futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
172.64.163.27301 Moved Permanently 0 B URL HTTP/1.1 futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
IP 172.64.163.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 23 Oct 2022 19:17:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 23 Oct 2022 20:17:47 GMT
Location: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2FZ0LhQELaqTNn0rCB3WOvZYKP98quoYW%2BcRcsA8f4gX%2FVw0Z9VSBYOTiKXtqb8RgL9%2BL5Wn9vJRetF40g06gBB%2FuzOzTdg6M06VBDTcQMvvpWQ6VCF4hJR%2FB1SZHoC%2FPnk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75ecd09aaa8c75a9-LHR
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 18:26:53 GMT
Expires: Sun, 23 Oct 2022 18:57:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6szjMK3eQY2iaGgtFZjqajQK5vAirM8ErHRfjt3admuzmzEGoh915g==
Age: 3054
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73c4166ca864f777db2cc1cd8658a7c2
c56b66b0b7c8516d4d5bfafe0c166711c78f3d25
310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12650
Expires: Sun, 23 Oct 2022 22:48:37 GMT
Date: Sun, 23 Oct 2022 19:17:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4643
Expires: Sun, 23 Oct 2022 20:35:10 GMT
Date: Sun, 23 Oct 2022 19:17:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fjAOweP8VS3qY8NJM2Lyz6lEW/5GK3mlUFJDvv96TTaDHuZwAnGj3RaGnhWffFLumBf//GzI9NA=
x-amz-request-id: RC49FBQDZVWD95H9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 19:08:12 GMT
age: 575
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 19:17:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0e897211faf67902d50e02da87ed31c6
fc3896cabd12743e99dfa37100e12933eba2b6e5
b763b8ff77204df0a0f09831e28be1773687aca20cebe93a4c505a8447319376
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=102314
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:47 GMT
Etag: "63548005-118"
Expires: Mon, 24 Oct 2022 23:43:01 GMT
Last-Modified: Sat, 22 Oct 2022 23:43:01 GMT
Server: nginx
Content-Length: 280
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 23 Oct 2022 18:43:40 GMT
Expires: Sun, 23 Oct 2022 19:41:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wcdm-eIhaCepjPm2ieVy2I-DZf2CJ5K7SUfj4e2Si7rgAfUbHsdcYw==
Age: 2047
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0e897211faf67902d50e02da87ed31c6
fc3896cabd12743e99dfa37100e12933eba2b6e5
b763b8ff77204df0a0f09831e28be1773687aca20cebe93a4c505a8447319376
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=102314
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63548005-118"
Expires: Mon, 24 Oct 2022 23:43:02 GMT
Last-Modified: Sat, 22 Oct 2022 23:43:01 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
futbollibre.net/img/logo-futbolLibre.webp
172.64.162.27200 OK 6.5 kB URL HTTP/2 futbollibre.net/img/logo-futbolLibre.webp
IP 172.64.162.27:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1234d6a63266ad04d30eb5a3808f0c76
fe6675385d68e7ccf859e16ae6a445a417787530
2ac74a71cad5d52e339a61edbd2031213cfd14c5872d830656aeca9904902fbb
GET /img/logo-futbolLibre.webp HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: image/webp
content-length: 6526
last-modified: Sat, 07 Mar 2020 09:25:10 GMT
etag: "5e636876-197e"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-varnish: 31720359
age: 2325
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=691200
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAyHGN3o44dYX1cILWqO5Z8q%2BGfWjb4UywlhcT4M%2F2pPGexkccwAe3KCtjM2J9EQXfc4CdkRzvAJOmR7f2Oore7iu3AquySgqqwc%2BrNiaI36OP%2BMP06DyZqUsJEapx3jDuw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f380c7437-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.min.js
69.16.175.42200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1666552668.dop023.sk1.t,1666552668.cds236.sk1.hn,1666552668.cds217.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c41126f58508263696820d40f7dc0ae6
a79e07ced9258a022b3ea966d718c81c0da42a8f
f4da48fe8fd9002bd4fbcb42a087ba9d2b491cc3ce484f26311b451b040c1edb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4899
Cache-Control: max-age=161544
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63555441-117"
Expires: Tue, 25 Oct 2022 16:10:12 GMT
Last-Modified: Sun, 23 Oct 2022 14:48:33 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
platform-api.sharethis.com/js/sharethis.js
143.204.55.6200 OK 52 kB URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.6:0
Hash 77d4de557edd2f90e6180fffc8187525
420becd19b34d63a90d525e2c8ee492d621f8d79
cb4afad3eaac9c88234e69a3cfb686ee51a010e9e992443bd5e2a63d26f726ae
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Sun, 23 Oct 2022 19:09:01 GMT
cache-control: max-age=600, public
etag: W/"2fe41-B6RUASRBT1G2X6u3Ue+hBuA9DqQ"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2hk6jGVaJRjOKigWB5oMcb2ckI9brfBYPBjkW4cEuaZyvT6H4urj4Q==
age: 527
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c41126f58508263696820d40f7dc0ae6
a79e07ced9258a022b3ea966d718c81c0da42a8f
f4da48fe8fd9002bd4fbcb42a087ba9d2b491cc3ce484f26311b451b040c1edb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4899
Cache-Control: max-age=161544
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63555441-117"
Expires: Tue, 25 Oct 2022 16:10:12 GMT
Last-Modified: Sun, 23 Oct 2022 14:48:33 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bb2d43935213c9fc5f1201c3dc09a169
79e6bb6b21d1ef508ba211992f13e789cec3a98d
64e087f866b43456d90294a2fa798d9c4aedbbcbd0ed3143bceb464c341ae59a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=117450
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "6354bb26-116"
Expires: Tue, 25 Oct 2022 03:55:18 GMT
Last-Modified: Sun, 23 Oct 2022 03:55:18 GMT
Server: nginx
Content-Length: 278
push.services.mozilla.com/
52.39.57.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.57.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oZGjR3RUBEecnHQNajmTqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wAXK52ESo14YGD5SLUuY/GoYFms=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7a6bd01f467ecaba67789cabaf4de7e0
c08bf66c831c6f57a11c61b855744d7903909684
2cb1770e0e08dfa9cea290f519525f9946c079497729ee6c83407a0e735cfe7a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87540
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544650-117"
Expires: Mon, 24 Oct 2022 19:36:48 GMT
Last-Modified: Sat, 22 Oct 2022 19:36:48 GMT
Server: nginx
Content-Length: 279
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5de0918f80e223657e0e862910530050
9bd5ec6b4edf6b9549015d5e14750ea31784ae7e
2942868ef243768dbf3cce8ead012b20b292e6687df735a7b11943328dd05de2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:17:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 17:22:26 GMT
Expires: Sat, 29 Oct 2022 17:22:25 GMT
Etag: "9bd5ec6b4edf6b9549015d5e14750ea31784ae7e"
Cache-Control: max-age=510876,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ecd0a14b4cb527-OSL
