gzip\r\naccept-ranges: bytes\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nvia: 1.1 varnish\r\nage: 3075\r\nx-served-by: cache-bma1671-BMA\r\nx-cache: HIT\r\nx-cache-hits: 2\r\nx-timer: S1699130722.055786,VS0,VE0\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncontent-length: 16060\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":16060,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (52722)","md5":"9ce4655dbc7b8410f510da753f3be441","sha1":"eca19a305bcc0901be83cdc88f9d1f1030636738","sha256":"f44ac5619379731a4dd9a546101768c537a472dcbe049735c3740661a9f582d7","sha512":"fe673d789c045265239ef11bb5ff829fdfa89afc1562fe43175fbe9e44c71365fab952dcd946d8347a82679c4a00a92e3e819dcc700c917b48a09d4ad13f3467","ssdeep":"768:zhLd3kB4edhHjBWJ8KKJ6Bwq1cjmUcSOmWW4Kw4EV9/zp74GX:b8njBWJ8KKQLcaUcSHWW4Kw4Ebl74G","tlshash":"f633c78e3689712a5a53747c90afb546723d19e3304ec710ea50fe893c2da5ee633b5c","first_seen":"2023-03-07T01:19:37Z","last_seen":"2026-04-02T03:48:08.94332Z","times_seen":369,"resource_available":true,"data":null}},"time_used":285,"timings":{"blocked":137,"dns":34,"connect":36,"send":0,"wait":8,"receive":7,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/video/img/bg/icon.png","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:22.083635026Z","timestamp":1699130722083,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /video/img/bg/icon.png HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: image/png\r\ncontent-length: 19864\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\netag: \"633a51d3-4d98\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1258\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3bHyhbePINT8U%2F0XvmIAsuu92btZ%2BgxyVQuKEk8ugKpbAZTJ975CeQhOLkx7XsB%2FZ4l534tWHdgIbP%2F9XrUrVKrG6VhZcMdrScvPZDJg7zdizqK%2Fud6ZlT4EHK%2BoEVa3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb344ea5eb4fa-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":19864,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 29 x 21, 8-bit/color RGBA, non-interlaced\\012- data","md5":"f7073693ae0abee71dcbe6b4683d15a0","sha1":"1f6ee14fc2bfe7184568aac31ef9d247b6ffbdde","sha256":"43e1a200a6912f591d8e5a05adbe01193487924bda0efaa94d8cf29ecb302609","sha512":"c522a525336178226cab1d9465aa49ba33df7f25cdca676c547a488536e164b58ab63908068d5c8e76bf433dada6dee68c7223c5ae46d1f866153ed407593c5f","ssdeep":"96:qSVkEWMr9xNXrNjNLFNznYa0fG3Opssc5hVdazm:qSVkEn5BTBQq","tlshash":"9e928524fef1f6a6d904a2332ac154005d374bc3d282dd857ace8d272f15b9d8d4f646","first_seen":"2023-04-08T17:17:14Z","last_seen":"2026-03-15T09:31:16.411693Z","times_seen":235,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-V792JX3QG3","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.747Z","timestamp":1699130721747,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:30 GMT","end":"Mon, 08 Jan 2024 08:02:29 GMT"},"fingerprint":{"sha1":"3B:1D:9C:59:AC:F8:2F:47:8A:C6:AE:4F:88:F0:8D:84:C7:6A:47:DA","sha256":"B2:36:22:7D:39:74:21:4E:E2:98:4A:15:1D:E5:2D:20:AC:EF:50:AB:7E:1D:E2:0F:75:35:83:BB:BE:A1:9E:ED"}}},"request":{"raw":"GET /gtag/js?id=G-V792JX3QG3 HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nexpires: Sat, 04 Nov 2023 20:45:22 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 92998\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":92998,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"9d01cf2d03da80b23fc9568820d674e4","sha1":"72a6f9e756dac4bb8cfba5630d29c3a9fe50cf98","sha256":"adbc6063b34b662c47a988d2abe0da84ea2883ea08600094f28206d2705620fd","sha512":"898cd370d4ba4233f4080056c9e30323e42e6bdd52f8da3cc5b1cae8af2d8d464d63a1171cfcf889d3ce8c8d2ea6146741625b6fbcec737aa6b4ef033321f5aa","ssdeep":"3072:bK4a+K36EllMSX/tyeUyjPeKIxXAKqM8GyP8QUCWaXb3WV/iwB2I9LZVokA6hEW5:m4GZBVyeUyGQFP8FCWaXb30KcYkfh5","tlshash":"1a5419da73c37066829af479503f018ba5bb2ca6b45dcc95f189c8d02e74a8a5137f7c","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":59,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"imp9.bidgear.com/rec?t=1\u0026z=7797\u0026uuid=4fba3ca1b73c4a9d8468586ecdfa7b93\u0026p=10\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130721","fqdn":"imp9.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.170Z","timestamp":1699130722170,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /rec?t=1\u0026z=7797\u0026uuid=4fba3ca1b73c4a9d8468586ecdfa7b93\u0026p=10\u0026g=NO\u0026token=4a44335432\u0026tbg=1699130721 HTTP/1.1\r\nHost: imp9.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 599\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=1L1soNbw7PhxRLo%2FtdV0uAiJ5EM5vFahi1obJXRJXRhTFlfqTLNoowhL5HEE7s0LzUB8i9XtlfcT9mI81ZJu3a4vS%2FghsIZGfBN2Dhkr3a6GsUh3csKuw2oqUdK290yrzRw%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3450a64b4fd-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":599,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 1x1, components 3\\012- data","md5":"ca49a7e783b806a4e8576ea80346203d","sha1":"6fe9d083221dae98f6c76f7121c37bc884b02d82","sha256":"3e9a98dd5f0a28ff4a059f33d760264a6db02786666ac1692095ebb976f5da28","sha512":"b564eb9ab87f42e8ec4794647a1ccb84972b435062a81569ce543c3a6e2252125c2c966a35885d0269635212e1f7d44ee64eb0a2378f7ad849e704aecfa48651","ssdeep":"","tlshash":"e9f0202aab132610df1395be040a24b3a1db45823d603a312db186a5c620cf48449708","first_seen":"2023-04-05T02:54:02Z","last_seen":"2024-08-21T09:44:12.864116Z","times_seen":1585,"resource_available":false,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":111,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.206Z","timestamp":1699130722206,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:22 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":35,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/jwplayer.js?v=1.6","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.755Z","timestamp":1699130721755,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /js/jw8.9/jwplayer.js?v=1.6 HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"633a51d3-1aa99\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1257\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3z97IXAIwVtNth32qgWFGVbLQZ1RMVLyvmry%2BVTru%2Bl5q2xTYDo6BZo4GCDRmxufkrTlElQBqU0frNX54tyPOe6%2F9Dn%2FBY%2Br%2BwnLIj%2FZVg%2BRfFv7IBtOE9n6RGO0QeBu\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb342e8b9b4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35295,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65169)","md5":"d21721173f070a01a0f8120fad5a889b","sha1":"6ddb1c434f41ec3968ca2fdcd4b87cf0562b41b3","sha256":"3e061854c5a7141f3b8671a32e22513584b04ecbc185fe1bdc642fa9c3a891a9","sha512":"2e1e86cc424c74d89de383859a40d117518ccf127c8435fa5c65b45fb8c3276e33f4d01b1dd75207d15a3331f7b67d03b7c0e3c5dab08963bd631ee96a720cd6","ssdeep":"768:FLRy0r3hx9usmC2K203x01q0jfhEDscP8RvePo93Q7wiGNuOsBfyW+L1HoHty+pC:FLRtTNJJh0Y0EEioKyuOmfr+apOISio","tlshash":"e5b3a48db6c2f0b5439b34b4813f510bf27aadd6284e9950d625d8d17e7898d8033fae","first_seen":"2023-03-07T12:06:55Z","last_seen":"2024-09-19T21:57:32.473586Z","times_seen":78,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/player/js/jquery.min.js?v=1.6","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.753Z","timestamp":1699130721753,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /player/js/jquery.min.js?v=1.6 HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"633a51d3-1514d\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1257\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8jBXWWMb1GdCHDH9gAu6Fr8uuxI1jjSyjKN8IHUy7wn4vpIXWNTLb3m%2FA9LG1vbM0GJQj4v7v24QM2d9cypalLEK7wpBSMSe1SFW9n4HcqZPtEJnlGyygz1m9ou3rOQU\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb342e8b8b4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":31171,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32042)","md5":"ed72e2a6ae1afb03eb3e917c2dbe2b50","sha1":"b23ec2f5041209e5d1d567740fe5ad323688b76a","sha256":"f8e5351fc39356f8f94d7f334b11f9a0f44a67a9461bbd3e8be10cf44acdf780","sha512":"a8d07dc2966d3e0f2f26087c9218cb2e7d4c45206de50f821929c698481c76a34456c3797bae822c7d1acf3063f353d6e18ca2d6b13a9c8eaed618338705f9fd","ssdeep":"1536:u5hEyisTikEJqRdXXe2pP7lgoVMEXvdVhvLHSh4xzAdXtqTyZSusjvKx/w7Ug2xC:0QGvHhvLJzuXkTSc6//MTDU8Cu5","tlshash":"a183e5d9b2c670529b7730b850bf450bb17a98dab44c8c60f1a8d5d57eb8a8d407bf2c","first_seen":"2023-03-07T01:03:26Z","last_seen":"2025-02-01T17:45:35.503047Z","times_seen":496,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banquetunarmedgrater.com/advertisers.js","fqdn":"banquetunarmedgrater.com","domain":"banquetunarmedgrater.com","tld":"com"},"ip":{"addr":"172.64.198.37","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:23.836Z","timestamp":1699130723836,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"banquetunarmedgrater.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 11 Sep 2023 08:34:11 GMT","end":"Sun, 10 Dec 2023 08:34:10 GMT"},"fingerprint":{"sha1":"77:2B:76:51:D0:51:70:02:2E:BF:B7:9B:02:8B:5A:A4:91:FA:0B:9E","sha256":"A2:26:27:42:22:55:4F:1A:25:4D:F1:86:C1:5C:3C:CD:EB:7C:D9:DE:2A:F8:10:F5:98:B2:93:4A:43:2C:8F:4E"}}},"request":{"raw":"GET /advertisers.js HTTP/1.1\r\nHost: banquetunarmedgrater.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\ncache-control: max-age=172800\r\nx-request-id: e9e59fac8d50fa95ea0eb9f0d4c0363e\r\nstrict-transport-security: max-age=0; includeSubdomains\r\ncf-cache-status: EXPIRED\r\nlast-modified: Sat, 04 Nov 2023 20:45:21 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Jw4q1KAAFvULN%2FMPFN2c%2BWL%2FgWI6HzT2GJowKbYVwKbc52g0cTV5RMiODdtDpjuaEpkBC7ud214fWfoZQIkYMaI6ivpH82YXebEtNoi4x7cxPSbbOGDkYi8IKIrIIni0SJD01lx%2BcNMmmFE%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb344ead84084-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":123,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":123,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"d37tb4r0t9g99j.cloudfront.net/?trbtd=994416","fqdn":"d37tb4r0t9g99j.cloudfront.net","domain":"d37tb4r0t9g99j.cloudfront.net","tld":"cloudfront.net"},"ip":{"addr":"54.230.241.83","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.172Z","timestamp":1699130722172,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.cloudfront.net","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Thu, 08 Dec 2022 00:00:00 GMT","end":"Thu, 07 Dec 2023 23:59:59 GMT"},"fingerprint":{"sha1":"BA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB","sha256":"0E:61:DC:91:28:A6:D0:1C:35:83:E4:6C:B8:71:E9:59:0C:A7:63:6F:3B:39:4E:60:B9:10:FD:B2:49:E9:04:65"}}},"request":{"raw":"GET /?trbtd=994416 HTTP/1.1\r\nHost: d37tb4r0t9g99j.cloudfront.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 54776\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\naccess-control-allow-origin: *\r\ncache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform\r\ncontent-encoding: gzip\r\npragma: no-cache\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: eGJTcueF4X4KuXMl1PqEoxL8EwSWUE3Ab7rLS4CYlF5vKSjsEXW7Uw==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":54776,"size_decoded":0,"mime_type":"text/plain","magic":"Unicode text, UTF-8 text, with very long lines (15948)","md5":"1ccd579a2e9600bc8a31bfcd44447781","sha1":"0042849d205dac978f094a95c02bf6f9bc0676c8","sha256":"670f4e9f3eaee39bc3b726bfbc5e7f897619d3005d7a383469a899e4ab36fa3e","sha512":"b1dce41dc16bff0a4676e66c3c2645b5738bb1370371bea178a998b3996cc8df2bf180c31c323c1376e183d859af943c39bfdbc556eed67d99c362b6fc646e2e","ssdeep":"1536:syDzbTOJxzRWO1UA5knouwTI5LCsMB3OsOebgkT4jlaTEp0AN0p7wFO4TgKvmY9g:WS9XPLAya82hrZ5LxjFYiUUFvVI4Gmt","tlshash":"92f33bc9be523869835374a640ff128a723f4669b8084dd4b49ad4d17db8d0643bffac","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":64,"connect":1,"send":0,"wait":175,"receive":2,"ssl":12},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lyricsgrand.com/pixel/pure","fqdn":"lyricsgrand.com","domain":"lyricsgrand.com","tld":"com"},"ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.361Z","timestamp":1699130722361,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lyricsgrand.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 00:46:58 GMT","end":"Fri, 22 Dec 2023 00:46:57 GMT"},"fingerprint":{"sha1":"28:E4:D8:15:E1:DE:1D:5E:9A:06:59:BF:F4:6E:E3:7F:F8:09:03:30","sha256":"FF:B3:13:64:E7:00:48:7D:7C:A8:17:8C:52:7D:B3:66:97:E1:EC:F2:D2:A4:2C:8D:60:0C:41:F2:D5:63:82:AC"}}},"request":{"raw":"POST /pixel/pure HTTP/1.1\r\nHost: lyricsgrand.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 73\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:22 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b4bo511734gv237436208e8q7wbtk727","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:23.320Z","timestamp":1699130723320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=b4bo511734gv237436208e8q7wbtk727 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:22 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"compolegimmer.com/rGdY0qpL7OtCp37/67674","fqdn":"compolegimmer.com","domain":"compolegimmer.com","tld":"com"},"ip":{"addr":"23.109.82.169","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.173Z","timestamp":1699130722173,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"compolegimmer.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Oct 2023 23:00:32 GMT","end":"Fri, 26 Jan 2024 23:00:31 GMT"},"fingerprint":{"sha1":"3A:F6:65:35:D6:D1:1D:FA:E7:92:03:4D:75:64:0E:28:85:3B:86:ED","sha256":"04:5C:B4:20:59:85:DB:1A:9F:D1:0F:A0:8D:E4:7E:0A:0B:1D:CA:C4:3F:6C:53:E0:E1:58:FD:16:DF:21:14:CD"}}},"request":{"raw":"GET /rGdY0qpL7OtCp37/67674 HTTP/1.1\r\nHost: compolegimmer.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 04 Nov 2023 20:45:22 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://pelisplay.info\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nSet-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Sun, 05-Nov-2023 20:45:22 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 05-Nov-2023 20:45:22 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":20,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"gzip compressed data, from Unix\\012- data","md5":"7029066c27ac6f5ef18d660d5741979a","sha1":"46c6643f07aa7f6bfe7118de926b86defc5087c4","sha256":"59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2","sha512":"7e8e93f4a89ce7fae011403e14a1d53544c6e6f6b6010d61129dc27937806d2b03802610d7999eab33a4c36b0f9e001d9d76001b8354087634c1aa9c740c536f","ssdeep":"","tlshash":"de70000000c03c30cc00003000000000000c30000000c00300000c3000030c000c003c","first_seen":"2023-04-09T15:32:38Z","last_seen":"2025-03-02T06:10:10.559841Z","times_seen":229342,"resource_available":false,"data":null}},"time_used":512,"timings":{"blocked":200,"dns":25,"connect":22,"send":0,"wait":25,"receive":1,"ssl":224},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lyricsgrand.com/pixel/pure","fqdn":"lyricsgrand.com","domain":"lyricsgrand.com","tld":"com"},"ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.361Z","timestamp":1699130722361,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lyricsgrand.