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5403e3d18239ca257ee9b9e5e6733969
bcc01da4e1ae7a0d4319bbc80f4a5221b8cfe3e7
856dc65b5d8e96122388fc63c21037d91183cbf8663b7c25eb2b39ca036034d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5403e3d18239ca257ee9b9e5e6733969
bcc01da4e1ae7a0d4319bbc80f4a5221b8cfe3e7
856dc65b5d8e96122388fc63c21037d91183cbf8663b7c25eb2b39ca036034d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5403e3d18239ca257ee9b9e5e6733969
bcc01da4e1ae7a0d4319bbc80f4a5221b8cfe3e7
856dc65b5d8e96122388fc63c21037d91183cbf8663b7c25eb2b39ca036034d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5403e3d18239ca257ee9b9e5e6733969
bcc01da4e1ae7a0d4319bbc80f4a5221b8cfe3e7
856dc65b5d8e96122388fc63c21037d91183cbf8663b7c25eb2b39ca036034d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 5403e3d18239ca257ee9b9e5e6733969
bcc01da4e1ae7a0d4319bbc80f4a5221b8cfe3e7
856dc65b5d8e96122388fc63c21037d91183cbf8663b7c25eb2b39ca036034d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7a6bd01f467ecaba67789cabaf4de7e0
c08bf66c831c6f57a11c61b855744d7903909684
2cb1770e0e08dfa9cea290f519525f9946c079497729ee6c83407a0e735cfe7a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=87540
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544650-117"
Expires: Mon, 24 Oct 2022 19:36:48 GMT
Last-Modified: Sat, 22 Oct 2022 19:36:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash bb2d43935213c9fc5f1201c3dc09a169
79e6bb6b21d1ef508ba211992f13e789cec3a98d
64e087f866b43456d90294a2fa798d9c4aedbbcbd0ed3143bceb464c341ae59a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=117450
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "6354bb26-116"
Expires: Tue, 25 Oct 2022 03:55:18 GMT
Last-Modified: Sun, 23 Oct 2022 03:55:18 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
www.chatbro.com/images/no_connection.png
172.64.131.37200 OK 1.6 kB URL HTTP/2 www.chatbro.com/images/no_connection.png
IP 172.64.131.37:0
File type PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Hash d5a40ac60610fe0573b63c4889b5dd63
e56b468930e949671397129e00b3e0815a1ac2c5
d026f555341e85649cd2edd6848b55b6cedfcca0c62bba5099e69b62ea713e40
GET /images/no_connection.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: image/png
content-length: 1614
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-64e"
expires: Sun, 23 Oct 2022 19:25:15 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 153
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZFL1hEowk%2FNWTxNbV8JrKCN3QToxbh43MFV1%2Fl6MIsveIUtEZDRhwDC%2FZXiT4fPXnYmP3w9BOahwOvH%2FX%2BTZ1vnWYweVjGo2uT1jDepn1nGwEVJuv28Jirfciwy9lk06an0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a30b7b757a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
futbollibre.net/js/dark-mode-switch.min.js
172.64.162.27200 OK 96 kB URL HTTP/2 futbollibre.net/js/dark-mode-switch.min.js
IP 172.64.162.27:0
File type ASCII text, with very long lines (491)
Hash 1b1c2538c0cd7a25e86d77bc273f2110
736798690e60b36d3a36022d5b83d75e06701b05
2f053adb3badf7e73fcdf9ffe12f8c22dabe161fb58599f941704d51ad0ab5c2
GET /js/dark-mode-switch.min.js HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/javascript
last-modified: Wed, 03 Jul 2019 13:36:14 GMT
etag: W/"5d1caf4e-1ec"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-varnish: 29500553
age: 2866
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=691200
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5L7nNnuiNvFbF%2FNE3IYF7uG78XuxCVV7YsRdb0%2BOia0cL%2BQmACm6ikEkwfJInxAdmmr7g5HjKIm2SN2Uo%2Fxvk0yL%2B9T1FMYT9XKr9gqdzHtMfy7YyR6g9OsDGoPLRTGB4Ts%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f380d7437-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chatbro.com/images/chat_facebook_logo.png
172.64.131.37200 OK 2.2 kB URL HTTP/2 www.chatbro.com/images/chat_facebook_logo.png
IP 172.64.131.37:0
Hash 1d54541e8dc538ee49c20f3ba62b7f9b
d4bbe506393780c103bed19702ca37d283a1a721
9a97d87e6dd9dcbfbafae3b2bf12e7faa17fa492948292acf8c66b73eb225302
GET /images/chat_facebook_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: image/png
content-length: 329
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-149"
expires: Sun, 23 Oct 2022 19:25:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 162
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHY11CioW3wbhn0MvJOxVnnt77C8a9omuBOVnkEZs7yNW0bjYyc7Yafkk%2BgGd7qUguDBLhaozjpa1VZmGXOdP76uVwxA%2F39dcUnEtYsjvjYvALT4aspsCc6WudlaiZUxCV8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a31ba0757a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chatbro.com/images/chat_google_logo.png
172.64.131.37200 OK 656 B URL HTTP/2 www.chatbro.com/images/chat_google_logo.png
IP 172.64.131.37:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 84e2bf2e06db3b9ef5f53e933cfaae30
6378efa7ccadfe5be02959f57ffa7c27b1da168a
7c1fc1f22827f0dabf3486fdc286f1c909e7acc4b5999365b9328c36c18d17d7
GET /images/chat_google_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: image/png
content-length: 656
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-290"
expires: Sun, 23 Oct 2022 19:25:06 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 162
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIU0XLqfadBCP%2BPlZjhkTdRskboYTMA290lmUCP5BBrvKYi4N%2F5V3ME%2FrIL6XldpF2rMk%2Fyd3RWZKI%2FAsBZxTDIpOJ48bQsMnFeFBW0Dr8yAhlHj%2Fhj3YqDuvOn3sLPcpSU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a32bbd757a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.chatbro.com/images/chat_telegram_logo.png
172.64.131.37200 OK 26 kB URL HTTP/2 www.chatbro.com/images/chat_telegram_logo.png
IP 172.64.131.37:0
Hash 716f5a16e62965a400555f75e4caef30
e38741197228c0cb01a8783b634bf5228c68e1d8
90e9ca48beed1fe47bbe6c427e0a8a18498b70156cfa2738dbb3313407289f9f
GET /images/chat_telegram_logo.png HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: image/png
content-length: 777
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-309"
expires: Sun, 23 Oct 2022 19:26:32 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 76
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qm8w9PpT%2FgPgZJZlyG3BsiBlcN7d3iMgWFxN%2B3KCOxYQVKuIZdjlgvLoc6e0W3L98f1EJDMb%2FHt%2F1yeZ56xec%2B%2Ffr5VRL7ufCI9tmuM2elSRz6WG%2F81w3luzF3twnoh8dIU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a31bad757a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a6550eb9d952c10cb392c8f7ff305df3
a45ba8e7092d185ba8f323cfa6a226b1aa000362
cbd80ad8e92dac11e8ae9d99881bc01d460ef7eb66e8cdec94759053f8dd4a72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:17:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 06:12:20 GMT
Expires: Sat, 29 Oct 2022 06:12:19 GMT
Etag: "a45ba8e7092d185ba8f323cfa6a226b1aa000362"
Cache-Control: max-age=470670,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ecd0a30ddeb527-OSL
www.chatbro.com/fonts/chatbro.woff?10
172.64.131.37200 OK 14 kB URL HTTP/2 www.chatbro.com/fonts/chatbro.woff?10
IP 172.64.131.37:0
File type Web Open Font Format, CFF, length 14396, version 1.0\012- data
Hash 58980c138190f1f32bb04c5a9d6c4653
c2635b4ab6bd7464aa5e97f18c706911a6b24dfd
f74fcaf9c728521c218b7bf05a0bf7173b522e7769165c8f97fdf74734cf0907
GET /fonts/chatbro.woff?10 HTTP/1.1
Host: www.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/font-woff
content-length: 14396
last-modified: Tue, 30 Aug 2022 18:54:10 GMT
etag: "630e5cd2-383c"
expires: Sun, 23 Oct 2022 19:19:20 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 508
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWOjlfMnwZsj84FhqI8Le6UghoiSrOw4K8aH4McFVA7ijQYpjm0jUUHaFLsVSasyd6yLYXnrEkx45Tb7IrCSYF8NVHYuw7V2c%2Bhhfm2BXtrcDGQ1mlT60mz5iTxULB8hea0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a33be88877-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 14 kB IP 93.184.220.29:0
Hash 41999360fe1f2f508f750174fdeabdcc
59f36d74974cdc13e231aed5089f2721002aec92
a86e399ee7895184b5a8c77c2b4235b4e3e5f880c63686a621309f95380d706e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3318
Cache-Control: max-age=89778
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:48 GMT
Etag: "63544218-116"
Expires: Mon, 24 Oct 2022 20:14:06 GMT
Last-Modified: Sat, 22 Oct 2022 19:18:48 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
ssl.p.jwpcdn.com/player/v/8.21.0/jwplayer.js
151.101.86.114200 OK 37 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.21.0/jwplayer.js
IP 151.101.86.114:0
File type ASCII text, with very long lines (65143)
Hash c59313eb0eab3f49f8167d30f54c4e52
a7f6b08f0d61213ff56680995399b50878a8c813
b9bbf6a6b284322cb8324fd8db35395ff1e83cf5e1ecc2304820c5140f2fb1a3
GET /player/v/8.21.0/jwplayer.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Tue, 06 Jul 2021 21:01:14 GMT
etag: "59aefa4a6facdeff3bd09966799ba21b"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:48 GMT
via: 1.1 varnish
age: 947882
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1666552669.725910,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 37301
X-Firefox-Spdy: h2
youradexchange.com/script/suurl4.php?r=5798766&cbur=0.5994707961707596&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&aggr=0
35.190.41.116200 OK 1.3 kB URL HTTP/2 youradexchange.com/script/suurl4.php?r=5798766&cbur=0.5994707961707596&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&aggr=0
IP 35.190.41.116:0
Hash 464e0c5cd75cb208ff81ac67bb264df2
befa2f1f91f5bbee2aaaf5ec1c29fe88027bc25b
b595e12db87c9fa75bfa3e817e35b5ec9fcb0f1d91432632bc3e7535da83b0eb
GET /script/suurl4.php?r=5798766&cbur=0.5994707961707596&cbiframe=0&cbWidth=1280&cbHeight=939&cbtitle=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cbpage=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&cbref=&cbdescription=&cbkeywords=&cbcdn=acscdn.com&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://futbollibre.net/
Origin: https://futbollibre.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 292b782fb640472435cbdd689791047e
30c0227f5e70be86a2d840e8695c0261ae219c30
4b8c9b5c72bd541fa9ebf9f11b81f1ca64948936eeacbec3888361532413a127
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B8C9B5C72BD541FA9EBF9F11B81F1CA64948936EEACBEC3888361532413A127"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3917
Expires: Sun, 23 Oct 2022 20:23:05 GMT
Date: Sun, 23 Oct 2022 19:17:48 GMT
Connection: keep-alive
www.flashscore.es/res/image/data/jsYlIEYg-SWAh8oSI.png
34.96.91.69200 OK 9.8 kB URL HTTP/2 www.flashscore.es/res/image/data/jsYlIEYg-SWAh8oSI.png
IP 34.96.91.69:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d58c36d93b12b7f5b33973cf8a6f2054
70e33debcbdf4ec808974e723ab2a6a3a22114fd
32490c63c75bb9a076022f872f9e66b83bc6ab1869f2b250df20bd5ceba0f96c
GET /res/image/data/jsYlIEYg-SWAh8oSI.png HTTP/1.1
Host: www.flashscore.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/png
etag: "i-d58c36d93b12b7f5b33973cf8a6f2054"
expires: Fri, 21 Apr 2023 18:51:45 GMT
cache-control: public, max-age=15552000
x-vname: lsproxy-69589b4db8-ghjfj/varnish1[P]|lsbproxy-b64648974-bvs2p/varnish1[A]|lsproxy9/varnish1[P]|lsbproxy9/varnish2[A]
x-ttlset: BEH[P]|BEH[A]|BEH[P]|BEH[A]
content-length: 9781
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:48 GMT
age: 6244
x-times: 1666552668876|1666552668876
x-age: 6244[P]|4681[A]|4681[P]|1775[A]
x-pc: HIT[P]|MISS[A]|HIT[P]|HIT[A]
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.flashscore.es/res/image/data/UBFrXuDa-6F5VmgXG.png
34.96.91.69200 OK 4.3 kB URL HTTP/2 www.flashscore.es/res/image/data/UBFrXuDa-6F5VmgXG.png
IP 34.96.91.69:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 56075266e4db2426a1085de6a0308731
c9483f6c2a79d5ac7981b6245694b6e1529c3334
7db48bb59961daa6a8ad5eaaf855b15ec37daf537bc64ce130fee2d3ad2ce36a
GET /res/image/data/UBFrXuDa-6F5VmgXG.png HTTP/1.1
Host: www.flashscore.es
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/png
etag: "i-56075266e4db2426a1085de6a0308731"
expires: Fri, 21 Apr 2023 19:04:12 GMT
cache-control: public, max-age=15552000
x-vname: lsproxy-69589b4db8-76cz4/varnish1[P]|lsbproxy-b64648974-bvs2p/varnish1[A]|lsproxy46/varnish1[P]|lsbproxy1/varnish1[A]
x-ttlset: BEH[P]|BEH[A]|BEH[P]|BEH[A]
content-length: 4329
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:48 GMT
age: 1960
x-times: 1666552668880|1666552668880
x-age: 1960[P]|1143[A]|1143[P]|87[A]
x-pc: HIT[P]|MISS[A]|HIT[P]|HIT[A]
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 292b782fb640472435cbdd689791047e
30c0227f5e70be86a2d840e8695c0261ae219c30
4b8c9b5c72bd541fa9ebf9f11b81f1ca64948936eeacbec3888361532413a127
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B8C9B5C72BD541FA9EBF9F11B81F1CA64948936EEACBEC3888361532413A127"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3917
Expires: Sun, 23 Oct 2022 20:23:05 GMT
Date: Sun, 23 Oct 2022 19:17:48 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5de0918f80e223657e0e862910530050
9bd5ec6b4edf6b9549015d5e14750ea31784ae7e
2942868ef243768dbf3cce8ead012b20b292e6687df735a7b11943328dd05de2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 17:22:26 GMT
Expires: Sat, 29 Oct 2022 17:22:25 GMT
Etag: "9bd5ec6b4edf6b9549015d5e14750ea31784ae7e"
Cache-Control: max-age=510876,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ecd0a41f48b527-OSL
st.chatango.com/js/gz/emb.js
208.93.230.24200 OK 24 kB URL HTTP/1.1 st.chatango.com/js/gz/emb.js
IP 208.93.230.24:0
File type ASCII text, with very long lines (1651)
Hash 43a6e3a24c5f6d710f01cd9ea166bedf
2b172372c84de07111687133d38ecaee8a15c99e
65878e1003da0b2d589980ebda0a59206831ff7e8be7747532c4080e35c600d7
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:17:48 GMT
Content-Type: application/x-javascript
Content-Length: 23804