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 00:46:58 GMT","end":"Fri, 22 Dec 2023 00:46:57 GMT"},"fingerprint":{"sha1":"28:E4:D8:15:E1:DE:1D:5E:9A:06:59:BF:F4:6E:E3:7F:F8:09:03:30","sha256":"FF:B3:13:64:E7:00:48:7D:7C:A8:17:8C:52:7D:B3:66:97:E1:EC:F2:D2:A4:2C:8D:60:0C:41:F2:D5:63:82:AC"}}},"request":{"raw":"POST /pixel/pure HTTP/1.1\r\nHost: lyricsgrand.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nContent-Length: 73\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:22 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":102,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"eu.can-get-some.in/p/1060293?c=zc_1060293","fqdn":"eu.can-get-some.in","domain":"can-get-some.in","tld":"in"},"ip":{"addr":"136.243.249.75","port":443,"asn":24940,"as":"Hetzner Online GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.169Z","timestamp":1699130722169,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"eu.can-get-some.in","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 29 Aug 2023 03:31:27 GMT","end":"Mon, 27 Nov 2023 03:31:26 GMT"},"fingerprint":{"sha1":"8D:6E:0E:7E:CC:9D:C2:0F:46:76:6F:60:B8:52:AF:02:2A:05:60:32","sha256":"5E:4F:6C:6D:50:53:44:F7:60:7B:A0:EE:14:DB:4F:A7:80:FB:68:2E:C6:56:D3:AE:3F:AE:4D:F9:28:C8:BC:FA"}}},"request":{"raw":"GET /p/1060293?c=zc_1060293 HTTP/1.1\r\nHost: eu.can-get-some.in\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 3469\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3469,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (7492)","md5":"6f66d8f5645b3836ced0a458ba0bf43c","sha1":"8b809dad8bbb7578fa5ddac5f65be146e4f7f79b","sha256":"c7036eace5b72ba5887b25be42544a33555e99a7ef87c51055656ffaa566fd1c","sha512":"57afc8e65357bd544bc388d80d0cf02e96fe44ba63178619e523eb70fb1f05b85de135dd7febae7b3937c89d393b26122f05f6e60dc24b939cb183a28bf88a8f","ssdeep":"192:PHfQvXIUGiLYCM+g8SETQsnbdRGQikaPyFu9qJ5o1d:P/QvX5ruEFnhRGCqqJO","tlshash":"29f183947391f0c70ba54efbeac770c0e755b05e2a300409a7817ae625bd432d6c6bb7","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":579,"timings":{"blocked":222,"dns":72,"connect":57,"send":0,"wait":44,"receive":0,"ssl":175},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"g.jwpsrv.com/g/gcid-0.1.2.html?notrack","fqdn":"g.jwpsrv.com","domain":"jwpsrv.com","tld":"com"},"ip":{"addr":"151.101.194.114","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.495Z","timestamp":1699130722495,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jwplayer.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 30 Aug 2023 18:09:48 GMT","end":"Mon, 30 Sep 2024 18:09:47 GMT"},"fingerprint":{"sha1":"AB:15:C6:40:38:53:10:D6:CD:12:E9:B3:27:A9:9A:A9:79:8D:B2:9A","sha256":"93:FF:54:28:D7:70:8D:4A:52:3B:9F:FF:25:32:7B:20:95:15:C5:7C:D5:E3:57:DE:72:21:DF:BA:36:CE:93:B5"}}},"request":{"raw":"GET /g/gcid-0.1.2.html?notrack HTTP/1.1\r\nHost: g.jwpsrv.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\nserver: Varnish\r\nretry-after: 0\r\ncontent-type: text/html; charset=utf-8\r\naccept-ranges: bytes\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-bma1671-BMA\r\nx-cache: HIT\r\nx-cache-hits: 0\r\nx-timer: S1699130723.505633,VS0,VE0\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":28,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/500/6554748?excludes=\u0026oaid=b4bo511734gv237436208e8q7wbtk727\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.606Z","timestamp":1699130722606,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"OPTIONS /500/6554748?excludes=\u0026oaid=b4bo511734gv237436208e8q7wbtk727\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://cuevana3.ch/\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxoKBYaaJWqNTnRj1Cpp_MgCZJNnKvoDXtf_OBhREGPVW8fJyRcq0fqSQFSk8UOtGsA79zfHA","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.583Z","timestamp":1699130722583,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxoKBYaaJWqNTnRj1Cpp_MgCZJNnKvoDXtf_OBhREGPVW8fJyRcq0fqSQFSk8UOtGsA79zfHA HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://cuevana3.ch/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:bbq2t1lko9TDl5d_Hd6MyqiC5JXmOg:GOjZGgULn5jdBuBM;Path=/;Expires=Mon, 03-Nov-2025 20:45:22 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxq9RY3_tDAnMlJobgHYp1mjPdCGrhD_D5bvXHBIEUISeua_HCWjbHiRJfwgEhYXgy3wFxpwQ\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1828884566%3A1699130722610769\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-LuDcWEL52aj6i7UexvYOnw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 400\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":400,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (395)","md5":"5d44fc9155b5bd00bc4ab1adb5614f9d","sha1":"86cb6d327ac8f92a4cdb729bb2bc5a1c8444aaed","sha256":"ac855f4869cffe1f6421d372dd1a85db1d794025f59a6d3fc90420175846c886","sha512":"05bb13b3cdfdbfb8c1dd6a886b006b2a3cd74618b466988423dd0a267bb3af1a49754d5082a18182debad0c0fce15a610bcfe6c5a5eb70a006872ba8388d7469","ssdeep":"","tlshash":"39f0c0af484a04aaed5324b5a024a0d84479386d3acaa568f0f76f0545c4c27115a6f2","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":85,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=38edb153b07f49b480f149cca0be58d1","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.649Z","timestamp":1699130722649,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=38edb153b07f49b480f149cca0be58d1 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://pelisplay.info\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:22 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":34,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyzvFD9cwQNuoI-r0oDe54vYNY0HUhzgEh2lE-i0WKprEG8EL59shCsg5VNehKsDpcgsDaxi9g","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.587Z","timestamp":1699130722587,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyzvFD9cwQNuoI-r0oDe54vYNY0HUhzgEh2lE-i0WKprEG8EL59shCsg5VNehKsDpcgsDaxi9g HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://cuevana3.ch/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:VKV5oZVZ6JrsMhK10fZo0UK4Maystw:HEH_8qPi2yCHVBJG;Path=/;Expires=Mon, 03-Nov-2025 20:45:22 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyz-VOPNbWfhwOzdRJa3eHjLkiz_AEW1u5Cimh0rVsfCJYuyoHsL5z_4zt0CFCZeJET1Ul22bQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1057272836%3A1699130722671975\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-zLO0YC83ijOcLSInn2CS7Q' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 407\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":407,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (399)","md5":"3a97b856845107fa39f2291b975c4f5b","sha1":"300a49380c39ea78d38c3f887f54aa9a2e9a294c","sha256":"8c9da6171fe60cce0ebc99b28f394432ad4f76970c7703472b21aef796d815d2","sha512":"a4313ceff82dd9210a6f91c49dfa7b7dff80df15093b4012a2844cb26f9b3095d8d5528500a353816ee15aebfe10bcfe0fc86d0d4e447d4481a2ece40ff7b486","ssdeep":"","tlshash":"e5f0c0ae484504fd9c9338f59014b18c087874283ad6a8b9b0fa970851e8d2b11222b3","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":114,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":114,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nandweandthe.org/UlFlQk19bgYxcAdhEQwuFQcXJH4mEjNwG2o3DgwVCAkRdh4UBEM2JDZsXHt5ZmBTZD07NVhzayElBDY4IWxUZCQ8Nwp/ayRsVGx+Zn9WdmNidxB/fHQlFSMqb2BDMjkmPVhze2toVHF9ZWNXd3li","fqdn":"nandweandthe.org","domain":"nandweandthe.org","tld":"org"},"ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.609Z","timestamp":1699130722609,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nandweandthe.org","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Oct 2023 06:45:49 GMT","end":"Sun, 28 Jan 2024 06:45:48 GMT"},"fingerprint":{"sha1":"1F:B6:15:88:D9:CB:F8:82:C6:0C:AE:98:CF:A4:E2:D8:06:4E:0D:6D","sha256":"B8:01:DE:85:2B:65:C6:B5:37:64:91:0A:F7:91:37:EF:98:07:84:8C:76:CA:46:E7:54:71:E3:23:E4:02:DE:6D"}}},"request":{"raw":"GET /UlFlQk19bgYxcAdhEQwuFQcXJH4mEjNwG2o3DgwVCAkRdh4UBEM2JDZsXHt5ZmBTZD07NVhzayElBDY4IWxUZCQ8Nwp/ayRsVGx+Zn9WdmNidxB/fHQlFSMqb2BDMjkmPVhze2toVHF9ZWNXd3li HTTP/1.1\r\nHost: nandweandthe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=xHuT1FqGI%2FMO970Rybe4Hf26Np92Q4hDwatgxE5hZRcZyAGvSkh8Ghc3q5ylBtWu3M8GLYON4wauOsArwLDdh3y31vGtVjKJErEi4s2cKr9g%2FgSKli2zdSqor4In3Lnq6sUN\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3484a66568e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"almstda.tv/?rb=ySbxyHk_SGTwg4xDS5Kx3wXOfEB2WMXVj_Nd7Gj_OPfJevea1VAmR5klMmzfVeCsFesH8pW7ExUfcuRIykejO2AhtJFz_sB7G-GKyrPjwXGIdYKWqTokELwzohZli0alKYFgv9usAf-nIEMT2WVaf7DKaHA-Z4oTJ6TxCfR-uU_6KjPSEeYS54RkEt6jm4XyHrAqSa_Lqw7750QbVgse5d897Ko%3D\u0026request_ab2=0\u0026zoneid=5737819\u0026js_build=iclick-v1.622.1\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wih=1024\u0026wiw=1280\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026wgl=\u0026js_build=iclick-v1.622.1\u0026bs=9ff4e163-4fd4-481f-a8e8-de4a624793db\u0026userId=b4bo511734gv237436208e8q7wbtk727\u0026m=link","fqdn":"almstda.tv","domain":"almstda.tv","tld":"tv"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.356Z","timestamp":1699130722356,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"almstda.tv","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Oct 2023 05:44:08 GMT","end":"Sun, 07 Jan 2024 05:44:07 GMT"},"fingerprint":{"sha1":"88:BB:5E:54:95:58:44:3D:8A:15:8E:A1:FD:19:36:CE:89:FC:D1:6A","sha256":"DB:2C:11:CB:01:A6:77:E4:9F:18:FF:95:39:E5:BC:FB:79:B4:C2:FD:37:42:90:41:95:5D:A6:64:32:4A:FA:67"}}},"request":{"raw":"GET /?rb=ySbxyHk_SGTwg4xDS5Kx3wXOfEB2WMXVj_Nd7Gj_OPfJevea1VAmR5klMmzfVeCsFesH8pW7ExUfcuRIykejO2AhtJFz_sB7G-GKyrPjwXGIdYKWqTokELwzohZli0alKYFgv9usAf-nIEMT2WVaf7DKaHA-Z4oTJ6TxCfR-uU_6KjPSEeYS54RkEt6jm4XyHrAqSa_Lqw7750QbVgse5d897Ko%3D\u0026request_ab2=0\u0026zoneid=5737819\u0026js_build=iclick-v1.622.1\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wih=1024\u0026wiw=1280\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026wgl=\u0026js_build=iclick-v1.622.1\u0026bs=9ff4e163-4fd4-481f-a8e8-de4a624793db\u0026userId=b4bo511734gv237436208e8q7wbtk727\u0026m=link HTTP/1.1\r\nHost: almstda.tv\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://cuevana3.ch/\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: OAID=afb77b39e395429dbff87a971902674d; oaidts=1699130720\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/json\r\nx-trace-id: 13032e4b53ae42c75cb1a4ac4eeb3822\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nset-cookie: OAID=b4bo511734gv237436208e8q7wbtk727; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\noaidts=1699130722; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\nsyncedCookie=true; expires=Sat, 11 Nov 2023 20:45:22 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2529,"size_decoded":0,"mime_type":"application/json","magic":"JSON data\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (4698), with no line terminators","md5":"1f3d13ccdb7c14630b41c3e364ee072f","sha1":"14826b891a2b042d1a337d17f3b63ae98ec8e3eb","sha256":"c0c616a1ad965a3042f4ceb4ee07a316168fedac4ed1d8f0d2e8c58627f2b60a","sha512":"b0b60bb24462dfa01467ddc6847dc0c0685f37614486ae79dd308851ec8632a8f208e289d71674e729b2d988894d979055246ab719325223a5c2dc8f3cd399c4","ssdeep":"96:PghfUtvWAwGHu4W3jb/qScRY8oWcC1TmJzLlBpVxH9Rc2:PCgvWAVH1kzqSwzo/C1ypBV9v","tlshash":"01a1cc8d34f360c186b5a0a5043fb989fb285a91574cda14d67dd6bc7d342ea6317f0c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":41,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":41,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b4bo511734gv237436208e8q7wbtk727","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:23.320Z","timestamp":1699130723320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=b4bo511734gv237436208e8q7wbtk727 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:23 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=b4bo511734gv237436208e8q7wbtk727","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"139.45.195.8","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:23.320Z","timestamp":1699130723320,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rtmark.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Oct 2023 15:22:00 GMT","end":"Fri, 05 Jan 2024 15:21:59 GMT"},"fingerprint":{"sha1":"E8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42","sha256":"9B:0A:A1:20:ED:D2:5A:E5:AA:B9:4B:71:5D:B6:0E:BD:BA:E1:E7:51:62:8C:94:5B:6F:AD:21:A7:4C:E8:2D:F5"}}},"request":{"raw":"GET /gid.js?userId=b4bo511734gv237436208e8q7wbtk727 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: ID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: application/json; charset=utf-8\r\ncontent-length: 65\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\nset-cookie: ID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:23 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text","md5":"571d0f0fb488d54eba44adce0355226d","sha1":"9f44f409d3084003b861c20b4d29ad6991263e3d","sha256":"4f8fb2466570d654b8a9eee3005fcafc3a9af91b32dda24ae552bee384785ce3","sha512":"fd464c3c7d1871417f022a74c8e52025e8653e431da4820d3bfcd727fe706a7fca95046f46891521289ac957ba41d0926f7ba3a6a89664df02854f3d23e9cde7","ssdeep":"","tlshash":"50a02200820ae2e2200002023c8a8b03020220080c28f20c0ec08202338a28c0c28200","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg","fqdn":"offerimage.com","domain":"offerimage.com","tld":"com"},"ip":{"addr":"172.67.22.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.700Z","timestamp":1699130731700,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sun, 07 May 2023 00:00:00 GMT","end":"Mon, 06 May 2024 23:59:59 GMT"},"fingerprint":{"sha1":"DB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0","sha256":"34:C5:1C:5B:A8:54:FD:04:12:B5:7D:F2:1C:E0:EA:99:16:9A:0A:83:AD:56:FC:59:BC:A3:27:5E:81:D7:0B:23"}}},"request":{"raw":"GET /www/images/1355aa125a385056845e0ee1d5384e9a.jpeg HTTP/1.1\r\nHost: offerimage.