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
ETag: "62fd7d87-5cfc"
Expires: Sun, 23 Oct 2022 19:17:48 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
buttons-config.sharethis.com/js/5ab9c9531fff98001395a59a.js
54.230.111.117200 OK 492 B URL HTTP/2 buttons-config.sharethis.com/js/5ab9c9531fff98001395a59a.js
IP 54.230.111.117:0
File type ASCII text, with very long lines (492), with no line terminators
Hash f724fa1a4d1150940280592957442aac
254b6495924f5e46bc68da8e995d354a1135e3b2
185eb9e30f94e66607b671f6ab6a09e4ef62b0a35d4303bd59ac0b25dc356646
GET /js/5ab9c9531fff98001395a59a.js HTTP/1.1
Host: buttons-config.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 492
last-modified: Tue, 27 Mar 2018 04:32:21 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 23 Oct 2022 19:17:12 GMT
cache-control: max-age=60,public
etag: "f724fa1a4d1150940280592957442aac"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JsV3tV8B-R3lD5ZFMcwKA3nWJP3lwO4m8-qtm4GufKi4eB-LIO7Uag==
age: 42
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.chatbro.com/ws?chatId=1457113&clientId=0.8867943585851229
172.64.130.37101 Switching Protocols 0 B URL HTTP/1.1 ws.chatbro.com/ws?chatId=1457113&clientId=0.8867943585851229
IP 172.64.130.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws?chatId=1457113&clientId=0.8867943585851229 HTTP/1.1
Host: ws.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://futbollibre.net
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iOP/bkssK9CIgE+ivB8BQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: isK9++vmnS75kzFGPYag8F77wwM=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CymSIciUPF27F8qK7c%2F6guwq2JJJM5I4JsXj0yr6PtjeIpCottB4mVuhIedZYvRwtH00ZrxOl5cjB%2BCEZO3MJxPCmys4hzVK929T1mTPhfywxV4zoo%2FbNn%2FK0D1zy1sgNg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75ecd0a4ff2f753d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ssl.p.jwpcdn.com/player/v/8.21.0/jwpsrv.js
151.101.86.114200 OK 19 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.21.0/jwpsrv.js
IP 151.101.86.114:0
File type ASCII text, with very long lines (62165)
Hash 9ff4a115596fcc18749b51ec99f8cbd2
fc840870c7cf91bc7489c1ce914623cee7240592
fcd67095be96095418ed2d0ebada3da118764adeb919cb7d411c9cc2fd828407
GET /player/v/8.21.0/jwpsrv.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=900, immutable
last-modified: Wed, 15 Dec 2021 14:19:48 GMT
etag: "2353f13c8094f122815add38f3060256"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:49 GMT
via: 1.1 varnish
age: 239
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1666552669.169191,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 18617
X-Firefox-Spdy: h2
muchmiller.com/46/ca/b0/46cab0482d679d4b3993fdf8e8be6238.js
192.243.61.225200 OK 20 kB URL HTTP/1.1 muchmiller.com/46/ca/b0/46cab0482d679d4b3993fdf8e8be6238.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (59442), with no line terminators
Hash cb2af523182f90ff0d83afc16374eb39
afcbaad89d031d6805c08c47eb9053e8f9e84ec1
174af52861b6fd421d360971fa8b59e16e7d96f098090e05f1891b35f932f4c5
Analyzer Verdict Alert quad9 Sinkholed
GET /46/ca/b0/46cab0482d679d4b3993fdf8e8be6238.js HTTP/1.1
Host: muchmiller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e5e1def694f455344d6273832062b1f5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ssl.p.jwpcdn.com/player/v/8.21.0/jwplayer.core.controls.js
151.101.86.114200 OK 80 kB URL HTTP/2 ssl.p.jwpcdn.com/player/v/8.21.0/jwplayer.core.controls.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (65135)
Hash 57190ebf0e7ea26eefc572a989352a29
411d7fd138558d4a7f2f34b10b754ce005c6985b
a058c2457dda6e0bf2381eb33a16a21ff0a91497311fcad7e71ffc6cafd90453
GET /player/v/8.21.0/jwplayer.core.controls.js HTTP/1.1
Host: ssl.p.jwpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000, immutable
last-modified: Tue, 06 Jul 2021 21:01:13 GMT
etag: "9b8c959e9e3602bcced646b1fd106192"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:49 GMT
via: 1.1 varnish
age: 1087886
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1666552669.172586,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 79934
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 882bd6bed1136169cb6febd8a8fa9a7c
46640ffb93c5cba3e255cb1ac872628b99789749
55e422aecd456a0f0d4a432028a725da3bd07088972d93736395ebf6254d26fb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 22 Oct 2022 05:29:14 GMT
Expires: Sat, 29 Oct 2022 05:29:13 GMT
Etag: "46640ffb93c5cba3e255cb1ac872628b99789749"
Cache-Control: max-age=468083,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75ecd0a60a28b527-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b634dfb5691c86c9d7e7648bd4631412
fe9a316485659b453058e38593a7c67ab91941a9
b1a3e8817739be44e0ca5448135112e3eb452ff54fee4a95c938edbbe2332dfe
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167141
Date: Sun, 23 Oct 2022 19:17:49 GMT
Etag: "6355761b-1d7"
Expires: Tue, 25 Oct 2022 17:43:30 GMT
Last-Modified: Sun, 23 Oct 2022 17:12:59 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RecZ-38kYmkpDslPiZfaGzKjSONgYvFigDY5C8uUEvaMzBUC196_Hw==
Age: 1831
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 391a8be38b170910620bde67bc06f5e5
893a57a3ae609a1cf1c44da5fea7159253fe5f52
b4a8230e4ba96c54252d1c3b84eb134fcdae328d3a553e307e8f25c2fbadc37d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B4A8230E4BA96C54252D1C3B84EB134FCDAE328D3A553E307E8F25C2FBADC37D"
Last-Modified: Fri, 21 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18230
Expires: Mon, 24 Oct 2022 00:21:39 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
l.sharethis.com/pview?event=pview&hostname=futbollibre.net&location=%2Fembed%2F&product=inline-share-buttons&url=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cms=unknown&publisher=5ab9c9531fff98001395a59a&sop=true&version=st_sop.js&lang=en
18.196.212.55204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=futbollibre.net&location=%2Fembed%2F&product=inline-share-buttons&url=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cms=unknown&publisher=5ab9c9531fff98001395a59a&sop=true&version=st_sop.js&lang=en
IP 18.196.212.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=futbollibre.net&location=%2Fembed%2F&product=inline-share-buttons&url=https%3A%2F%2Ffutbollibre.net%2Fembed%2F%3Fr%3DLy92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA%3D%3D%26tvp%26p%3DxKEWb8NI&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Reproductor%20-%20F%C3%BAtbol%20Libre%20TV&cms=unknown&publisher=5ab9c9531fff98001395a59a&sop=true&version=st_sop.js&lang=en HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://futbollibre.net
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 23 Oct 2022 19:17:49 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
prd.jwpltx.com/v1/error/ping.gif?h=-1020523110&e=ers&n=8454894204051850&aid=eGDB2EujEeKZwiIACp8kUw&=0&at=1&c=-1&ccp=0&cp=0&d=1&eb=0&ed=6&emi=2dhl0d13vjw9&i=1&lid=2t2w4wh1xueo&lsa=set&mt=0&pbd=1&pbr=1&pgi=3aq1pq1xbpy7&ph=0&pii=0&pl=0&plc=0&pli=1f7oy011gj2n&pp=&prc=1&ps=4&pss=0&pt=&pu=https%3A%2F%2Ffutbollibre.net%2F&pv=8.21.0&pyc=0&s=1&sdk=0&stc=1&stpe=0&tv=3.37.0&vl=90&wd=0&cme=0&erc=102630&flc=0&sa=1666552669251
151.101.86.114204 No Content 0 B URL HTTP/2 prd.jwpltx.com/v1/error/ping.gif?h=-1020523110&e=ers&n=8454894204051850&aid=eGDB2EujEeKZwiIACp8kUw&=0&at=1&c=-1&ccp=0&cp=0&d=1&eb=0&ed=6&emi=2dhl0d13vjw9&i=1&lid=2t2w4wh1xueo&lsa=set&mt=0&pbd=1&pbr=1&pgi=3aq1pq1xbpy7&ph=0&pii=0&pl=0&plc=0&pli=1f7oy011gj2n&pp=&prc=1&ps=4&pss=0&pt=&pu=https%3A%2F%2Ffutbollibre.net%2F&pv=8.21.0&pyc=0&s=1&sdk=0&stc=1&stpe=0&tv=3.37.0&vl=90&wd=0&cme=0&erc=102630&flc=0&sa=1666552669251
IP 151.101.86.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/error/ping.gif?h=-1020523110&e=ers&n=8454894204051850&aid=eGDB2EujEeKZwiIACp8kUw&=0&at=1&c=-1&ccp=0&cp=0&d=1&eb=0&ed=6&emi=2dhl0d13vjw9&i=1&lid=2t2w4wh1xueo&lsa=set&mt=0&pbd=1&pbr=1&pgi=3aq1pq1xbpy7&ph=0&pii=0&pl=0&plc=0&pli=1f7oy011gj2n&pp=&prc=1&ps=4&pss=0&pt=&pu=https%3A%2F%2Ffutbollibre.net%2F&pv=8.21.0&pyc=0&s=1&sdk=0&stc=1&stpe=0&tv=3.37.0&vl=90&wd=0&cme=0&erc=102630&flc=0&sa=1666552669251 HTTP/1.1
Host: prd.jwpltx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ebb04a3f48ed4bafdb59cfa3cb68fb93
636f4494c3a550c7239538d0c205a6d20bfc9e41
d75e2506456ba5bf0eff2be010e16d174795c51ae4046e6c7e47064a0ced15dd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154265
Date: Sun, 23 Oct 2022 19:17:49 GMT
Etag: "63553402-1d7"
Expires: Tue, 25 Oct 2022 14:08:54 GMT
Last-Modified: Sun, 23 Oct 2022 12:30:58 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OgNgHqfZX_yRvzYtyPfq8CceNeCGKJhUTXMvdeEO4E7bLj2rLuydxw==
Age: 5876
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0d40a800894ca9c8d43829e0205a11c0
00a6753c54f184ec4695f5ae941d42f707794557
699668fe42f132ebf76cdb1c726a4028c33d41cd38b049493fb3c99b810bd850
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "699668FE42F132EBF76CDB1C726A4028C33D41CD38B049493FB3C99B810BD850"
Last-Modified: Sun, 23 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3235
Expires: Sun, 23 Oct 2022 20:11:44 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
st.chatango.com/h5/gz/r0817221641/id.html
208.93.230.24200 OK 224 kB URL HTTP/1.1 st.chatango.com/h5/gz/r0817221641/id.html
IP 208.93.230.24:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224127 bytes)
Hash fc3ae4d65fdfcf6587ee0fd2e6341ca1
29b97c7cfc4081d173d28c84c774bc3ce891724d
b0a40dcfdea8674321e505dac154350a1bb1ef6067670208b02b6e4bd874f3a9
GET /h5/gz/r0817221641/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: text/html
Content-Length: 224127
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
ETag: "62fd7d87-36b7f"
Expires: Mon, 23 Oct 2023 19:17:49 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 391a8be38b170910620bde67bc06f5e5
893a57a3ae609a1cf1c44da5fea7159253fe5f52
b4a8230e4ba96c54252d1c3b84eb134fcdae328d3a553e307e8f25c2fbadc37d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B4A8230E4BA96C54252D1C3B84EB134FCDAE328D3A553E307E8F25C2FBADC37D"
Last-Modified: Fri, 21 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18230
Expires: Mon, 24 Oct 2022 00:21:39 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
irrelevantassassinclaim.com/pixel/purst?dl=0&th=0&sc=0&rs=1982&rd=1982&fd=976&bv=22.8.v.1&tmpl=70
192.243.61.225200 OK 0 B URL HTTP/1.1 irrelevantassassinclaim.com/pixel/purst?dl=0&th=0&sc=0&rs=1982&rd=1982&fd=976&bv=22.8.v.1&tmpl=70
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1982&rd=1982&fd=976&bv=22.8.v.1&tmpl=70 HTTP/1.1
Host: irrelevantassassinclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
acscdn.com/script/suv4.js
172.64.105.26200 OK 35 kB URL HTTP/2 acscdn.com/script/suv4.js
IP 172.64.105.26:0
File type Unicode text, UTF-8 text, with very long lines (37814), with NEL line terminators
Hash b9ba56ef56056a31c78fb54d71d516f7
8fb93bcc6d57059512a3f49ccec352a9bab71781
fd23131578101730a0b501db715dab170fe8b9f3841cc5d4629c3aab491b0826
GET /script/suv4.js HTTP/1.1
Host: acscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdur9p-49EuHKWKmcCACg7Pt7HSRpNKuv72b4npqSU18CQzLbQ4-XpNkSN5LNpH8440Kn8nrypteccHJqT2BPeg5Hlo9RKDy
x-goog-generation: 1662626465441111
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100523
x-goog-hash: crc32c=PsCFGQ==, md5=kKQG58EUy5y9vRcdgoLiJA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Sun, 23 Oct 2022 19:18:00 GMT
cache-control: public, max-age=14400
last-modified: Thu, 08 Sep 2022 08:41:05 GMT
etag: W/"90a406e7c114cb9cbdbd171d8282e224"
age: 1374
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rfTMcdsDf3TzwqZyf%2FpC%2B%2F0N7ALOqzxcDfizVhV6TaC4tOiBzxV6M1ak04hinDuEfcQJyB%2Fix%2FIfXa%2BTwSZO40Yja%2B6HMPoUurzlSLxUyh6dU7LjW4mZs1wOdl6j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a0199c76ba-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
irrelevantassassinclaim.com/97/38/a3/9738a343b207c9bd51f72da77988779d.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 irrelevantassassinclaim.com/97/38/a3/9738a343b207c9bd51f72da77988779d.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37102), with no line terminators
Hash 1a4d450214362c0ccc36bd72f9f8c27e
5f8b833307c9037b1fcb4f25ef6d63333c649e30
ab2e57c5c97789f9008c4f1cc37b155a89e6c1bc9fe7dbcf8a3515f36fbde48f
Analyzer Verdict Alert quad9 Sinkholed
GET /97/38/a3/9738a343b207c9bd51f72da77988779d.js HTTP/1.1
Host: irrelevantassassinclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dd7727e70343c4b459f55744b500bd60
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
18.194.90.159200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.90.159:0
File type ASCII text, with no line terminators
Hash 10bce877c6ab4f886a2db0bb4a7dc3c4
df36e7af8d67d9c3e7754219c67a755ace9eaef7
3d45a15fbee2309a9c5cfc7bc77a928a3866e9772480e24f1d7d15c4a1d25af7
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://futbollibre.net
access-control-allow-credentials: true
set-cookie: uid_id2=b605291b-a82a-4127-b1e0-2a7bdf4e830e:1:1; expires=Wed, 20 Oct 2032 19:17:49 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/chatango-network/loader.js
151.101.85.44200 OK 21 kB URL HTTP/2 cdn.taboola.com/libtrc/chatango-network/loader.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Hash bd8d53a05c99ccfcf7f261ce74e58be5
ee3ce78ec4239690d9f3e77cdb58e73c7ac31886
50b63384b7893238034f3dc9cc7b454f68ee95b70464f3c6ddc534d8c54db4a6
GET /libtrc/chatango-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: t5b3u9D0Wo8dHGoxhc7WscerZ+G7nltLtP8CIl5jTunXZn2a2lQlI5YlNxINupu0m9QmoJUss3I=
x-amz-request-id: ZND78YQJPMVBNNFW
last-modified: Sun, 23 Oct 2022 09:42:28 GMT
etag: "406ed629ceae19bf9445defc8de795b5"
x-amz-version-id: gXPJYl108fpoF3YIXMFBpUaPvKpz2DPA