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13093\r\ncache-control: max-age=86400\r\ncf-bgj: h2pri\r\netag: \"6388849b-3325\"\r\nexpires: Sun, 05 Nov 2023 07:10:48 GMT\r\nlast-modified: Thu, 01 Dec 2022 10:40:27 GMT\r\ntiming-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 48875\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb34ce97e568a-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13093,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\\012- data","md5":"1355aa125a385056845e0ee1d5384e9a","sha1":"cfa5fd1b2dd6b299c0aecdf19fec3532ce4392ea","sha256":"248797fff982ee400ab78ff6831182372f9ef8a6916364192ca0f30556577733","sha512":"57cdee332612d55274f11b1878c875640fe3fd6c09b30edf60e5ef69f4505b47b09ec1e1f2cb29288ae81bb1cb3a3b5cf6308ef474a3cb6274c1f014c75c4096","ssdeep":"192:32R/+dr9OFpoOxUOAwRtvlQCUR5y7ejlktbzNIzkoNWoRwYijjd1KL:q2dBaxUOAw7vxiw7ekdDo9ijGL","tlshash":"9e42b0aec2235509e0805efd4d1c4965e682ba12f5bfd90558e2e7cb2d22dc1cb64f0e","first_seen":"2023-04-11T00:28:14Z","last_seen":"2023-11-08T08:03:43Z","times_seen":406,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyz-VOPNbWfhwOzdRJa3eHjLkiz_AEW1u5Cimh0rVsfCJYuyoHsL5z_4zt0CFCZeJET1Ul22bQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1057272836%3A1699130722671975\u0026theme=glif","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:23.379676866Z","timestamp":1699130723379,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:48 GMT","end":"Mon, 08 Jan 2024 08:10:47 GMT"},"fingerprint":{"sha1":"16:5A:F1:76:25:96:2A:7F:80:A7:89:81:CE:D5:F4:5F:3D:29:9C:93","sha256":"64:6F:80:C0:FA:2B:EF:10:75:97:55:49:68:C2:2B:C7:64:DD:CA:1B:54:1C:FE:1A:31:B8:A7:DB:C1:8F:8D:7A"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyz-VOPNbWfhwOzdRJa3eHjLkiz_AEW1u5Cimh0rVsfCJYuyoHsL5z_4zt0CFCZeJET1Ul22bQ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1057272836%3A1699130722671975\u0026theme=glif HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://cuevana3.ch/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-aMTE63P7KPEaK3VWfuA-Jg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1309,"size_decoded":0,"mime_type":"application/x-gzip","magic":"gzip compressed data, max compression\\012- data","md5":"840c8623cfc582a4c57b1983aed0e202","sha1":"adb5e5ad01963b864c2c1f789b48664784dc15ab","sha256":"120dcece96040dfc429b7d2d86145114ab91aa8518eb0e17eead4a5948a7d1f9","sha512":"bdaaae6600705a8e92a266bb04353a525550ff4fd2ed15d124197a684ce6193124e7f30de4b1c289b117b3778b0c28075ef75e827a546858fb05a9138cba72a8","ssdeep":"","tlshash":"7c21fb8e8a04fc5ed67475403d9c9d4001ab0ce034c29c59251ce78aeda3695caa301c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/500/6554748?excludes=\u0026oaid=b4bo511734gv237436208e8q7wbtk727\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.606Z","timestamp":1699130722606,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"GET /500/6554748?excludes=\u0026oaid=b4bo511734gv237436208e8q7wbtk727\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: OAID=62db62d64fea404d8e5e61de943608ef\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: b248b8a698357a5bca4059acb1ca3717\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nset-cookie: OAID=b4bo511734gv237436208e8q7wbtk727; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3018,"size_decoded":0,"mime_type":"application/javascript","magic":"JSON data\\012- , Unicode text, UTF-8 text, with very long lines (3799), with no line terminators","md5":"72a9528a88e26566eb79aa110ba14282","sha1":"a85ef424356a7d72885e36590afcf3266abe983e","sha256":"e4afc77b44b474dc6c1c630752a2236afa61acb165873620911c61ad120c893b","sha512":"150fd47676bb2b33ab2dbb88fd8fdb5b2319d5ea567d8f78d07ea9cb74360e9045b42b896186df3cebe2fd9b9125fbbfe591c6db380de3b527e2eab5f3a8ab84","ssdeep":"","tlshash":"74716b7ede0c04f2d811828b4b62f8ac0ac1129708725b51610fafd7233e7ec0958378","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shortlyamusement.com/df/7b/bb/df7bbb30c095eb93d7f8eea76459e06f.js","fqdn":"shortlyamusement.com","domain":"shortlyamusement.com","tld":"com"},"ip":{"addr":"173.233.137.52","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.175Z","timestamp":1699130722175,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.shortlyamusement.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 07:20:23 GMT","end":"Mon, 08 Jan 2024 07:20:22 GMT"},"fingerprint":{"sha1":"DB:A6:B7:E6:17:6F:6E:1D:0B:0B:03:E2:8E:3C:1B:F2:50:55:91:75","sha256":"74:47:4F:B8:7B:8C:5C:FF:6C:83:3E:F2:5F:CA:43:D9:C0:58:E9:AE:31:15:72:03:03:AC:D6:4B:F2:37:63:F7"}}},"request":{"raw":"GET /df/7b/bb/df7bbb30c095eb93d7f8eea76459e06f.js HTTP/1.1\r\nHost: shortlyamusement.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:23 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nSet-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2660-1=1; expires=Thu, 09 Nov 2023 20:45:23 GMT; secure; SameSite=None\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nX-Request-ID: ca780cf9979e777e89d01506b988b4d9\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":23370,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (59050)","md5":"8069ffae12d8de580c24e11bb7237256","sha1":"2d8784606d89e2ebb61d8c3f1193e6c2ecaf41a2","sha256":"e1fb123d82ef3228120043a661358ca7076445dfe7e642cb101d250a38fbc881","sha512":"8f8194e62146a39638e674782797e3bfb6bff053afce4f2701ec8f942529d83044e0fce4bd2b0c5e0f47c5ff2e48d0d45f6b8e3bd9e0bc9a4df5259a7437af19","ssdeep":"768:aLSD/HsaS8ECMDlWJMUKfwxf7MP47Lyq5Z0Db5IONlhknpMAGsvUuUuaP:aLSD/HRGDlWJ++7l39M43GsvlU3P","tlshash":"4743b7cc7f547c65529774b3731f9287e42b4d19da88c4ddf223aca4292932af4327a8","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":2692,"timings":{"blocked":1209,"dns":558,"connect":100,"send":0,"wait":105,"receive":97,"ssl":621},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"shortlyamusement.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"professionalswebcheck.com/stats","fqdn":"professionalswebcheck.com","domain":"professionalswebcheck.com","tld":"com"},"ip":{"addr":"3.122.74.31","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.593Z","timestamp":1699130721593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"professionalswebcheck.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 30 Aug 2023 00:00:00 GMT","end":"Fri, 27 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C","sha256":"34:E2:43:43:4E:FA:CF:25:BA:94:FB:DC:E9:CD:BA:35:F1:15:90:E2:F3:90:42:3E:A2:52:2B:30:7D:BC:5C:69"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionalswebcheck.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: uid_id2=35b94086-d0a4-45ac-9b56-e09679ab9671:3:1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://pelisplay.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"1473294c061011a5962f2babc8f7e6a8","sha1":"b42efb7cec1271870fffa8158cb29c7838914ded","sha256":"1404e998741e9829d099654bf49f992a50de8d6dcd485eecf7332a7375e455e9","sha512":"98fd36c2c821e5f0aef74b7d8de14ec3657cf5ad23a2feb27ed1d51770473eae991061e448f0c6ce01e7f78abd21b2baee7db1c379bdae19682170ba4f6d4ec4","ssdeep":"","tlshash":"e190044410341004c100511715d04d150c470011c4f073c1fd3554111c50070ddf0431","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"banquetunarmedgrater.com/advertisers.js","fqdn":"banquetunarmedgrater.com","domain":"banquetunarmedgrater.com","tld":"com"},"ip":{"addr":"172.64.198.37","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:23.836Z","timestamp":1699130723836,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"banquetunarmedgrater.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 11 Sep 2023 08:34:11 GMT","end":"Sun, 10 Dec 2023 08:34:10 GMT"},"fingerprint":{"sha1":"77:2B:76:51:D0:51:70:02:2E:BF:B7:9B:02:8B:5A:A4:91:FA:0B:9E","sha256":"A2:26:27:42:22:55:4F:1A:25:4D:F1:86:C1:5C:3C:CD:EB:7C:D9:DE:2A:F8:10:F5:98:B2:93:4A:43:2C:8F:4E"}}},"request":{"raw":"GET /advertisers.js HTTP/1.1\r\nHost: banquetunarmedgrater.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 0\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\ncache-control: max-age=172800\r\nx-request-id: 664c8d80f2e59d2b100b9e8ff0e5a735\r\nstrict-transport-security: max-age=0; includeSubdomains\r\ncf-cache-status: EXPIRED\r\nlast-modified: Sat, 04 Nov 2023 20:45:23 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=XSK2oWpbNyWGlUb6ThJNFDzRH7CPnLO5QuVlIl2bGraOGu9p%2BluI16mc0E4Xu3U0qktNvRfyXLOiJYC77nTqRuFbAf%2F3KIV0TnF%2BsCbPAnRi4B1QMfLAJQHuF2XIyAKA2SfE0ztqzCu%2BLCo%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3501e946316-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":123,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":123,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.068Z","timestamp":1699130724068,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=youtube HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:e81SXkzyjoVwpDfj7seCK5pwJaY6iw:grQW5PCNFzsEcQJW; Expires=Mon, 03-Nov-2025 20:45:24 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyypk1767HCl2MU5wZX7IQsVDzDp6SvkGV-srcZAeYwtUK3WNsDtA4I28MoYdhjTL44BUfup\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-opener-policy: unsafe-none\r\ncross-origin-resource-policy: cross-origin\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-security-policy: script-src 'nonce-grNIhORGM-V1oGpQNVF27g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.526Z","timestamp":1699130721526,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:48 GMT","end":"Mon, 08 Jan 2024 08:10:47 GMT"},"fingerprint":{"sha1":"16:5A:F1:76:25:96:2A:7F:80:A7:89:81:CE:D5:F4:5F:3D:29:9C:93","sha256":"64:6F:80:C0:FA:2B:EF:10:75:97:55:49:68:C2:2B:C7:64:DD:CA:1B:54:1C:FE:1A:31:B8:A7:DB:C1:8F:8D:7A"}}},"request":{"raw":"GET /ServiceLogin?passive=true\u0026continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026uilel=3\u0026hl=en\u0026service=mail HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: application/binary\r\nset-cookie: __Host-GAPS=1:hPBNgItHnQFOkNM7-_oWhEFr4LpZkQ:yMOrp327k038X230; Expires=Mon, 03-Nov-2025 20:45:24 GMT; Path=/; Secure; HttpOnly; Priority=HIGH\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nlocation: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxkGLsFb4SBKZ2I6wDsS57eyI1_QH70cEkKQCXj8ZYe2-BUW_cbzWqSI7mB_br_NIsznUtp\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-6Y2so4FuaCEqEjySP1GP4g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: unsafe-none\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\nserver: ESF\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":186,"timings":{"blocked":77,"dns":0,"connect":8,"send":0,"wait":25,"receive":1,"ssl":71},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyypk1767HCl2MU5wZX7IQsVDzDp6SvkGV-srcZAeYwtUK3WNsDtA4I28MoYdhjTL44BUfup","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.099Z","timestamp":1699130724099,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026ifkv=AVQVeyypk1767HCl2MU5wZX7IQsVDzDp6SvkGV-srcZAeYwtUK3WNsDtA4I28MoYdhjTL44BUfup HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:p1KZT-_qjAMqOoqU6kGUhl-AmafNJw:l0Y9Eb6kEb2OV9W0;Path=/;Expires=Mon, 03-Nov-2025 20:45:24 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxyOnjq8wSFsiGI7G7ZIfUUoc9SPkwrmeDlEiKlOOKJDNP1_HHALY0JW9UdMphTfnUo00TZ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1107673920%3A1699130724137255\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-security-policy: script-src 'nonce-7in3gmzgR0VYi-QBPnPJfw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 405\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":405,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (397)","md5":"ce69e4a537b4df6c70197989db2bbe2c","sha1":"882abfbad28475b02face611285284b91db5629b","sha256":"70b657e3da47740172f14776d7d9917763534a6fd395686f3b2f4f0a1b23f7dc","sha512":"283e24a3079b96ce624ee2e4b7e7e0302bb02116c86eb01c17495bc927947428639c5ae9298562ac477f0c3fac3a7d013e2941ec379df88459a4b320e310942d","ssdeep":"","tlshash":"c6f0c0de884504df595338fb9428f49d443468593dc5a4b9a4f6631541a582711056b3","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":55,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dweatherbe.org/utx?cb=C8neeFmkr9J5\u0026top=pelisplay.info\u0026tid=994416","fqdn":"dweatherbe.org","domain":"dweatherbe.org","tld":"org"},"ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.073Z","timestamp":1699130724073,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dweatherbe.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sun, 22 Oct 2023 00:00:00 GMT","end":"Tue, 19 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"B9:18:AC:1F:87:E4:2C:E9:36:35:FF:E7:F8:8F:F7:77:F0:AB:4C:4A","sha256":"50:E5:D8:5C:74:BC:BB:FD:C9:EC:F8:CB:E7:31:E6:48:4D:16:4E:C9:56:2D:FA:E7:02:D5:38:25:45:DD:BE:9A"}}},"request":{"raw":"GET /utx?cb=C8neeFmkr9J5\u0026top=pelisplay.info\u0026tid=994416 HTTP/1.1\r\nHost: dweatherbe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nserver: openresty/1.17.8.2\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://pelisplay.info\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\nset-cookie: ut=x; Expires=Sat, 04 Nov 2023 20:46:24 GMT; Max-Age=60\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: -F5W1AsPR5G0YHyshQb__rsbOvaRSqsvRz895w_uNtiEx03uY7tdLQ==\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/xml","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":121,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":121,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxkGLsFb4SBKZ2I6wDsS57eyI1_QH70cEkKQCXj8ZYe2-BUW_cbzWqSI7mB_br_NIsznUtp","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:24.223540683Z","timestamp":1699130724223,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:10:48 GMT","end":"Mon, 08 Jan 2024 08:10:47 GMT"},"fingerprint":{"sha1":"16:5A:F1:76:25:96:2A:7F:80:A7:89:81:CE:D5:F4:5F:3D:29:9C:93","sha256":"64:6F:80:C0:FA:2B:EF:10:75:97:55:49:68:C2:2B:C7:64:DD:CA:1B:54:1C:FE:1A:31:B8:A7:DB:C1:8F:8D:7A"}}},"request":{"raw":"GET /InteractiveLogin?continue=https://www.google.com/favicon.ico\u0026hl=en\u0026passive=true\u0026service=mail\u0026uilel=3\u0026ifkv=AVQVeyxkGLsFb4SBKZ2I6wDsS57eyI1_QH70cEkKQCXj8ZYe2-BUW_cbzWqSI7mB_br_NIsznUtp HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/3 302 Found\r\ncontent-type: text/html; charset=UTF-8\r\nset-cookie: __Host-GAPS=1:CSFUW76gG1oRXeEbYu8vlSZuZxHeyA:g2We1xgAW9cO7ztC;Path=/;Expires=Mon, 03-Nov-2025 20:45:24 GMT;Secure;HttpOnly;Priority=HIGH\r\nx-frame-options: DENY\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nlocation: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxZ9aOEJWoOO2YtvfUPihFeKhLXBTGMOioSY6BLyDXH21G1TNhESRQfTRJChmXb7ykpTlI5\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1124707823%3A1699130724187880\u0026theme=glif\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: script-src 'nonce--m6IeiTyTeVRB2s7oPOksg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_gse_qebhlk\"\r\nreport-to: {\"group\":\"coop_gse_qebhlk\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/gse_qebhlk\"}]}\r\ncontent-encoding: gzip\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-length: 397\r\nserver: GSE\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":397,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document, ASCII text, with very long lines (393)","md5":"99b46b5a09013e3a72404881ebbf65f3","sha1":"d1771c2b94e4dea13b7680d4a8e92a7408feb9c9","sha256":"b48196db5deb35ba80def73edafc6a1468dacc5ed7ba707476bf1086543c0f55","sha512":"abf13e69210bd2624ddf4c77d2ef61fa32af1ad588d7019c01902c4072435d1ac8a8e4b3e071710a410634ed564a0b62072d3f78efcf04e755a0d5892ae39ebe","ssdeep":"","tlshash":"1ef0c9af1c9904ade4932cf5e428b0dc98b434a83fcbe6a8b1e767085090d1f11162f3","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"replicafixedly.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2476\u0026rd=2476\u0026fd=1608\u0026bv=23.11.v.1\u0026tmpl=70","fqdn":"replicafixedly.com","domain":"replicafixedly.com","tld":"com"},"ip":{"addr":"173.233.137.36","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:23.637Z","timestamp":1699130723637,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"replicafixedly.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 10 Oct 2023 08:27:48 GMT","end":"Mon, 08 Jan 2024 08:27:47 GMT"},"fingerprint":{"sha1":"21:91:31:4C:87:7B:9A:CE:E5:CD:08:9F:61:49:11:34:3B:54:DD:53","sha256":"E1:67:CD:E7:64:C3:7E:E0:9B:C2:AD:07:1E:6A:37:47:A2:16:B8:CC:A8:F2:6F:60:F7:3A:F6:D3:5D:67:70:86"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2476\u0026rd=2476\u0026fd=1608\u0026bv=23.11.v.1\u0026tmpl=70 HTTP/1.1\r\nHost: replicafixedly.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:24 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":1232,"timings":{"blocked":564,"dns":264,"connect":98,"send":0,"wait":100,"receive":0,"ssl":203},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"replicafixedly.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"professionalswebcheck.com/stats","fqdn":"professionalswebcheck.com","domain":"professionalswebcheck.com","tld":"com"},"ip":{"addr":"3.122.74.31","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.593Z","timestamp":1699130721593,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"professionalswebcheck.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Wed, 30 Aug 2023 00:00:00 GMT","end":"Fri, 27 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C","sha256":"34:E2:43:43:4E:FA:CF:25:BA:94:FB:DC:E9:CD:BA:35:F1:15:90:E2:F3:90:42:3E:A2:52:2B:30:7D:BC:5C:69"}}},"request":{"raw":"GET /stats HTTP/1.1\r\nHost: professionalswebcheck.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: uid_id2=35b94086-d0a4-45ac-9b56-e09679ab9671:3:1\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 40\r\nserver: fasthttp\r\naccess-control-allow-origin: https://pelisplay.info\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":40,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text, with no line terminators","md5":"1473294c061011a5962f2babc8f7e6a8","sha1":"b42efb7cec1271870fffa8158cb29c7838914ded","sha256":"1404e998741e9829d099654bf49f992a50de8d6dcd485eecf7332a7375e455e9","sha512":"98fd36c2c821e5f0aef74b7d8de14ec3657cf5ad23a2feb27ed1d51770473eae991061e448f0c6ce01e7f78abd21b2baee7db1c379bdae19682170ba4f6d4ec4","ssdeep":"","tlshash":"e190044410341004c100511715d04d150c470011c4f073c1fd3554111c50070ddf0431","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nandweandthe.org/WnM5M2R1TFpAWRQlVVwFaxR3UTJvKVhUKi8kCFsVG0FVVzFoFB9HDT5OAApQbkIPFRQzFwQCQikHWEcRKU4KA1RrVVBdAjVOCQNUa1VPDlV0QA0dV25dCRURZ0IKAV1vQAkCV21BCABSa0YfRxQ7FAQCQioHTV9Za0UAClVpQw4BUGhGAA","fqdn":"nandweandthe.org","domain":"nandweandthe.org","tld":"org"},"ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.264Z","timestamp":1699130724264,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nandweandthe.org","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Oct 2023 06:45:49 GMT","end":"Sun, 28 Jan 2024 06:45:48 GMT"},"fingerprint":{"sha1":"1F:B6:15:88:D9:CB:F8:82:C6:0C:AE:98:CF:A4:E2:D8:06:4E:0D:6D","sha256":"B8:01:DE:85:2B:65:C6:B5:37:64:91:0A:F7:91:37:EF:98:07:84:8C:76:CA:46:E7:54:71:E3:23:E4:02:DE:6D"}}},"request":{"raw":"POST /WnM5M2R1TFpAWRQlVVwFaxR3UTJvKVhUKi8kCFsVG0FVVzFoFB9HDT5OAApQbkIPFRQzFwQCQikHWEcRKU4KA1RrVVBdAjVOCQNUa1VPDlV0QA0dV25dCRURZ0IKAV1vQAkCV21BCABSa0YfRxQ7FAQCQioHTV9Za0UAClVpQw4BUGhGAA HTTP/1.1\r\nHost: nandweandthe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 No Content\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=aUgLRGjDJwgrShuSAJW0prDAMZ6kjAOERRg%2Bg3RjTFkmNLaDCx1N0T8v9wamwm6n8%2FtnYxHbUI3Czs9TVSQhRoNGRUifDrzQmjTtvb4vIMkLMZ3FqAz2DoxKvDO6Kf4NDlw2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb352bbab568e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pogothere.xyz/","fqdn":"pogothere.xyz","domain":"pogothere.xyz","tld":"xyz"},"ip":{"addr":"172.64.201.15","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.071Z","timestamp":1699130724071,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Tue, 28 Feb 2023 00:00:00 GMT","end":"Tue, 27 Feb 2024 23:59:59 GMT"},"fingerprint":{"sha1":"17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB","sha256":"09:91:FB:E4:53:65:EC:A7:C4:6B:EB:F6:E2:94:A5:09:45:6F:FC:DC:B1:B4:E4:67:80:61:7A:EE:7F:81:DD:45"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: pogothere.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: csu=1329530137213615@1@1699130721\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\ncontent-type: text/plain\r\nset-cookie: csu=1329530137213615@2@1699130721; Max-Age=31104000; Secure; SameSite=None\r\naccess-control-allow-origin: https://pelisplay.info\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: X-Requested-With, content-type\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WdKFV%2BXY%2Fpn9t%2BvhkDWDbSlTI4y2%2B%2FNMynty4Gj9an5ueBdWZ27IDF0z72efWsLwEAR4h2M97n1AUk9dUPz47jyIqiVELUd4ZSzSw2tuGrO3Hzg6cYFmPLPjK%2Bnx2Hzc\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb35189a36431-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":531,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"227796d1595730b60ce0a5640ef4bf5d","sha1":"b6c503363f6d21dd3b8e88c6487c94e798dcfc1f","sha256":"67990bdb4fc57493a2fdd3ccdc117087a254fa7a0e21a18fa103e981a0622363","sha512":"e9e3e91c1ac1060f1b1409ac8b9b71bea3fbc53e4b25535aef44482635be241d47adf2dda983d47861d4287f7425e5d807ad164fd1506c67cb123d28bb51e362","ssdeep":"","tlshash":"df80008ae82288c2802000b8288280b82ba3aae002b2a00ec828208822c00280000c2c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":136,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unseenreport.com/pxf.gif?uuid=35b94086-d0a4-45ac-9b56-e09679ab9671\u0026eb=a996fe56ed028c08f89591a4a8a9c431\u0026te=4cb725660c43031e3b06c75892d96c5a\u0026ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0\u0026dev=e\u0026res=14.2079\u0026b_frame=0\u0026pk=bffd0ccd70480e9ae2e30278718389bf\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=20","fqdn":"unseenreport.com","domain":"unseenreport.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:24.683Z","timestamp":1699130724683,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.unseenreport.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 07:33:12 GMT","end":"Fri, 22 Dec 2023 07:33:11 GMT"},"fingerprint":{"sha1":"BE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A","sha256":"B1:1F:4E:E0:84:DE:56:E2:D0:09:A3:D3:75:6A:F6:48:CD:A5:E1:18:35:A6:C5:07:15:89:79:FC:D9:AD:40:DF"}}},"request":{"raw":"GET /pxf.gif?uuid=35b94086-d0a4-45ac-9b56-e09679ab9671\u0026eb=a996fe56ed028c08f89591a4a8a9c431\u0026te=4cb725660c43031e3b06c75892d96c5a\u0026ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0\u0026dev=e\u0026res=14.2079\u0026b_frame=0\u0026pk=bffd0ccd70480e9ae2e30278718389bf\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=20 HTTP/1.1\r\nHost: unseenreport.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 04 Nov 2023 20:45:25 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nX-Request-ID: 53c070fb4ff60e3ca1b9df79e65459d3\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1,"size_decoded":0,"mime_type":"image/gif","magic":"very short file (no magic)","md5":"93b885adfe0da089cdf634904fd59f71","sha1":"5ba93c9db0cff93f52b521d7420e43f6eda2784f","sha256":"6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d","sha512":"b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-04-05T04:01:45Z","last_seen":"2026-04-04T04:28:57.885102Z","times_seen":28469,"resource_available":false,"data":null}},"time_used":1497,"timings":{"blocked":683,"dns":325,"connect":117,"send":0,"wait":130,"receive":0,"ssl":239},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"unseenreport.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"unseenreport.com/pxf.gif?uuid=35b94086-d0a4-45ac-9b56-e09679ab9671\u0026eb=6adde438baa0fa92530e8a3115bdffc1\u0026te=37396b568500723acebf9a99ac43aeca\u0026ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0\u0026dev=e\u0026res=14.2079\u0026b_frame=1\u0026pk=df7bbb30c095eb93d7f8eea76459e06f\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=20","fqdn":"unseenreport.com","domain":"unseenreport.com","tld":"com"},"ip":{"addr":"192.243.59.13","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.731Z","timestamp":1699130724731,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.unseenreport.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 07:33:12 GMT","end":"Fri, 22 Dec 2023 07:33:11 GMT"},"fingerprint":{"sha1":"BE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A","sha256":"B1:1F:4E:E0:84:DE:56:E2:D0:09:A3:D3:75:6A:F6:48:CD:A5:E1:18:35:A6:C5:07:15:89:79:FC:D9:AD:40:DF"}}},"request":{"raw":"GET /pxf.gif?uuid=35b94086-d0a4-45ac-9b56-e09679ab9671\u0026eb=6adde438baa0fa92530e8a3115bdffc1\u0026te=37396b568500723acebf9a99ac43aeca\u0026ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0\u0026dev=e\u0026res=14.2079\u0026b_frame=1\u0026pk=df7bbb30c095eb93d7f8eea76459e06f\u0026bl=en-US\u0026sr=1024x1280\u0026sz=1024x1280\u0026hjs=20 HTTP/1.1\r\nHost: unseenreport.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 04 Nov 2023 20:45:25 GMT\r\nContent-Type: image/gif\r\nContent-Length: 1\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nX-Request-ID: 5f865622edac0fee1d7e3389543ff328\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1,"size_decoded":0,"mime_type":"image/gif","magic":"very short file (no magic)","md5":"93b885adfe0da089cdf634904fd59f71","sha1":"5ba93c9db0cff93f52b521d7420e43f6eda2784f","sha256":"6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d","sha512":"b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee","ssdeep":"","tlshash":"c700000000000000c00000300000000000000000000000000000000000000000000000","first_seen":"2023-04-05T04:01:45Z","last_seen":"2026-04-04T04:28:57.885102Z","times_seen":28469,"resource_available":false,"data":null}},"time_used":1416,"timings":{"blocked":643,"dns":277,"connect":120,"send":0,"wait":129,"receive":0,"ssl":243},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"unseenreport.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"pogothere.xyz/asd100.bin","fqdn":"pogothere.xyz","domain":"pogothere.xyz","tld":"xyz"},"ip":{"addr":"172.64.201.15","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.070Z","timestamp":1699130724070,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Tue, 28 Feb 2023 00:00:00 GMT","end":"Tue, 27 Feb 2024 23:59:59 GMT"},"fingerprint":{"sha1":"17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB","sha256":"09:91:FB:E4:53:65:EC:A7:C4:6B:EB:F6:E2:94:A5:09:45:6F:FC:DC:B1:B4:E4:67:80:61:7A:EE:7F:81:DD:45"}}},"request":{"raw":"GET /asd100.bin HTTP/1.1\r\nHost: pogothere.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: csu=1329530137213615@1@1699130721\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\ncontent-type: binary/octet-stream\r\naccess-control-allow-origin: https://pelisplay.info\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: X-Requested-With, content-type\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 3872\r\nlast-modified: Sat, 04 Nov 2023 19:40:52 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=A3H6fqrJxT3DxSABHMoEMdv1NZEvvTfs2pD8MY7gDGFaBRYm8azjffbCPouBNntaco80HmTm9U6jX7JoTfUK2eJ%2BM1b6vnDjfzQArfrNMjSNyii48ZZwCJxzmYZdiLwW\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb351899c6431-LHR\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":103206,"size_decoded":0,"mime_type":"binary/octet-stream","magic":"data","md5":"a525a043b811dff9bd616cdffc57054e","sha1":"baad952ba1b9f71ffe73e9e27659c7896c4f6878","sha256":"2461ba690a5bbec79ddbe2a6036ee8425c9e01aacb2cff91ec3b04023a968b6e","sha512":"c657788fb5ce390ee4b2dc498cdb27e30bace0f61b3155e3c96f429c4e30e53d7f1fcce44ffb5787b8fd215aab349ffcf284b9e48e4aa74428f0795411e8013c","ssdeep":"12:XC6Ip8/Fu1Rx8kNxXokCCPL4mi2Sq25qROU32i/I+5X0xgoSL5z70HnFKKuBeK/d:X1IMF28k/bXPOUPDnoO5X8FKTryz9E","tlshash":"87a38169fba115b6c03dbfba9450ce5dcec1cc1e6701533d608c62f822154a43885c97","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":137,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":42,"receive":95,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/impression/LBOz7Lq5hE5eY28W6sESeSnggkjT_jwoWHTWiiS-B9MiWrIP8faZdJ4XdETYiEPeHlzTasW-BK1tTjNI6WNLlbBwfZvP8GKt-97C8258GdCBhHEeG8DocL5FGLRmdueFotj-81W7-v1nBAMm_0UX1EY7c8WFd39opfuAbAm0DruEW-uDIr0Mj3XdZ0pBdp0KCqJwVPLFEQ0z8_Ccej5r4ucDQfYadCATpcISbBJeWeIo4NaH2ERIYNEAXSh6z3Be6qZdW5WOP4plkhp7sQiPX5Ct3pD2lA3wabHMVabhNk633CDVq21k_Qx_8gvmJuqVa-lb8MbvmgEwY8mDAEp6TTEKOjeyip_EQw-E6OcrTesIXtagfjhptVSMkZepN8A9TliLbF8cRH2ODclBWWO8xw-lJu79ws9x49Y1-BFQEtyDnkZTmqD-g1PkpMaPF1IMzB-08nACNQqynvgvU46CeJFE2I3LoeafDWWyes2yND7ut7ijNY7a8z6V5CexWp6lMpE2ROS3GO9hKusQ2EacnaDrKS9FZpmlDNrSVF2WYKU2qPKBeDh-hYW4X-urMOXZRGZv3KTZkvNeFRD8?_z=6554748\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.298Z","timestamp":1699130731298,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"GET /impression/LBOz7Lq5hE5eY28W6sESeSnggkjT_jwoWHTWiiS-B9MiWrIP8faZdJ4XdETYiEPeHlzTasW-BK1tTjNI6WNLlbBwfZvP8GKt-97C8258GdCBhHEeG8DocL5FGLRmdueFotj-81W7-v1nBAMm_0UX1EY7c8WFd39opfuAbAm0DruEW-uDIr0Mj3XdZ0pBdp0KCqJwVPLFEQ0z8_Ccej5r4ucDQfYadCATpcISbBJeWeIo4NaH2ERIYNEAXSh6z3Be6qZdW5WOP4plkhp7sQiPX5Ct3pD2lA3wabHMVabhNk633CDVq21k_Qx_8gvmJuqVa-lb8MbvmgEwY8mDAEp6TTEKOjeyip_EQw-E6OcrTesIXtagfjhptVSMkZepN8A9TliLbF8cRH2ODclBWWO8xw-lJu79ws9x49Y1-BFQEtyDnkZTmqD-g1PkpMaPF1IMzB-08nACNQqynvgvU46CeJFE2I3LoeafDWWyes2yND7ut7ijNY7a8z6V5CexWp6lMpE2ROS3GO9hKusQ2EacnaDrKS9FZpmlDNrSVF2WYKU2qPKBeDh-hYW4X-urMOXZRGZv3KTZkvNeFRD8?