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:49 GMT
via: 1.1 varnish
age: 33
x-served-by: cache-bma1622-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1666552670.847152,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 48
content-length: 21229
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 23 Oct 2022 18:41:09 GMT
expires: Sun, 23 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 2200
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sun, 23 Oct 2022 19:55:00 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sun, 23 Oct 2022 19:55:00 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bcadefe69587d4ab5bf5ff9e71eb5cab
066fb94a6ae38e57d67001cc319eea17f837d511
45b175a2cecee90b2d0efc16c4139686ffcf34bfac9084fe9e5e1c926dc1330c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd337e0f9-4135-4fa1-9843-c609356020a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10036
x-amzn-requestid: b1f0e0b9-6fc6-4b7c-a9b0-55845cdfd2d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: abR9aEvjIAMF22Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63546388-72742b3a1279d76e2e842930;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e-Q7z6QYQB1CGZ57JUJIf6l7Ofu9nGkF-ONfTrXJb6MMegchNYMqWQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 21:50:36 GMT
etag: "066fb94a6ae38e57d67001cc319eea17f837d511"
content-type: image/jpeg
age: 77233
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sun, 23 Oct 2022 19:55:00 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sun, 23 Oct 2022 19:55:00 GMT
Date: Sun, 23 Oct 2022 19:17:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fa30ef7eff515cfddf2f3b7ee67eb85
b488761c8ce781a44dcaf2e515ef548480dcd1bc
47c0e8ea9ef52c5d45dca54eb251d89983fba9937b7cf7872b065de04786f6ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47c95e4a-b411-4326-8723-bceab59b6d74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8109
x-amzn-requestid: 39c9edcc-ea64-443e-82b3-230e41edbcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aFhHBG_HoAMF7Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634baef9-7d6e66cd2012a3e8607f0d28;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 07:12:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -mkpkDB8pmoOQhWZI82RUYjaqQmzCGXNyN5sr1TYXb2kTX16pMGJ_A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 22:26:56 GMT
age: 75053
etag: "b488761c8ce781a44dcaf2e515ef548480dcd1bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3a1ed5537b0d648ce6e0ecb427a3230
2f85566b25b22ee703ba5348bce25434c83c69de
d35b1e39b8c6f1adc029eea8f3ffc911426aa49a87261fdb33a770e21ced69ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9549
x-amzn-requestid: e1054150-7691-4446-bc6e-91a4fdccbdc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aIvfRH0oIAMFkJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634cf92e-41bd300b1693ad1b18368e22;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 06:41:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X42MkFQC36cQuD150QxORdiO3npJVwAJm8v56o6S4JULV3ttHsZ-1A==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 16:21:20 GMT
age: 10589
etag: "2f85566b25b22ee703ba5348bce25434c83c69de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
104.21.234.254200 OK 39 kB URL HTTP/2 addresseepaper.com/sfp.js
IP 104.21.234.254:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash de806588ec81950dc176eccef87d697d
6319264bf133b557d68e1b4c79bf21eb6a2827aa
b0c0c87956cabf262ef9378687da3b3437b2c3fe2fcf44b6ac925284f056bf63
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 72fdec79ce8be0c19d83d0af3156f0bf
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 23 Oct 2022 19:17:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E9ZcAPc91EDwEMspYJ9A5lCzFBNPzsAI19WXG6JHTYrnHOJrSHr9x08LLGNI0N9yHyUqfSeqROlDI5ycugXuLnEBn4M1beZFZgufyhEzJ088AK8cdGFrQRVUm904dLHg1PtEs48%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a7f8e275bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 05ee461624e2ec37f65e859afe6543ba
b99dcb558535d3d35d140e730aeeb41587622b30
576b3bf619d0a152889cc44165a229ad0100ccc319cf4d9044b2f26d4b676658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37143b9d51a289f11607b6b0f9ba534a
4b5e283e4397985f837ab28d94c167ddfdb26c7c
d664702a83cac4eaee1710fd03ca41e35d62ae699224490367e605b529e45566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F412682e9-14c9-40e4-bfec-f73f656f5e10.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5348
x-amzn-requestid: d44ded7c-15b6-4c30-a810-4af1edbb9bc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aPYYZEnboAMFcMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634fa102-6bdd3c1a2fa437b106f8ea79;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 07:02:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dx2yJ8T_lM1OMR3h0DUtiV359392U2UyReU6hi4tOxxbvFR0iZ_kAg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 22:01:40 GMT
age: 76569
etag: "4b5e283e4397985f837ab28d94c167ddfdb26c7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4df9a6ab2e2874f46f9a26da129ae848
c4c9898711e33fb02374657dd18df8a41c78b4cb
e287d1b63e7644767f573e248f28ee610b2625691e5d42006c0595f7281a07d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7a675ac-f55a-4071-867b-fffb2f9fabed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7762
x-amzn-requestid: 5c275a39-95dc-4329-9483-44ca93719be2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aO1dKGS5oAMFR3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f6920-2b700b217832bcd257e0f619;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 03:04:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ShsGMLBfS7cs-LpXBQPQHWvf2ppuoPPIEVMDmaEjrGgoSHbz2z03Mg==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 13:36:45 GMT
age: 20464
etag: "c4c9898711e33fb02374657dd18df8a41c78b4cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.194.90.159200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.90.159:0
File type ASCII text, with no line terminators
Hash 10bce877c6ab4f886a2db0bb4a7dc3c4
df36e7af8d67d9c3e7754219c67a755ace9eaef7
3d45a15fbee2309a9c5cfc7bc77a928a3866e9772480e24f1d7d15c4a1d25af7
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Cookie: uid_id2=b605291b-a82a-4127-b1e0-2a7bdf4e830e:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://futbollibre.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/hK5fr7Lt-w0
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/hK5fr7Lt-w0
IP 142.250.74.35:0
Hash 65f2c622a5b6b7c8d1256057b34a5c26
4317299ffbb640bda5d6d292e6477685241d11a3
2588fbc18362c1ccf9b4935f6113d5e78d322ad57c9fecb6273bfca53d6e20ce
POST /s/gts1p5/hK5fr7Lt-w0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
st.chatango.com/js/gz/r0817221641/CollapsedViewModule.js
208.93.230.24200 OK 3.5 kB URL HTTP/1.1 st.chatango.com/js/gz/r0817221641/CollapsedViewModule.js