_z=6554748\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=2\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: OAID=b4bo511734gv237436208e8q7wbtk727\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:31 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: dd45ab2f050731ed6acef35bf00a9d19\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-04T06:36:29.343204Z","times_seen":96356,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":64,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/500/6554748?excludes=16368910\u0026oaid=afb77b39e395429dbff87a971902674d\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.504Z","timestamp":1699130731504,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"OPTIONS /500/6554748?excludes=16368910\u0026oaid=afb77b39e395429dbff87a971902674d\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: GET\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://cuevana3.ch/\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:31 GMT\r\ncontent-length: 0\r\nallow: GET, OPTIONS\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-allow-credentials: true\r\naccess-control-max-age: 600\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":73,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/500/6554748?excludes=16368910\u0026oaid=afb77b39e395429dbff87a971902674d\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.504Z","timestamp":1699130731504,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"GET /500/6554748?excludes=16368910\u0026oaid=afb77b39e395429dbff87a971902674d\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: OAID=b4bo511734gv237436208e8q7wbtk727\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:31 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: a5afb2353117ffa40e817bf613021389\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: https://cuevana3.ch\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nset-cookie: OAID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:31 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11844,"size_decoded":0,"mime_type":"text/plain","magic":"gzip compressed data, max speed, from Unix\\012- data","md5":"140cf9887e65920c439cb345b66dd816","sha1":"768b5314e1a0dca79664fc03b1b87db14b93ce79","sha256":"613e6bdd9349fcad3acb601eaa603540ac2c54ee6b28c17d7389c5f3006a8bb1","sha512":"16f2234303829738b7c1d1cb69548478434b5f145165525bf1309cb78c6341f2f5df67d93c2c2dc7f70d9650faff9632e151b0145e171b2e0b7a1bb937888516","ssdeep":"192:/MwwEtsHMFai4Wy9P6ZKvp6rPwTYKZg1TxxBibj+j0KOIk:UwD0MFh4WQ6ZcpUiFCdKbatjk","tlshash":"2332bff13236828cc95356321f828495de16eca2df3ac7978122b7dc32dc96764162df","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":73,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":73,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"offerimage.com/www/images/1355aa125a385056845e0ee1d5384e9a.jpeg","fqdn":"offerimage.com","domain":"offerimage.com","tld":"com"},"ip":{"addr":"172.67.22.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.700Z","timestamp":1699130731700,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sun, 07 May 2023 00:00:00 GMT","end":"Mon, 06 May 2024 23:59:59 GMT"},"fingerprint":{"sha1":"DB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0","sha256":"34:C5:1C:5B:A8:54:FD:04:12:B5:7D:F2:1C:E0:EA:99:16:9A:0A:83:AD:56:FC:59:BC:A3:27:5E:81:D7:0B:23"}}},"request":{"raw":"GET /www/images/1355aa125a385056845e0ee1d5384e9a.jpeg HTTP/1.1\r\nHost: offerimage.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:31 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 13093\r\ncache-control: max-age=86400\r\ncf-bgj: h2pri\r\netag: \"6388849b-3325\"\r\nexpires: Sun, 05 Nov 2023 07:10:48 GMT\r\nlast-modified: Thu, 01 Dec 2022 10:40:27 GMT\r\ntiming-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 48883\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3812e74568a-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13093,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\\012- data","md5":"1355aa125a385056845e0ee1d5384e9a","sha1":"cfa5fd1b2dd6b299c0aecdf19fec3532ce4392ea","sha256":"248797fff982ee400ab78ff6831182372f9ef8a6916364192ca0f30556577733","sha512":"57cdee332612d55274f11b1878c875640fe3fd6c09b30edf60e5ef69f4505b47b09ec1e1f2cb29288ae81bb1cb3a3b5cf6308ef474a3cb6274c1f014c75c4096","ssdeep":"192:32R/+dr9OFpoOxUOAwRtvlQCUR5y7ejlktbzNIzkoNWoRwYijjd1KL:q2dBaxUOAw7vxiw7ekdDo9ijGL","tlshash":"9e42b0aec2235509e0805efd4d1c4965e682ba12f5bfd90558e2e7cb2d22dc1cb64f0e","first_seen":"2023-04-11T00:28:14Z","last_seen":"2023-11-08T08:03:43Z","times_seen":406,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/impression/qBgkzZrYCKGmpffHchwQN35hAcXozjOYejaPASmL7LMlXvATV84dOlVynXQf2_8moO-wvH2KBLhLZyeTU75eJiWTWkBIqBNg1wiN-UM-lnWVrNA4FGM2qncggArEWNd9U2xpeSH3Jjvmx5LaXElWqgTK7YdyFubu-j57ji7Srat1BSFybD6E34hAPBaLIDGttg9etBgUn5-UJmLxtA_YvviT5esj66EEdaXa6Le2hWtBUT85pkHqbsMrKvdczyWMTnd12EDRzDe3KxP3kluC5sh_HyTjFgYlljyThFVz7Hb0pHoKPSgjyRS6bPboPnzYCRY6fugN6-_hNgaKo-Erg7FlkQpTXxbx9ER2aev0baJ0tu2O1cf_4WmrJh2u9gJr3DW9kJFT_VMvXBsJxLNYvZXXVxop-PHPfBJhXkCVgWM5R8tSrHn_HnNUlZNVSdFzweeS8VjPYrIa-hJS0Y2s0UzFZBTzpv2DqMweBnHR_OuElAW1RJKVftPXjj3zSt87CsJHDKc0tmfU-ccn0x0Dk_zvCXAmIvi92GQ7xH3y_Od603HcSTy3ywaZuQdXbFXFvQDgA9mT6LZG-qB7?_z=6554748\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":0,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-11-04T20:45:34.37487457Z","timestamp":1699130734374,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"GET /impression/qBgkzZrYCKGmpffHchwQN35hAcXozjOYejaPASmL7LMlXvATV84dOlVynXQf2_8moO-wvH2KBLhLZyeTU75eJiWTWkBIqBNg1wiN-UM-lnWVrNA4FGM2qncggArEWNd9U2xpeSH3Jjvmx5LaXElWqgTK7YdyFubu-j57ji7Srat1BSFybD6E34hAPBaLIDGttg9etBgUn5-UJmLxtA_YvviT5esj66EEdaXa6Le2hWtBUT85pkHqbsMrKvdczyWMTnd12EDRzDe3KxP3kluC5sh_HyTjFgYlljyThFVz7Hb0pHoKPSgjyRS6bPboPnzYCRY6fugN6-_hNgaKo-Erg7FlkQpTXxbx9ER2aev0baJ0tu2O1cf_4WmrJh2u9gJr3DW9kJFT_VMvXBsJxLNYvZXXVxop-PHPfBJhXkCVgWM5R8tSrHn_HnNUlZNVSdFzweeS8VjPYrIa-hJS0Y2s0UzFZBTzpv2DqMweBnHR_OuElAW1RJKVftPXjj3zSt87CsJHDKc0tmfU-ccn0x0Dk_zvCXAmIvi92GQ7xH3y_Od603HcSTy3ywaZuQdXbFXFvQDgA9mT6LZG-qB7?_z=6554748\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1280\u0026wiw=1280\u0026wih=1024\u0026wfc=3\u0026pl=https%3A%2F%2Fcuevana3.ch%2F3325%2Fsiniestro\u0026drf=\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=0\u0026nw=1\u0026tb=false\u0026tzofs=0\u0026js_build=8\u0026sw_version=v1.306.0 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nCookie: OAID=afb77b39e395429dbff87a971902674d\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:34 GMT\r\ncontent-type: image/gif\r\ncontent-length: 43\r\nx-trace-id: 071c7adf0f5c09f45352c0950b6d3548\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\npragma: no-cache\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":43,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"b4491705564909da7f9eaf749dbbfbb1","sha1":"279315d507855c6a4351e1e2c2f39dd9cd2fccd8","sha256":"4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49","sha512":"b8d82d64ec656c63570b82215564929adad167e61643fd72283b94f3e448ef8ab0ad42202f3537a0da89960bbdc69498608fc6ec89502c6c338b6226c8bf5e14","ssdeep":"","tlshash":"c5900403d140d041c351c0300d0cc740174471304514030f70fc175dfc353510c13000","first_seen":"2023-04-05T09:54:56Z","last_seen":"2026-04-04T06:36:29.343204Z","times_seen":96356,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"offerimage.com/www/images/c203639f459b6e675afc744dd5393fc6.jpeg","fqdn":"offerimage.com","domain":"offerimage.com","tld":"com"},"ip":{"addr":"172.67.22.216","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:31.632Z","timestamp":1699130731632,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sun, 07 May 2023 00:00:00 GMT","end":"Mon, 06 May 2024 23:59:59 GMT"},"fingerprint":{"sha1":"DB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0","sha256":"34:C5:1C:5B:A8:54:FD:04:12:B5:7D:F2:1C:E0:EA:99:16:9A:0A:83:AD:56:FC:59:BC:A3:27:5E:81:D7:0B:23"}}},"request":{"raw":"GET /www/images/c203639f459b6e675afc744dd5393fc6.jpeg HTTP/1.1\r\nHost: offerimage.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:34 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 10857\r\ncache-control: max-age=86400\r\ncf-bgj: h2pri\r\netag: \"6388849a-2a69\"\r\nexpires: Sun, 05 Nov 2023 05:13:37 GMT\r\nlast-modified: Thu, 01 Dec 2022 10:40:26 GMT\r\ntiming-allow-origin: *\r\ncf-cache-status: HIT\r\nage: 55917\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb393eff8568a-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10857,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\\012- data","md5":"c203639f459b6e675afc744dd5393fc6","sha1":"c83a0142c1a7f6a07c2dd360243197a27f560932","sha256":"64b4e386658d3f5764261f576a4673eb506fcad5e38e69ef085723f8dab72263","sha512":"5e4567854d8239655c82699958cd00e68d24ee7095f4e6e035d5a82423acee3accd55491a426bc223c3fc85add5794e6f9931d1bd50c9cdea1509b746a67122a","ssdeep":"192:3EtsHMFai4Wy9P6ZKvp6rPwTYKZg1TxxBibj+j0KOIk:00MFh4WQ6ZcpUiFCdKbatjk","tlshash":"fd22bfb12232828cc9439a771f824494ce17ec939f3ad3968123b7dc62dc967641b28f","first_seen":"2023-04-09T18:58:42Z","last_seen":"2023-11-08T08:03:43Z","times_seen":526,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/jwplayer.core.controls.js","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.071Z","timestamp":1699130722071,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /js/jw8.9/jwplayer.core.controls.js HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"633a51d3-4408c\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1258\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=9OsYg1OdqBB58BLM%2BC%2BZChU6seVeLVtieBpPDnycX0EILleST3kJlgEP14jMAb3vN8bCwxWh3KWirZ0sutwbHSZiymFa0zU2YDj%2BPQ5jUuFH4ZUsEM873XSpY%2BWjXZ7n\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb344ca35b4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":278668,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.122Z","timestamp":1699130721122,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /streamhd?id=Mjg1MDE=\u0026option=latin HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/5.6.13\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=QsTkIZFNOSWJuexaea%2Ba9xCkG%2BXJ6qJae3IsrOKwON4nHH0Wu5Ocvs%2F9b%2FnDJbYH7uvJdEyG4EpmutcqfoGEoTiicvTuzux%2Fc8P9LT4WF2Um%2BUmqvbUKfFLTnA0Es5TY\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3404eaeb4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10167,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":673,"timings":{"blocked":193,"dns":179,"connect":1,"send":0,"wait":288,"receive":0,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/css/app.css?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.266Z","timestamp":1699130719266,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/css/app.css?v=2.3 HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-22555\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=YUgkirGpBEht9bS7R7emkIXKxQLqvwuJTiJ67NrXZGiixykBKE4g7pAlsnNbGCIo0UrkNlE2yGAE0ANb%2BECaX7lVyHFSF9keXTH%2FRj7drudsELZtjdM5NOU1jfeJ\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3334bb1569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":140629,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0ec6a477de32046ded58986b0c012972","sha1":"ce360c8b1190c99f7316c1a6fc604089839b104e","sha256":"a18679f3856329baa5760744efdb36bcd9074d0ac7fb57392df5ce4908428fb3","sha512":"ad52bbafa399c0eff0824f2b95385fb02733a6487dc8404c498a1dc4ef80ec563a5f808c5ea25120a69eb3be920d2eff2358df6d9c9baa152831a40fef27cbcb","ssdeep":"1536:CKyliHjlYWDjCIzIBDQvxWYdf2aonKAIlwaKwx3Iin9notnwLoTv1+jdCxGPsMok:eliDpiIzIB812aon9cXgC","tlshash":"41d319b95956146ef737c623bda03bc83139f00ae8124fbdf45b7d294b831e514a2b26","first_seen":"2023-04-07T19:33:12Z","last_seen":"2024-12-24T23:42:52.233519Z","times_seen":80,"resource_available":false,"data":null}},"time_used":43,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fvcwqkkqmuv.com/get/1995260?zoneid=1995260\u0026jp=_clefblj4bvztax3fuzjvu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1","fqdn":"fvcwqkkqmuv.com","domain":"fvcwqkkqmuv.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.911Z","timestamp":1699130720911,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Sat, 28 Oct 2023 11:35:09 GMT","end":"Wed, 24 Apr 2024 21:59:00 GMT"},"fingerprint":{"sha1":"F4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D","sha256":"EB:91:E9:89:F6:74:9E:1B:67:48:AE:D7:6F:3F:A8:A9:09:0F:95:F2:5A:39:04:5F:48:19:61:FC:E4:60:38:5F"}}},"request":{"raw":"GET /get/1995260?zoneid=1995260\u0026jp=_clefblj4bvztax3fuzjvu\u0026nojs=0\u0026abvar=0\u0026febuild=1.0.174\u0026t=0\u0026wcks=1\u0026wgl=0\u0026cnvs=1\u0026os=0\u0026ss=1\u0026ls=1\u0026bb=0\u0026plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF\u0026lang=en-US\u0026pf=Linux%20x86_64\u0026cd=24\u0026ix=0\u0026x=1280\u0026y=1024\u0026md=0\u0026afid=3207578974718976\u0026eclog=0\u0026sp=1\u0026im=1 HTTP/1.1\r\nHost: fvcwqkkqmuv.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nvary: Accept-Encoding\r\nx-route-id: config\r\nset-cookie: CHCK=1; Path=/; Expires=Sat, 07 Dec 2024 20:45:20 GMT; HttpOnly; Secure; SameSite=None\nUID=23110415456849def3d23044679595e74265; Path=/; Expires=Sat, 07 Dec 2024 20:45:20 GMT; HttpOnly; Secure; SameSite=None\r\ncontent-encoding: gzip\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4144,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (4478), with no line terminators","md5":"adf01fffc2d33bea054b463c4918d843","sha1":"2c558d7ebdf97543154d972a5ea6101009277803","sha256":"a910f98bf87d46f9db656fc8d70b7fb876e11aec84c8a9457639a4f08fb5f0e3","sha512":"5d2e532d5c142fcb0776d45439034739891bc4bbeb86c74dfcdf09b093b4bcec27c2b7680ab60a31f6779af5ebfc36ad5628fe40cbcaa22afd43c94e3cae3978","ssdeep":"96:8bbaH993U+zaH993U7Psm4pa23iBg3jIpaHip4fFgEC3a:BH9ZUpH9ZU7PSOpaCeQ3a","tlshash":"749161da595818c3b4959d6ae3dbedbf5457135236c2803dea41bd021f3b2538b40ecd","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"if.pelisplay.io/spanish.php?id=Mjg1MDE=\u0026type=[{%2213%22:{%22link%22:%22https://wishembed.pro/e/uvdowdi6kfgk%22}},{%2214%22:{%22link%22:%22https://dood.yt/e/as6xu3jb3f58%22}}]","fqdn":"if.pelisplay.io","domain":"pelisplay.io","tld":"io"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:29.788Z","timestamp":1699130729788,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.io","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 10 Oct 2023 05:51:44 GMT","end":"Mon, 08 Jan 2024 05:51:43 GMT"},"fingerprint":{"sha1":"1D:EB:B5:65:04:74:84:DA:58:FD:D2:77:52:79:AC:65:0B:24:C4:8F","sha256":"66:DF:AD:C6:02:06:43:71:C4:23:97:38:FC:1F:B1:A8:BB:D9:59:5C:9F:43:18:D7:CB:46:B0:6B:B4:28:B2:71"}}},"request":{"raw":"GET /spanish.php?id=Mjg1MDE=\u0026type=[{%2213%22:{%22link%22:%22https://wishembed.pro/e/uvdowdi6kfgk%22}},{%2214%22:{%22link%22:%22https://dood.yt/e/as6xu3jb3f58%22}}] HTTP/1.1\r\nHost: if.pelisplay.io\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:29 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/5.6.13\r\norigin: *\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=4cmYCZldwYBVT2Q29AK3hqAkJ5kzdUAnJY0%2FD8HbO3Qp3zNR%2Fixqh9ooBqC2kAX6B1bBLLnCq9dnIx8x1JWzvZjwGsZZDS%2FDFvVePh07yKwSmwNAqeD8WJc%2FD7mOh4H3Wr8%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb37579e1b4ed-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"b326b5062b2f0e69046810717534cb09","sha1":"5ffe533b830f08a0326348a9160afafc8ada44db","sha256":"b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b","sha512":"9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de","ssdeep":"","tlshash":"5430000000000000000000000000300c00000000000000000000000000000000000000","first_seen":"2023-03-07T01:03:44Z","last_seen":"2026-04-04T06:46:21.329871Z","times_seen":352561,"resource_available":true,"data":null}},"time_used":151,"timings":{"blocked":42,"dns":31,"connect":1,"send":0,"wait":66,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"platform.bidgear.com/async.php?domainid=5786\u0026sizeid=2\u0026zoneid=6858\u0026k=1699130719416","fqdn":"platform.bidgear.com","domain":"bidgear.com","tld":"com"},"ip":{"addr":"104.26.3.107","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.441Z","timestamp":1699130719441,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 01 May 2023 00:00:00 GMT","end":"Tue, 30 Apr 2024 23:59:59 GMT"},"fingerprint":{"sha1":"96:B8:F2:6C:8B:F4:3C:4D:3F:C4:69:A4:B1:28:D0:CB:0A:E6:73:2B","sha256":"8E:33:A6:A8:55:B7:FD:60:51:2F:C8:3B:62:DB:24:47:9D:CE:3D:1F:1D:23:E7:49:65:DB:77:53:DB:00:99:96"}}},"request":{"raw":"GET /async.php?domainid=5786\u0026sizeid=2\u0026zoneid=6858\u0026k=1699130719416 HTTP/1.1\r\nHost: platform.bidgear.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\ncache-control: no-cache, no-store, must-revalidate\r\nexpires: 0\r\npragma: no-cache\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=OCZz17FaQd6dWoar9%2ByBEbXvqhnIsB9%2FntkdKqBdLhajs8jirWzg6CZmSI1Y3lJ4kOFrs4k%2FBoxnQwRaF8rW6S3FZLst6n%2BENunzo%2BjZRfBCJYCrFcWqzP2vi%2FLoV60P2EG6%2Bqou\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3348c3bb4fd-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2740,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, ASCII text, with very long lines (2819), with no line terminators","md5":"988317a8c13a69054a32475659617123","sha1":"ee5d25a3a9356e61497f9aa9949fa5ac468384a4","sha256":"510db4837e77b55e977e26fc86ae8bb3b8eed1b1482ba898497dcbb86dcf10a7","sha512":"297ee263ebbf2c94df6242d738befde8d839ec11346df16eba4e423a5748e7bf34221b0d1652be4fecf0dbac3f1b2f8af5c61b97a409ad3912d3a81f40a91f6d","ssdeep":"","tlshash":"2651a6ae35003232c5032fb22fb975287522f112f80b90355e65d81cafd8bba0861f7c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":106,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":105,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/loadMoreResults.js","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.312Z","timestamp":1699130719312,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/cdn/loadMoreResults.js HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-6c0\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=SDi6z5fWV3KEiW5s%2BsJfuOZu79O38ztX7vMpo8I11fynT0Y%2BFgdMCqfzPijR7Fj%2BLu48zKGRVjrPZoMMhDicb9Pj9ZeXhw%2FTlBTA8VKOtls3gVXIyZaQJ10HHs%2Fc\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336bdd569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1728,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1743), with no line terminators","md5":"fa336df052fe750ce9b7276644bdd0a2","sha1":"a98c4a050b84024ffe352453a251794ef422e6bc","sha256":"3b8c48be3b91ed3a0ea3074b87b7bc0f5f97d7c478685a79a62cc804430dfefa","sha512":"9e90c80b3d7f0323104655f1ca86d1121713860a0801ca32b43cde0c11c136a6f7d9cfdf3cf7397f0b5e99c94e534d735471e175d30adb73d73ac9d725be08b7","ssdeep":"","tlshash":"c231044d782ed3701bfb01e760936b5b3d66ac37c094321449e8c8f197b5dab2477a26","first_seen":"2023-04-07T19:33:11Z","last_seen":"2024-12-24T23:42:52.235046Z","times_seen":68,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"meenetiy.com/?rb=TrpYMJKUPEk8nAzETswGOMK_tNQc-2qo-sowqh0kpUj71NdUFGDeJ_RGE27MVOC7M5uHmxwp75rcqk8aFlQtq3KAk7Jv7LIpQTA8ORvIIXVtxdV109U4Cmp3JxK9EiWyYRLZdj0WhvZk0gmG1hogZliKn1Zoexl2bEPlJl5eH7nBC15BlMEqF_58kzJ9mDU_U-g8ufRXUp3rJYU02fwIasUcQp8%3D\u0026request_ab2=0\u0026zoneid=6169305\u0026js_build=iclick-v1.622.1\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1092\u0026wih=614\u0026wiw=1092\u0026wfc=2\u0026pl=https%3A%2F%2Fpelisplay.info%2Fstreamhd%3Fid%3DMjg1MDE%3D%26option%3Dlatin\u0026drf=https%3A%2F%2Fcuevana3.ch%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=1\u0026nw=1\u0026tb=false\u0026wgl=\u0026js_build=iclick-v1.622.1\u0026bs=374f4b9a-de10-42ed-8e89-d32687465071\u0026userId=afb77b39e395429dbff87a971902674d\u0026m=link","fqdn":"meenetiy.com","domain":"meenetiy.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.779Z","timestamp":1699130722779,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"meenetiy.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 Sep 2023 05:31:58 GMT","end":"Thu, 30 Nov 2023 05:31:57 GMT"},"fingerprint":{"sha1":"88:EA:93:92:5B:B8:A3:6D:8B:93:4B:37:6F:48:25:B1:2E:52:A7:E5","sha256":"1E:86:67:CB:EF:D5:0E:AA:F6:AC:63:F6:D7:2A:28:4B:99:B4:E2:66:70:7F:56:7A:4E:25:32:9F:F8:7B:B5:B9"}}},"request":{"raw":"GET /?rb=TrpYMJKUPEk8nAzETswGOMK_tNQc-2qo-sowqh0kpUj71NdUFGDeJ_RGE27MVOC7M5uHmxwp75rcqk8aFlQtq3KAk7Jv7LIpQTA8ORvIIXVtxdV109U4Cmp3JxK9EiWyYRLZdj0WhvZk0gmG1hogZliKn1Zoexl2bEPlJl5eH7nBC15BlMEqF_58kzJ9mDU_U-g8ufRXUp3rJYU02fwIasUcQp8%3D\u0026request_ab2=0\u0026zoneid=6169305\u0026js_build=iclick-v1.622.1\u0026fs=0\u0026cf=0\u0026sw=1280\u0026sh=1024\u0026sah=1024\u0026wx=0\u0026wy=0\u0026ww=1280\u0026wh=1024\u0026cw=1092\u0026wih=614\u0026wiw=1092\u0026wfc=2\u0026pl=https%3A%2F%2Fpelisplay.info%2Fstreamhd%3Fid%3DMjg1MDE%3D%26option%3Dlatin\u0026drf=https%3A%2F%2Fcuevana3.ch%2F\u0026np=1\u0026pt=0\u0026nb=1\u0026ng=1\u0026ix=1\u0026nw=1\u0026tb=false\u0026wgl=\u0026js_build=iclick-v1.622.1\u0026bs=374f4b9a-de10-42ed-8e89-d32687465071\u0026userId=afb77b39e395429dbff87a971902674d\u0026m=link HTTP/1.1\r\nHost: meenetiy.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://pelisplay.info\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nCookie: OAID=38edb153b07f49b480f149cca0be58d1; oaidts=1699130722\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/json\r\nx-trace-id: b532dca07e213cd0151b2f32e43d7262\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\naccess-control-allow-origin: https://pelisplay.info\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nset-cookie: OAID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\noaidts=1699130722; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\nsyncedCookie=true; expires=Sat, 11 Nov 2023 20:45:22 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1734,"size_decoded":0,"mime_type":"application/json","magic":"troff or preprocessor input, ASCII text, with very long lines (1754), with no line terminators","md5":"a5187495841e1398a5cbb7f79baa0082","sha1":"d11c3cba907d1271532d05146f0b222c3cf564a8","sha256":"f1974dbc92024fd779ee4c43f8313bcb2b9b092cbb3fcc0c78056a74be4d8fd8","sha512":"5a53b1c71ad161bebee739a6176e60796883bc402a6f5edb6328374cf494ab2b0f7dbfe3b37b796aef20ff777d9b237934fcaf7cd82d8fdd0cc5dbdd043aeeff","ssdeep":"","tlshash":"e7310baaeb0ec6f7d804c18f5f60cc2929501523dd758d06911dbee3123a3fd10691e0","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":167,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":167,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"meenetiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.movcloud.net/v1/count/movie/es/episode/28501","fqdn":"api.movcloud.net","domain":"movcloud.net","tld":"net"},"ip":{"addr":"172.67.210.193","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.759Z","timestamp":1699130721759,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"movcloud.net","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Oct 2023 00:35:10 GMT","end":"Fri, 19 Jan 2024 00:35:09 GMT"},"fingerprint":{"sha1":"E4:E5:40:6B:B5:4B:6B:62:CF:BD:D1:91:F0:19:E5:5E:0B:10:F1:A9","sha256":"38:C8:7B:F2:6A:D6:94:35:AF:5C:E7:EF:07:F9:03:AC:7F:E9:D9:9E:90:F1:FC:8D:8C:C6:0B:62:40:2A:A7:D7"}}},"request":{"raw":"GET /v1/count/movie/es/episode/28501 HTTP/1.1\r\nHost: api.movcloud.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 0\r\nx-dns-prefetch-control: off\r\nstrict-transport-security: max-age=15552000; includeSubDomains\r\nx-download-options: noopen\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: Origin\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=u4KAuqXGQ4Efj2fK%2B3Px3JOKF7VPkHzMGvsNjXPAbfQUIaH98jOOy46wAel9wiVGNj0yA4X%2Fu5EToXGQbdfN7h9Y1Or2QQFKuLPWY68C2j0j%2BNOkG%2BDJEjZ6LeE%2FSnCUhHJp\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb343791db4fa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":226,"timings":{"blocked":66,"dns":11,"connect":1,"send":0,"wait":67,"receive":20,"ssl":54},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/js/jw8.9/provider.hlsjs.js","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.087Z","timestamp":1699130722087,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /js/jw8.9/provider.hlsjs.js HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"633a51d3-4c715\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1258\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=6W78M7gxNVO37gZA%2FvOL534KdlYCuxogrfzfiVIIARwfEAh6HgA%2F%2Fs6J1Kuy0wKYP3s81GKD2ZJwvehqbYBcBLF7hgoD7V61rL13K6lvFKJEVFUfJXFQPtraG86uOw7d\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb344da36b4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":313109,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxq9RY3_tDAnMlJobgHYp1mjPdCGrhD_D5bvXHBIEUISeua_HCWjbHiRJfwgEhYXgy3wFxpwQ\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1828884566%3A1699130722610769\u0026theme=glif","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:22.785Z","timestamp":1699130722785,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxq9RY3_tDAnMlJobgHYp1mjPdCGrhD_D5bvXHBIEUISeua_HCWjbHiRJfwgEhYXgy3wFxpwQ\u0026passive=true\u0026service=mail\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1828884566%3A1699130722610769\u0026theme=glif HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://cuevana3.ch/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-9mlP5l2-XDzxqU1RJVBMKQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f","fqdn":"fleraprt.com","domain":"fleraprt.com","tld":"com"},"ip":{"addr":"139.45.195.254","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:21.884Z","timestamp":1699130721884,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"fleraprt.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Mon, 09 Jan 2023 00:00:00 GMT","end":"Sun, 14 Jan 2024 23:59:59 GMT"},"fingerprint":{"sha1":"A4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9","sha256":"1E:28:77:C9:52:58:8A:A0:51:FE:84:59:28:A0:0C:60:EB:46:B0:7C:5D:3C:F4:AB:A3:77:94:DA:9E:46:9C:46"}}},"request":{"raw":"POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1\r\nHost: fleraprt.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 1353\r\nOrigin: https://cuevana3.ch\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 04 Nov 2023 20:45:34 GMT\r\nContent-Type: application/json; charset=utf-8\r\nContent-Length: 12\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://cuevana3.ch\r\nAccess-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE\r\nAccess-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match\r\nAccess-Control-Allow-Credentials: true\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"6949f52318584a4b51c719a9b84a7287","sha1":"9fbd870c6afd4bdd6fbbd87f52df2c81dd23e905","sha256":"72603096ec3515dbc615ab8837fd1b15e91ee827bc7af41d71c9882b08699375","sha512":"e6fe6933cec9b100c83def2bfd6974540afd67910b75ff3e9d269ab1a5d091e922830656b10e6cdd3bcec7257881a2c6cd0886ed12ecacceb9d89e786f5330de","ssdeep":"","tlshash":"de600000000300c33cc300c000c00030fc000c00000f30000c0c0030c00c0c0c00c000","first_seen":"2023-04-06T16:49:23Z","last_seen":"2025-04-06T22:35:34.412901Z","times_seen":5757,"resource_available":false,"data":null}},"time_used":688,"timings":{"blocked":333,"dns":13,"connect":33,"send":0,"wait":38,"receive":1,"ssl":250},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"fleraprt.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"nandweandthe.org/popunder.gif","fqdn":"nandweandthe.org","domain":"nandweandthe.org","tld":"org"},"ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:23.322Z","timestamp":1699130723322,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nandweandthe.org","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Oct 2023 06:45:49 GMT","end":"Sun, 28 Jan 2024 06:45:48 GMT"},"fingerprint":{"sha1":"1F:B6:15:88:D9:CB:F8:82:C6:0C:AE:98:CF:A4:E2:D8:06:4E:0D:6D","sha256":"B8:01:DE:85:2B:65:C6:B5:37:64:91:0A:F7:91:37:EF:98:07:84:8C:76:CA:46:E7:54:71:E3:23:E4:02:DE:6D"}}},"request":{"raw":"GET /popunder.gif HTTP/1.1\r\nHost: nandweandthe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: image/gif\r\naccess-control-allow-origin: *\r\npragma: public\r\ncache-control: public, max-age=604800, immutable\r\ncf-cache-status: HIT\r\nage: 10604\r\nlast-modified: Sat, 04 Nov 2023 17:48:39 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=sd%2BqbkFSs6e%2FckgXQpGev0ccnwOEW8Ku%2FOwqiI2z4250HRb7k8B5E8JTCqfUTuJ%2BBKPNC3hRXdXZh996DSr9LvV6jSXgJneljqmUBOgo63IUgDrwCprG%2Fq%2FnozWouX40i4EB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb34cce2e568e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"28d6814f309ea289f847c69cf91194c6","sha1":"0f4e929dd5bb2564f7ab9c76338e04e292a42ace","sha256":"8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015","sha512":"1d68b92e8d822fe82dc7563edd7b37f3418a02a89f1a9f0454cca664c2fc2565235e0d85540ff9be0b20175be3f5b7b4eae1175067465d5cca13486aab4c582c","ssdeep":"","tlshash":"be800003c280c002c2a2c0308e08ca802a8ab0a08a28030fb0ec3baafc2a2a20c00000","first_seen":"2023-04-05T07:36:27Z","last_seen":"2026-04-04T06:48:37.294853Z","times_seen":41834,"resource_available":true,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hugorelease.com/bf/fd/0c/bffd0ccd70480e9ae2e30278718389bf.js","fqdn":"hugorelease.com","domain":"hugorelease.com","tld":"com"},"ip":{"addr":"192.243.59.20","port":443,"asn":39572,"as":"DataWeb Global Group B.V.","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.819Z","timestamp":1699130719819,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PKCS1-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.hugorelease.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Oct 2023 06:38:08 GMT","end":"Tue, 02 Jan 2024 06:38:07 GMT"},"fingerprint":{"sha1":"FA:A5:9E:2C:26:B3:C5:79:D8:A2:63:43:5E:2F:9F:BA:E6:21:A4:75","sha256":"FE:EC:A4:9C:58:F5:EF:35:E4:A2:91:2D:97:9F:D8:EC:8F:1B:8F:87:38:77:28:F7:40:3B:27:A5:58:5E:26:2A"}}},"request":{"raw":"GET /bf/fd/0c/bffd0ccd70480e9ae2e30278718389bf.js HTTP/1.1\r\nHost: hugorelease.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.5\r\nDate: Sat, 04 Nov 2023 20:45:20 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nP3P: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\nAccess-Control-Allow-Origin: *\r\nAccept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA\r\nSet-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2660-1=1; expires=Thu, 09 Nov 2023 20:45:20 GMT; secure; SameSite=None\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nX-Request-ID: 899db3f5a9d569c55f5cad37298dcad3\r\nStrict-Transport-Security: max-age=0; includeSubdomains\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":59072,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (59071)","md5":"35b1580dbc1dcbe7d9df2b1e311ab528","sha1":"c53cf3d2e1381121a5cee93d06719c9971b69aa2","sha256":"ce4e0eff90de8dd17c57a616e922db67854763f98d776e0ae488ac992d60324d","sha512":"56a4dee18863dd90f4a09b916c9ee8850e0671af257d97cd2ed6e7e12fc528d852c16814b6ce1542f947842c745b4debb11ccb110f4c57319fbd5c81ef157ddc","ssdeep":"768:VLSD/HsaS8UCMDlWJMUKfwxf7MP47Lyq5Z0Db5IONlhknpMAG2vUuUua1:VLSD/HR2DlWJ++7l39M43G2vlU31","tlshash":"e943b6cc7f547c65529774b3731f9287e42b4d19da88c4ddf223aca4292932af4327a8","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1462,"timings":{"blocked":610,"dns":263,"connect":113,"send":0,"wait":119,"receive":115,"ssl":238},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"hugorelease.