IP 208.93.230.24:0
File type ASCII text, with very long lines (800)
Hash 8d95c129d125f07a279d389b4136b184
a1f4ab28c5ce8673f099a4562ce0d3f733bb26e6
62ea5ff0264e541e9ac5590bdc55105398b81bf2d92bbedbab61cdf750f7a745
GET /js/gz/r0817221641/CollapsedViewModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r0817221641/id.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 19:17:49 GMT
Content-Type: application/x-javascript
Content-Length: 3508
Last-Modified: Wed, 17 Aug 2022 23:45:11 GMT
Connection: keep-alive
ETag: "62fd7d87-db4"
Expires: Mon, 23 Oct 2023 19:17:49 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
cdn.taboola.com/libtrc/impl.20221023-7-RELEASE.js
151.101.85.44200 OK 146 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221023-7-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Size 146 kB (145803 bytes)
Hash e60de5b136f58ab0a60690b60faddfa8
764afa0d1580a74f16e22a795955d7924f9fa1fd
ce33c6297873ba48831bcc69aa213b437ed24ec361f7d6aa33cefb47e21dce30
GET /libtrc/impl.20221023-7-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Xvqe8AUD61ZCGpWu74XUO7PyN1QJXTNgTeUP8/t8M2WWCgzSecE1pP3cos7RRq2tsucS+iopq/I=
x-amz-request-id: HXRVNVGTDWATCQJ5
last-modified: Sun, 23 Oct 2022 09:05:26 GMT
etag: "e60de5b136f58ab0a60690b60faddfa8"
content-encoding: br
x-amz-version-id: HcRdioL37RdyD1nzIMYb96HfXQofd2Ti
content-type: application/javascript
accept-ranges: bytes
date: Sun, 23 Oct 2022 19:17:50 GMT
via: 1.1 varnish
age: 7578
x-served-by: cache-bma1622-BMA
x-cache: HIT
x-cache-hits: 5428
x-timer: S1666552670.165395,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 91
server: AmazonS3-br
content-length: 145803
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/hK5fr7Lt-w0
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/hK5fr7Lt-w0
IP 142.250.74.35:0
Hash 65f2c622a5b6b7c8d1256057b34a5c26
4317299ffbb640bda5d6d292e6477685241d11a3
2588fbc18362c1ccf9b4935f6113d5e78d322ad57c9fecb6273bfca53d6e20ce
POST /s/gts1p5/hK5fr7Lt-w0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666552670147&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&c8=&c9=https%3A%2F%2Ffutbollibre.net%2F
54.230.111.88204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666552670147&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&c8=&c9=https%3A%2F%2Ffutbollibre.net%2F
IP 54.230.111.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666552670147&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&c8=&c9=https%3A%2F%2Ffutbollibre.net%2F HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 23 Oct 2022 19:17:50 GMT
set-cookie: UID=1AFf559ad89b1e4f4ebf9651666552670; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fh59QT-9nHEwVgUnF9yxa95brGInTPpR5D2U6mHB94jLy712aj14nA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ad989f1caf2f7b9a5b17b800bf97c0cd
45413ae8154042954eee18d5ec6c9a30457c1ae2
7684954b0289f7e1d3a4400c4cd57d81cd0c5b0179698ddd5c26e30d317269d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6161
Cache-Control: max-age=117446
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Etag: "6354a313-13a"
Expires: Tue, 25 Oct 2022 03:55:17 GMT
Last-Modified: Sun, 23 Oct 2022 02:12:35 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 314
trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=19%3A17%3A50.291&type=info&msg=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&llvl=2&id=8659&cv=20221023-7-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=19%3A17%3A50.291&type=info&msg=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&llvl=2&id=8659&cv=20221023-7-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatango-chatango1/log/2/debug?tim=19%3A17%3A50.291&type=info&msg=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr0817221641%2Fid.html&llvl=2&id=8659&cv=20221023-7-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 23 Oct 2022 19:17:50 GMT
x-fastly-to-nlb-rtt: 22169
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=19%3A17%3A50.292&type=usage&msg=rtus&llvl=2&id=8654&cv=20221023-7-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=19%3A17%3A50.292&type=usage&msg=rtus&llvl=2&id=8654&cv=20221023-7-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatango-chatango1/log/2/debug?tim=19%3A17%3A50.292&type=usage&msg=rtus&llvl=2&id=8654&cv=20221023-7-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 23 Oct 2022 19:17:50 GMT
x-fastly-to-nlb-rtt: 22169
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.88200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.88:0
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sun, 23 Oct 2022 19:01:17 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bqQkKvmrl55_A0Pbx2jbjY2LH-zVPwHkHk8Z-zKmTuBX51PimSfRzA==
age: 65726
X-Firefox-Spdy: h2
irrelevantassassinclaim.com/pixel/pure
192.243.61.225200 OK 0 B URL HTTP/1.1 irrelevantassassinclaim.com/pixel/pure
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: irrelevantassassinclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 72
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 23 Oct 2022 19:17:50 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 293aef73ed556f6b68b055473832cae2
946a41f06a31e4ca37f81d900616be13ef43a749
1d788765b519775588fc59b82a19b3d1d689f9a8a21b7551573d4f7d31108bd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2357
Cache-Control: max-age=116890
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Etag: "6354afc4-138"
Expires: Tue, 25 Oct 2022 03:46:00 GMT
Last-Modified: Sun, 23 Oct 2022 03:06:44 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 312
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=1FQeVV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRUxFRjQlMkZzcW55ZzZFM3olMkZ5ZUslMkZzYw; expires=Fri, 17 Nov 2023 19:17:50 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 237457
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c13213af96fc5bafa37593a161bd96d4
2a292020f5a4fcd04444d1ce6a1b393bafff82c9
d5cb2d8846a89b70e0d87a7eb516efdcd739ea12b243b0bca12acf4eeb7cd2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4481
Cache-Control: max-age=140261
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Etag: "635502c2-139"
Expires: Tue, 25 Oct 2022 10:15:31 GMT
Last-Modified: Sun, 23 Oct 2022 09:00:50 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
irrelevantassassinclaim.com/pixel/pure
192.243.61.225204 No Content 0 B URL HTTP/1.1 irrelevantassassinclaim.com/pixel/pure
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: irrelevantassassinclaim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://futbollibre.net/
Origin: https://futbollibre.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.22.0
Date: Sun, 23 Oct 2022 19:17:50 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c13213af96fc5bafa37593a161bd96d4
2a292020f5a4fcd04444d1ce6a1b393bafff82c9