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/img/latino.svg","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.283Z","timestamp":1699130719283,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/img/latino.svg HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\netag: W/\"61d24c07-29c1\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 279\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=p6rywdE69keblSCG4RW8NR8h8sS9Sf7fFIys9zdjbNR2QHiL6OlOn0EoC5Y01ZRpaF9trH48N4wklZfGB6qj%2BqW3YgpXwAlSjkmXzBHAhvFl9ZnUvGSqj1KQp6YK\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3334bbb569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10689,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image\\012- , ASCII text, with very long lines (10689), with no line terminators","md5":"02a847913a6d74d02541a32b35eaa750","sha1":"6cce62b35565de3b2a396ab1511975e4f6bb8ab3","sha256":"0b87c1ab176858331072bed76cfd84120a2119fde4e68920617d8580a841b809","sha512":"923f6f700dab9ac23942329cd3775e5c775a9fe3025f119dbd30aa3a6ea70368fa1f8c0d8d89600914e85fece73100a1950d379a69c2179b7baa9294ed1e78e0","ssdeep":"192:yDmAHcXLphVBvvHHX7qWUBlpK11EjKJoCfuj43yHSCeNVeAV9R8:/BnBvvviMu1+NVNfm","tlshash":"132201fe22304345e455c72987d9faa9763d91dab4e388c0bf720d8a4c2596ba7bd480","first_seen":"2023-05-03T17:34:30Z","last_seen":"2026-03-28T00:43:29.43298Z","times_seen":126,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/css/style.css?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.270Z","timestamp":1699130719270,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/css/style.css?v=2.3 HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: text/css\r\nlast-modified: Wed, 15 Mar 2023 05:41:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"64115a92-11b9\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=i9WGg3GJJgVebqEg9RsqoV03I8%2FiPYOjVGVhxN27nc2x7EEgEVgJKYZKsD0171s9Mtu8biGhT50OYk7TakIUoWdH%2F%2FkQp6UIDtf%2Fl3wzO%2BTj06O65fVUAhzcW4g3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3334bb3569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4537,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (4635), with no line terminators","md5":"34d2346f782821de361badeaf3b5f689","sha1":"203f00b48beff0ef9f9c2e5cf57572a021459875","sha256":"b7b45fe0276d621f17e809de3e9f83df154a19c61ffb31583a86e2209afd1291","sha512":"37038e195478f8a2b704506029054d2a5d233a3c47f012637a231cac28250e6e7d3658fd644c1d98b22d0b703d6befd3790336f603d3cbda109f58b8d944d372","ssdeep":"48:qauBvTS2YSOdw4Z+9rwxLUh1iLxzVxIRJ48E9FFuIiDIUZyDi4q2V8XjerR2xh8C:87Dvh1mxPo+8yF4uiLjerqot8TOC3","tlshash":"aba11e636a410068aa23ca7c6ee723be722ee010e317873cb6527525478b6863572bc5","first_seen":"2023-04-07T19:33:11Z","last_seen":"2024-12-24T23:42:52.244281Z","times_seen":60,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"rndskittytor.com/400/6554748","fqdn":"rndskittytor.com","domain":"rndskittytor.com","tld":"com"},"ip":{"addr":"139.45.197.238","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.916Z","timestamp":1699130720916,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"rndskittytor.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 11 Sep 2023 14:17:26 GMT","end":"Sun, 10 Dec 2023 14:17:25 GMT"},"fingerprint":{"sha1":"AC:9B:9A:F0:9C:CB:23:E1:7C:C9:2E:F8:51:13:30:5E:E9:82:25:70","sha256":"CF:23:C6:09:E7:7E:4A:03:60:0F:9C:2D:64:7B:25:9D:FB:9F:73:C0:FE:79:E3:02:75:3A:99:2F:99:C9:D1:C1"}}},"request":{"raw":"GET /400/6554748 HTTP/1.1\r\nHost: rndskittytor.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 97c154051fff3033dcd2a5d83270f85a\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\ncache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0\r\nvary: Origin\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Link\r\naccess-control-allow-credentials: true\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\nset-cookie: OAID=62db62d64fea404d8e5e61de943608ef; expires=Sun, 03 Nov 2024 20:45:21 GMT; path=/; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82030,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"24f1e17acbfba4a89fb765e04eaa45aa","sha1":"1c3cd009dafdc991d9f811835642b8a93b0bf3d7","sha256":"d1ddad4cac079e1b1b888f424363b65ca17e465771edbb943ec57e70c3995999","sha512":"7ed2d6479e8d86c5f09277983e97965d8d69751a41c66ca39a67dc4b9dc47126e197c2faf707bd10d9e58cdc869bd52c1cd5176fea693bd8616eb6bda3ffa45a","ssdeep":"1536:CDlqP7JqOO3hJ5zkq88tunUEQwpO+L1YJAL+U:JlwO1qA+U","tlshash":"348384a5f16674ea4222f87309af225b977a6664f82f8570a03db251373011ff16f8dc","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":443,"timings":{"blocked":184,"dns":36,"connect":33,"send":0,"wait":69,"receive":0,"ssl":105},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"rndskittytor.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxyOnjq8wSFsiGI7G7ZIfUUoc9SPkwrmeDlEiKlOOKJDNP1_HHALY0JW9UdMphTfnUo00TZ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1107673920%3A1699130724137255\u0026theme=glif","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.109","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:24.162Z","timestamp":1699130724162,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 16 Oct 2023 08:02:35 GMT","end":"Mon, 08 Jan 2024 08:02:34 GMT"},"fingerprint":{"sha1":"FD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F","sha256":"BF:65:26:40:A4:1B:39:0F:68:D2:7F:DA:8A:9B:03:1D:67:EA:6F:78:A6:5A:3C:C5:57:50:DA:38:E4:6B:D6:A5"}}},"request":{"raw":"GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico\u0026hl=en\u0026ifkv=AVQVeyxyOnjq8wSFsiGI7G7ZIfUUoc9SPkwrmeDlEiKlOOKJDNP1_HHALY0JW9UdMphTfnUo00TZ\u0026passive=true\u0026service=youtube\u0026uilel=3\u0026flowName=GlifWebSignIn\u0026flowEntry=ServiceLogin\u0026dsh=S1107673920%3A1699130724137255\u0026theme=glif HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 Forbidden\r\ncontent-type: text/html; charset=utf-8\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Sat, 04 Nov 2023 20:45:24 GMT\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-x0yIHzu7nG-dEpk_ynkflg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist\r\nreport-to: {\"group\":\"AccountsSignInUi\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi\"}]}\r\npermissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"AccountsSignInUi\"\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":31,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"almstda.tv/5/5737819","fqdn":"almstda.tv","domain":"almstda.tv","tld":"tv"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.820Z","timestamp":1699130719820,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"almstda.tv","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 09 Oct 2023 05:44:08 GMT","end":"Sun, 07 Jan 2024 05:44:07 GMT"},"fingerprint":{"sha1":"88:BB:5E:54:95:58:44:3D:8A:15:8E:A1:FD:19:36:CE:89:FC:D1:6A","sha256":"DB:2C:11:CB:01:A6:77:E4:9F:18:FF:95:39:E5:BC:FB:79:B4:C2:FD:37:42:90:41:95:5D:A6:64:32:4A:FA:67"}}},"request":{"raw":"GET /5/5737819 HTTP/1.1\r\nHost: almstda.tv\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: 4adc9923e34b5ecccd5a80264b96a227\r\nlink: \u003chttps://my.rtmark.net\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://propeller-tracking.com\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://e2ertt.com\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://sr7pv7n5x.com\u003e; rel=\"preconnect dns-prefetch\"\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\nset-cookie: OAID=afb77b39e395429dbff87a971902674d; expires=Sun, 03 Nov 2024 20:45:20 GMT; path=/; secure; SameSite=None\noaidts=1699130720; expires=Sun, 03 Nov 2024 20:45:20 GMT; path=/; secure; SameSite=None\nsyncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":71185,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"8fd5a4dfde3b4ee1e14801a2381f2add","sha1":"b002143790aa9eaf91d3dfac15576d14d1f843c2","sha256":"10f95ddf64c1efe29d1a5f2fa08c2f33ac80dc46d942b887548afa0699c1c92a","sha512":"87c6b433236450a78da249ac039d039d3bafd41a7a8b6cc92e85edd5571b787130729c139ecfbb961b1f380477bff9755f1e4725ec3803a3d238be4aece0efc8","ssdeep":"1536:JKdYTTrm68TQ36vjAwHdrDBo7LycVAXhLrwghdKctPlXBBgg5F2:kdYrm6h36veo/dBXe","tlshash":"0063d59df2a5703592a721b9613fa219b33768292c494410b52ed8c03e3de4ea377f6d","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":856,"timings":{"blocked":390,"dns":21,"connect":44,"send":0,"wait":69,"receive":0,"ssl":327},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"meenetiy.com/5/6169305","fqdn":"meenetiy.com","domain":"meenetiy.com","tld":"com"},"ip":{"addr":"139.45.197.245","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.174Z","timestamp":1699130722174,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"meenetiy.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Fri, 01 Sep 2023 05:31:58 GMT","end":"Thu, 30 Nov 2023 05:31:57 GMT"},"fingerprint":{"sha1":"88:EA:93:92:5B:B8:A3:6D:8B:93:4B:37:6F:48:25:B1:2E:52:A7:E5","sha256":"1E:86:67:CB:EF:D5:0E:AA:F6:AC:63:F6:D7:2A:28:4B:99:B4:E2:66:70:7F:56:7A:4E:25:32:9F:F8:7B:B5:B9"}}},"request":{"raw":"GET /5/6169305 HTTP/1.1\r\nHost: meenetiy.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript\r\nx-trace-id: e8386d7bb638784185789381d1dc9934\r\nlink: \u003chttps://my.rtmark.net\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://propeller-tracking.com\u003e; rel=\"preconnect dns-prefetch\",\u003chttps://sr7pv7n5x.com\u003e; rel=\"preconnect dns-prefetch\"\r\naccept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\nset-cookie: OAID=38edb153b07f49b480f149cca0be58d1; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\noaidts=1699130722; expires=Sun, 03 Nov 2024 20:45:22 GMT; path=/; secure; SameSite=None\nsyncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":71189,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"b2bcc6e59751b0c41542e525d743a4e0","sha1":"d835a2cfe27f6a20c63ae816a571129921cf6e0b","sha256":"36304071f77a6c48106d1ab17153d53a1ae27a5e8b2367d26396848d72b6b24c","sha512":"18d9125c6b15b21d74edb387f1c459ecd19bf396c6a7f3184db3265b840f7b44b2fabf1dce0aa494e7e4130ed9fb1190334dd3c345241b44b722ccf671891905","ssdeep":"1536:JKdYTTrm68TQ36vjAwHdrDBo7LycVAXhLrwghdKctPlXBBgg5Y:kdYrm6h36veo/dBXq","tlshash":"1563e58df2a5703592a721b9613fa219b33768292c494410b52eddc03e3de4ea377f6d","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":true,"data":null}},"time_used":598,"timings":{"blocked":221,"dns":37,"connect":33,"send":0,"wait":69,"receive":0,"ssl":234},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"meenetiy.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dweatherbe.org/dW9mZWMUDQUIXBRSBEMWBwNbQFEzSlQjB0ZYEgdXB18SXARMVgxLABkAEwEFBwAIEU0bChJAUTMoKFdWHT0MKzY0Pl4CJzAiLic7BiQiCRMjCxEwMTctLxU7IAsyKCc7AjA2BCMlVBUsOgg8EjlEWyMrJDcnMjQTFgsOMwExGF4NJx0qKiEaICAkDgQ0JgogKCIEBRwyRAggPSANKDMnOjMmMz81MRcsAjEZNTIhIBklPgIqOyUePCU+KTQKIg0lBTA0QCMkCVowCz4gMC0pIxQ0GQQEIjQ4LSQdOS8MIRIhIgQ0VAAnJQUwNycpIwlTEgsRKCwkKUsjFTMIMAAhHCE3PSIzKgItNjM3CidRNBg8ADYyIiQnFBImKCM5Jy40CQk0NyADNj0MAidTEjoDEipTBRUKDQVSNxA2FykSBDoMOwFTNxwFMw","fqdn":"dweatherbe.org","domain":"dweatherbe.org","tld":"org"},"ip":{"addr":"108.157.214.24","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.613Z","timestamp":1699130722613,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"dweatherbe.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Sun, 22 Oct 2023 00:00:00 GMT","end":"Tue, 19 Nov 2024 23:59:59 GMT"},"fingerprint":{"sha1":"B9:18:AC:1F:87:E4:2C:E9:36:35:FF:E7:F8:8F:F7:77:F0:AB:4C:4A","sha256":"50:E5:D8:5C:74:BC:BB:FD:C9:EC:F8:CB:E7:31:E6:48:4D:16:4E:C9:56:2D:FA:E7:02:D5:38:25:45:DD:BE:9A"}}},"request":{"raw":"GET /dW9mZWMUDQUIXBRSBEMWBwNbQFEzSlQjB0ZYEgdXB18SXARMVgxLABkAEwEFBwAIEU0bChJAUTMoKFdWHT0MKzY0Pl4CJzAiLic7BiQiCRMjCxEwMTctLxU7IAsyKCc7AjA2BCMlVBUsOgg8EjlEWyMrJDcnMjQTFgsOMwExGF4NJx0qKiEaICAkDgQ0JgogKCIEBRwyRAggPSANKDMnOjMmMz81MRcsAjEZNTIhIBklPgIqOyUePCU+KTQKIg0lBTA0QCMkCVowCz4gMC0pIxQ0GQQEIjQ4LSQdOS8MIRIhIgQ0VAAnJQUwNycpIwlTEgsRKCwkKUsjFTMIMAAhHCE3PSIzKgItNjM3CidRNBg8ADYyIiQnFBImKCM5Jy40CQk0NyADNj0MAidTEjoDEipTBRUKDQVSNxA2FykSBDoMOwFTNxwFMw HTTP/1.1\r\nHost: dweatherbe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html\r\ncontent-length: 1184\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\nserver: openresty/1.17.8.2\r\ncache-control: no-store, no-cache, must-revalidate, no-transform\r\npragma: no-cache\r\np3p: CP=\"NID DSP ALL COR\"\r\ncontent-encoding: gzip\r\naccept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 05844663035089f465172d861220e698.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN56-P1\r\nx-amz-cf-id: N4xsr6vQGtRg76VzFH4EFZ5ZG7RalIXTbUvqnK2ysA3cgp9Yu8RCKw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3030,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (3056), with no line terminators","md5":"9c121cae543baa73d918ee8d66d390bd","sha1":"3bf8de86f4895ec7704c401a3f15e7809f646e68","sha256":"6621f2ec1548ed3a7345172cbf7ffeee3398c4c97934c2724f02b8c9a144afb8","sha512":"5cfc2689f7ab612c8ecd546e2d1ff6b83fb3a3d84015a061b6ecf96723df9d4951e83961afa4845e3c10cf91d6db535c5b7dcff6b90625629d0505a24435d534","ssdeep":"","tlshash":"9a51e38d34f36082c2b27025553b785afa288a90574ccb58877d96bcbc715ee6317f4c","first_seen":"2023-11-04T21:45:49Z","last_seen":"2023-11-04T21:45:49Z","times_seen":1,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":130,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"pelisplay.info/player/css/main.css?v=1.6","fqdn":"pelisplay.info","domain":"pelisplay.info","tld":"info"},"ip":{"addr":"172.67.68.54","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:21.748Z","timestamp":1699130721748,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"pelisplay.info","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 18 Oct 2023 01:47:30 GMT","end":"Tue, 16 Jan 2024 02:47:26 GMT"},"fingerprint":{"sha1":"90:0E:B3:39:17:33:97:8F:72:2E:09:C2:A2:B4:0F:30:E5:B7:C4:D4","sha256":"63:1F:32:73:FF:3F:EB:C0:1A:59:71:47:63:D2:F4:B2:53:0C:DD:72:3A:A1:62:D0:93:CE:4C:79:E7:A5:EA:42"}}},"request":{"raw":"GET /player/css/main.css?v=1.6 HTTP/1.1\r\nHost: pelisplay.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:21 GMT\r\ncontent-type: text/css\r\nlast-modified: Mon, 03 Oct 2022 03:06:59 GMT\r\nvary: Accept-Encoding\r\netag: W/\"633a51d3-761\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 1257\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=U4GO92YxGM95aHeER6B6M5Tic%2ByN70hdyNtsaUN24VnLObqd4BuO2E8pB7SWKYCUmltrEhBFMWVJ06hb7znNTAzdXNHi8r8IZweV3idE7MY7Pd9nfT9qg6dzvq7AInq0\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb342e8b6b4fa-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1889,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1990), with no line terminators","md5":"7a88db092936fea3076c74d060284245","sha1":"331b5551a9a7365457a64959f6e5985fc99a293b","sha256":"0930f15aa9aba32f117625dbec16d6342fdcc0a445a035b76de790d7e35eb697","sha512":"66fd11af16337703e7021d6ff28c6e09206ec8880a3e8bccbb61a186bee2c831240df8d7995e9801f3019273497b3baed4d0709ff0f6d936ca45cac4670a45be","ssdeep":"","tlshash":"aa41db5a3e6311bda0229fe4dff713b95239b51617334878bf4473e7874e08401b9aaa","first_seen":"2023-04-07T19:33:12Z","last_seen":"2025-01-19T23:42:52.767677Z","times_seen":243,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/cdn/bct-public.js?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.316Z","timestamp":1699130719316,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/cdn/bct-public.js?v=2.3 HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-b47b\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 2629\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=eN1zXNw1aOQBngE9KqlhARiFgtexamrJOpZXX7DqcgQThdSgKgh8yV5PmxEJ0Lxnr9I35vU36Pyp9IwixJeYPiTcF2Q%2B2ahWt56cpqKVvtUezINbR0xPguvja3vN\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336be0569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":46203,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"nandweandthe.org/popunder.gif","fqdn":"nandweandthe.org","domain":"nandweandthe.org","tld":"org"},"ip":{"addr":"104.21.64.60","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:23.326Z","timestamp":1699130723326,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"nandweandthe.org","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Oct 2023 06:45:49 GMT","end":"Sun, 28 Jan 2024 06:45:48 GMT"},"fingerprint":{"sha1":"1F:B6:15:88:D9:CB:F8:82:C6:0C:AE:98:CF:A4:E2:D8:06:4E:0D:6D","sha256":"B8:01:DE:85:2B:65:C6:B5:37:64:91:0A:F7:91:37:EF:98:07:84:8C:76:CA:46:E7:54:71:E3:23:E4:02:DE:6D"}}},"request":{"raw":"GET /popunder.gif HTTP/1.1\r\nHost: nandweandthe.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:23 GMT\r\ncontent-type: image/gif\r\naccess-control-allow-origin: *\r\npragma: public\r\ncache-control: public, max-age=604800, immutable\r\ncf-cache-status: HIT\r\nage: 10604\r\nlast-modified: Sat, 04 Nov 2023 17:48:39 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8jSDcpt5HFrJno7FJmldjslBGLpENujCSl8KFGE5QYSX9UF02yTzZ4%2Bl0r27R3PgM1AaWgU0AupuYUz1XpsjMDz7pJEp5Ij6LSXnJhVdjHTTHmP%2BB2pGgXBH9A%2Bwnq%2FKnRg6\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb34cce42568e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"28d6814f309ea289f847c69cf91194c6","sha1":"0f4e929dd5bb2564f7ab9c76338e04e292a42ace","sha256":"8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015","sha512":"1d68b92e8d822fe82dc7563edd7b37f3418a02a89f1a9f0454cca664c2fc2565235e0d85540ff9be0b20175be3f5b7b4eae1175067465d5cca13486aab4c582c","ssdeep":"","tlshash":"be800003c280c002c2a2c0308e08ca802a8ab0a08a28030fb0ec3baafc2a2a20c00000","first_seen":"2023-04-05T07:36:27Z","last_seen":"2026-04-04T06:48:37.294853Z","times_seen":41834,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cuevana3.ch/static/js/hamfunction.js?v=2.3","fqdn":"cuevana3.ch","domain":"cuevana3.ch","tld":"ch"},"ip":{"addr":"104.26.6.217","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.309Z","timestamp":1699130719309,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cuevana3.ch","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 20 Sep 2023 04:24:56 GMT","end":"Tue, 19 Dec 2023 04:24:55 GMT"},"fingerprint":{"sha1":"B0:C7:58:49:EF:D1:B7:78:84:66:C2:88:C8:39:92:E9:64:6A:86:30","sha256":"85:D8:D5:7F:89:3D:93:64:09:8C:80:F0:DE:A1:3D:B9:68:FE:82:E1:7A:6C:0E:33:37:09:1A:D1:3B:38:D0:8A"}}},"request":{"raw":"GET /static/js/hamfunction.js?v=2.3 HTTP/1.1\r\nHost: cuevana3.ch\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/3325/siniestro\r\nCookie: gogoanime=567r687ss5t7jr2v6hpussru05\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:19 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 03 Jan 2022 01:06:15 GMT\r\nvary: Accept-Encoding\r\netag: W/\"61d24c07-4e9\"\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 3011\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=kOFoaX%2FuMnH5WEH3aqmb%2FZBPr4k3xIUTLT%2BROe1%2BDR3DKdyozuFP5kHtXVUM%2FFRwDw%2BikV0f6psowD1Wxlwx5aUfxXWNdF46YQNfttOMIGBxE7hLHm5hthH6dxDg\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 820fb3336bdb569c-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1257,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (1301), with no line terminators","md5":"8afa872bc385652d78059fbc182dcb0c","sha1":"e08b40041efce59964cd1bf0fbee120607bd1817","sha256":"1c3590e71ef32e319396fd5798fcd6ecc63eaea61401fadf7cade79e7c0ad916","sha512":"3794366220a66ee1b56ef37234caf0b2126b71b855091ce352d1ccc9e66ef8e8e18ecd5802ddcadc8c0e534bccab1fb8c88d392ed2f7a62f5c06398ae25aaaea","ssdeep":"","tlshash":"00211f1e3159493392372febcc3f02802a28768a40a48690fc4d84c7df59819ea62b5f","first_seen":"2023-04-07T19:33:12Z","last_seen":"2024-12-24T23:42:52.241147Z","times_seen":45,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"friendshipmale.com/sfp.js","fqdn":"friendshipmale.com","domain":"friendshipmale.com","tld":"com"},"ip":{"addr":"172.64.98.2","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.749Z","timestamp":1699130720749,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Sat, 18 Feb 2023 00:00:00 GMT","end":"Sat, 17 Feb 2024 23:59:59 GMT"},"fingerprint":{"sha1":"08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37","sha256":"82:4E:6A:8D:E6:9B:EA:74:3D:E2:A4:3F:17:C0:E9:50:1B:15:F3:8F:64:56:CD:91:82:2E:74:C0:A3:75:C8:1A"}}},"request":{"raw":"GET /sfp.js HTTP/1.1\r\nHost: friendshipmale.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\np3p: CP=\"IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\"\r\naccess-control-allow-origin: *\r\nexpires: Thu, 01 Jan 1970 00:00:01 GMT\r\ncache-control: max-age=14400\r\nx-request-id: 76762ea6d4339a3de9313d7815d1acda\r\nstrict-transport-security: max-age=0; includeSubdomains\r\ncf-cache-status: EXPIRED\r\nlast-modified: Sat, 04 Nov 2023 20:45:20 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Dr75l0BFjHgW8ykjVGrOzcfa5ScpwHhG0aQTqnGkpU3ZodX4kabmecTHXZAObsOOs%2FkOLsHIzF5I%2FRmhYP4xGVzF88N1M18mVjFuwp%2FhaD0JGFwI6jBwpe01SI8WD2IZA%2BycWl8%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb33d79606400-LHR\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":85471,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":357,"timings":{"blocked":107,"dns":4,"connect":30,"send":0,"wait":139,"receive":0,"ssl":72},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lyricsgrand.com/pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2110\u0026rd=2110\u0026fd=868\u0026bv=23.11.v.1\u0026tmpl=70","fqdn":"lyricsgrand.com","domain":"lyricsgrand.com","tld":"com"},"ip":{"addr":"173.233.139.164","port":443,"asn":7979,"as":"SERVERS-COM","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:20.746Z","timestamp":1699130720746,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"lyricsgrand.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sat, 23 Sep 2023 00:46:58 GMT","end":"Fri, 22 Dec 2023 00:46:57 GMT"},"fingerprint":{"sha1":"28:E4:D8:15:E1:DE:1D:5E:9A:06:59:BF:F4:6E:E3:7F:F8:09:03:30","sha256":"FF:B3:13:64:E7:00:48:7D:7C:A8:17:8C:52:7D:B3:66:97:E1:EC:F2:D2:A4:2C:8D:60:0C:41:F2:D5:63:82:AC"}}},"request":{"raw":"GET /pixel/purst?dl=0\u0026th=0\u0026sc=0\u0026rs=2110\u0026rd=2110\u0026fd=868\u0026bv=23.11.v.1\u0026tmpl=70 HTTP/1.1\r\nHost: lyricsgrand.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.21.6\r\nDate: Sat, 04 Nov 2023 20:45:21 GMT\r\nContent-Length: 0\r\nConnection: keep-alive\r\nExpires: Thu, 01 Jan 1970 00:00:01 GMT\r\nCache-Control: no-cache\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests\r\nAccess-Control-Expose-Headers: Content-Length,Content-Range\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T06:46:00.057853Z","times_seen":13320224,"resource_available":true,"data":null}},"time_used":1234,"timings":{"blocked":575,"dns":242,"connect":106,"send":0,"wait":100,"receive":0,"ssl":202},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2023-11-04","alert":"Sinkholed","trigger":"lyricsgrand.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"dt.raggledordures.com/tfV1aVkhjL8iyoL1/61515","fqdn":"dt.raggledordures.com","domain":"raggledordures.com","tld":"com"},"ip":{"addr":"142.91.159.95","port":443,"asn":7979,"as":"SERVERS-COM","country":"Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.770Z","timestamp":1699130719770,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_RSA_WITH_AES_128_CBC_SHA","key_group_name":"none","signature_name":"none","protocol":"TLSv1.2","cert":{"subject":{"commonName":"dt.raggledordures.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 23:30:11 GMT","end":"Mon, 22 Jan 2024 23:30:10 GMT"},"fingerprint":{"sha1":"EB:1A:09:49:FA:07:CC:5F:1A:3A:3D:31:EF:D9:AB:77:62:C9:E1:D6","sha256":"62:D7:44:6A:EB:F4:10:4E:9B:EE:FC:10:A1:44:6D:E2:23:00:27:BF:E6:F4:11:CC:38:3B:99:80:A2:D3:C3:13"}}},"request":{"raw":"GET /tfV1aVkhjL8iyoL1/61515 HTTP/1.1\r\nHost: dt.raggledordures.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Sat, 04 Nov 2023 20:45:20 GMT\r\nContent-Type: application/javascript; charset=utf-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nKeep-Alive: timeout=20\r\nAccept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://cuevana3.ch\r\nAccess-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires\r\nAccess-Control-Max-Age: 600\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nX-Frame-Options: SAMEORIGIN\r\nSet-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Sun, 05-Nov-2023 20:45:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\nGL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 05-Nov-2023 20:45:20 GMT; Max-Age=86400; path=/; secure; SameSite=None\r\nContent-Encoding: gzip\r\nVary: Accept-Encoding\r\nStrict-Transport-Security: max-age=1\r\nX-Content-Type-Options: nosniff\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"f7a2939527fd9e68723da600e96d76bd","sha1":"a9e717b6364d2895ee0a716050db32ca0ef1bb42","sha256":"d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a","sha512":"e6956ec633c76eb3ebc408528f950b81373238cd1d5b9fff5ddd97089ea14a1ff5934f23769bac5d93cc4cdb6a1fbc4ce69baebfb940a55d8a7a89caccaf92b5","ssdeep":"","tlshash":"5340000c00300000000000000000f000000c00000c000300c000000c00030c000c0000","first_seen":"2023-03-07T01:14:39Z","last_seen":"2026-04-04T05:44:52.415364Z","times_seen":13609,"resource_available":true,"data":null}},"time_used":930,"timings":{"blocked":441,"dns":69,"connect":44,"send":0,"wait":41,"receive":1,"ssl":317},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.cdn4js.com/js/jquery-3.6.0.min.js","fqdn":"cdn.cdn4js.com","domain":"cdn4js.com","tld":"com"},"ip":{"addr":"172.67.150.253","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://pelisplay.info/streamhd?id=Mjg1MDE=\u0026option=latin","date":"2023-11-04T20:45:22.596Z","timestamp":1699130722596,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdn4js.com","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Wed, 13 Sep 2023 08:12:40 GMT","end":"Tue, 12 Dec 2023 08:12:39 GMT"},"fingerprint":{"sha1":"69:2F:78:29:A1:B7:94:7A:73:65:6D:10:0F:5B:F1:77:13:C2:ED:3A","sha256":"C5:1E:42:31:5E:85:21:C9:95:95:66:EE:40:B2:C7:59:58:54:31:51:E3:28:B4:96:E7:B5:D8:7B:CE:A5:08:6F"}}},"request":{"raw":"GET /js/jquery-3.6.0.min.js HTTP/1.1\r\nHost: cdn.cdn4js.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://pelisplay.info/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Nov 2023 20:45:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\nx-trace: 5bab399c4d658a6bfe284da92e8413f5\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\nage: 4136\r\nlast-modified: Sat, 04 Nov 2023 19:36:26 GMT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=qgNg7qAnJBDDvwVfky5fy8R12P2RdR04wN50kcMLXypQfkTSbto%2B8GwS3qpbitwpse1z4y6QGqT66yTHzg1qD9DrA8N%2B7cT5C9BOI0viwghYvm5tjJRQeZOlFjXQj1nUww%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 820fb3486aacb500-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":90039,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0b5704a4cc61699108493a0ba8cac977","sha1":"1dd274f2f680332228985faa9ec2492075c64d8a","sha256":"8e6a34c097b7066b63993fc615dacf4ac24c6059b7da71c413ff6799d30a3b15","sha512":"dff9157200d682424390a010c3ad5fff4c2b330e972e4b35192868c3914befa5b38640ed92a587e1bf88707780e31b0957d39fa3aa4c4d86b177a1fc400bddb3","ssdeep":"1536:YSQ5CPCaTHCQ/WnDMiVLpA5hhbs4+HQoiQl:YZYiQK/cbgl","tlshash":"3793b6557183304663ebeafd403f368aa8758c14954a4ca5b6b1e7c3dc204c9d8e7bbe","first_seen":"2023-04-30T22:46:58Z","last_seen":"2023-12-11T22:40:01Z","times_seen":110,"resource_available":true,"data":null}},"time_used":74,"timings":{"blocked":24,"dns":5,"connect":1,"send":0,"wait":19,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fvcwqkkqmuv.com/aas/r45d/vki/1995260/29fbd76b.js","fqdn":"fvcwqkkqmuv.com","domain":"fvcwqkkqmuv.com","tld":"com"},"ip":{"addr":"212.117.190.201","port":443,"asn":5577,"as":"root SA","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://cuevana3.ch/3325/siniestro","date":"2023-11-04T20:45:19.828Z","timestamp":1699130719828,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"","organization":""},"issuer":{"commonName":"Buypass Class 2 CA 5","organization":"Buypass AS-983163327"},"validity":{"start":"Sat, 28 Oct 2023 11:35:09 GMT","end":"Wed, 24 Apr 2024 21:59:00 GMT"},"fingerprint":{"sha1":"F4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D","sha256":"EB:91:E9:89:F6:74:9E:1B:67:48:AE:D7:6F:3F:A8:A9:09:0F:95:F2:5A:39:04:5F:48:19:61:FC:E4:60:38:5F"}}},"request":{"raw":"GET /aas/r45d/vki/1995260/29fbd76b.js HTTP/1.1\r\nHost: fvcwqkkqmuv.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cuevana3.ch/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sat, 04 Nov 2023 20:45:20 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 26 Oct 2023 09:16:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"653a2e72-15ad3\"\r\nx-js-ab2: current\r\ntiming-allow-origin: *\r\naccept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":88714,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65106)","md5":"58cdf9bfc1ca007db803a3f741c3cb18","sha1":"239890413cc3e9b61e450913537816ce672a5bd2","sha256":"a77722b5ec9adb31cbfea18fdb1cd70edcde67e1780c5200e43e06511f6d65d1","sha512":"934554674dea6e59bc54fc9e74f1788a8b22ec6f9450d15dd5ab878a8ed25058023e1a78788a6fc679ccb305e23ae4c416695ff35d25e8ce49742909ae85ea59","ssdeep":"1536:YQt85KpXOZJK+mNk+erSrlU8tbKDYHggKgrYgzrIRoQxgJ9sB7+jO/2+rGu5R8g8:YIiK0LK+mTh1Jjmfu/t","tlshash":"45832dc873c174a62a06e53e0f6f6c3b556d89c145798442a533f1cabc2335ea1eaef1","first_seen":"2023-11-04T21:45:48Z","last_seen":"2023-11-05T08:12:14Z","times_seen":5,"resource_available":true,"data":null}},"time_used":739,"timings":{"blocked":353,"dns":15,"connect":23,"send":0,"wait":24,"receive":0,"ssl":320},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}