d5cb2d8846a89b70e0d87a7eb516efdcd739ea12b243b0bca12acf4eeb7cd2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4481
Cache-Control: max-age=140261
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 19:17:50 GMT
Etag: "635502c2-139"
Expires: Tue, 25 Oct 2022 10:15:31 GMT
Last-Modified: Sun, 23 Oct 2022 09:00:50 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b64fd745b1638d96ccf57748ad13ce4
148123ec625fee6cb5633f556504431e58f73fb4
62f9cd4a1dbb7fd9333aa9dd40b146dad563631a45b00dbd4adafe54d132560a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62F9CD4A1DBB7FD9333AA9DD40B146DAD563631A45B00DBD4ADAFE54D132560A"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13719
Expires: Sun, 23 Oct 2022 23:06:30 GMT
Date: Sun, 23 Oct 2022 19:17:51 GMT
Connection: keep-alive
ag.gbc.criteo.com/newidsd
178.250.6.119200 OK 542 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.119:0
Hash fbe39d284abe463201e24804dd9af8fa
9bd7d38a247e15480318ad65d0a2d93f73e1c832
35eb2e1a9d7298b31293cf56ac4845cb155897023e7bcf5cf3f7a94e31609050
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 87950
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 132 B IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 868d5917e29cbb5902a0c140296f1b33
46a1a5b26e92e8acf180b4c7e1a85b088a6b109b
ae8b8436c1525557ce8914713be9bf83b010c38f3d6b0b2d60cdd534ef7b63b2
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=1FQeVV80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRUxFRjQlMkZzcW55ZzZFM3olMkZ5ZUslMkZzYw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=hpfrSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRlA3Y1FtQ1olMkJTTkVGJTJCbGN4cW4wWGM; expires=Fri, 17 Nov 2023 19:17:50 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 335444
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
json.150a14ed5bea6cc731cf86c41566ac427a8db48ef1b9fd6266.com/tudn3.json?f8dcb
172.67.158.46200 OK 211 B URL HTTP/2 json.150a14ed5bea6cc731cf86c41566ac427a8db48ef1b9fd6266.com/tudn3.json?f8dcb
IP 172.67.158.46:0
File type JSON data\012- , ASCII text
Hash 170d0ae0f869799b51f9cf0005b414f6
0bcb0a9eb913fca65a9cd75be25db229d3c9064a
a9ee05cd7fb95a879c84e295ae7165292afe1691f04b2596a97aaf27027c94f6
GET /tudn3.json?f8dcb HTTP/1.1
Host: json.150a14ed5bea6cc731cf86c41566ac427a8db48ef1b9fd6266.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vw-source.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: application/json
last-modified: Sun, 23 Oct 2022 19:13:24 GMT
etag: W/"63559254-b7"
access-control-allow-origin: https://vw-source.com
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-expose-headers: Content-Length,Content-Range
x-varnish: 14324695
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
cache-control: max-age=120
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=semPakJhA7DihBc2U8vqEnltN2G6x5SazxD48KVhguVzvSnkYC1OP0b7T1zKP506sSq2KlcxwcTcrBC4kc2RgTGEewRr9Daeb6WIx7B6js5RUUTpqNLwG1ZdmidUW9kcBKebL%2BztdS3K7G5SwVor1PLCBkc%2BOUQ2%2BjdaaLlcTceCIBAGNrembj2%2B%2FANw2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0a3fbba1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://st.chatango.com/
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 480737
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.102200 OK 352 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.102:0
Hash f03646dcb4afcafb7a05aad02ce7bb4a
72a1d8e21615f9d1cac4f2ab9a8f6d51be4fb39d
2b90bd1c638ee67085834b913f01e8083e8b2d2228e554ec512808b3e58467d5
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 59692
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:51 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=b605291b-a82a-4127-b1e0-2a7bdf4e830e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=9738a343b207c9bd51f72da77988779d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=b605291b-a82a-4127-b1e0-2a7bdf4e830e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=9738a343b207c9bd51f72da77988779d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b605291b-a82a-4127-b1e0-2a7bdf4e830e&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=9738a343b207c9bd51f72da77988779d&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 23 Oct 2022 19:17:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 96b1f711f03f5708d8c1eb37cd415923
Strict-Transport-Security: max-age=0; includeSubdomains
gum.criteo.com/syncframe?origin=rtus&topUrl=futbollibre.net
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=futbollibre.net
IP 178.250.2.146:0
Hash 23ac2e1dc3a6309def86094d39ea0f49
06419018db039323e15c7601074297b165fdaf97
49320a4a6c4d385ce475dd5db5a182768a38654b88c5c250b7fa7d6d5b18f552
GET /syncframe?origin=rtus&topUrl=futbollibre.net HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ef00486a-0d10-434e-8b37-7b6a1bfb38a1; expires=Fri, 17 Nov 2023 19:17:50 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 640364
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
widgets.amung.us/draw/?w=colored&n=75100&c=000000ffffff&p=left
188.114.98.234200 OK 0 B URL HTTP/2 widgets.amung.us/draw/?w=colored&n=75100&c=000000ffffff&p=left
IP 188.114.98.234:0
GET /draw/?w=colored&n=75100&c=000000ffffff&p=left HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://futbollibre.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:49 GMT
content-type: image/png
content-disposition: filename=wau-widget.png
expires: Sat, 22 Oct 2022 19:28:28 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 172161
last-modified: Fri, 21 Oct 2022 19:28:28 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0aadd84b524-OSL
X-Firefox-Spdy: h2
lpgs.chatbro.com/g
172.64.131.37200 OK 0 B IP 172.64.131.37:0
POST /g HTTP/1.1
Host: lpgs.chatbro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 18
Origin: https://futbollibre.net
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: text/plain;charset=utf-8
cache-control: no-cache, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: https://futbollibre.net
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aA3%2Bsd6Dg7eVllI0Y7xi%2FRZVefcnZs%2Fif6XpGK%2BixO32RFXe47wricluSGkRF9iJydXJEddiu9Bm3HOMxWf9hXNCygYeblab%2FhYzuX%2F8CKLmMGOgMwJ3Qy8KF%2FVG1VZAvYvu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ecd0a32bc7757a-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
172.64.162.27200 OK 0 B URL HTTP/2 futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
IP 172.64.162.27:0
GET /embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:47 GMT
content-type: text/html
cf-ray: 75ecd09d2bb37437-LHR
cache-control: max-age=691200
last-modified: Sat, 22 Oct 2022 17:27:54 GMT
vary: Accept-Encoding
via: 1.1 varnish (Varnish/6.5)
cf-cache-status: REVALIDATED
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 1058019
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=er%2FBGEjpCwKvnwyac72Co84pGJW4ASxqcxZZ%2B108Ubk3XQ8YdKiK74GvJxIVQ2J2YtJUThhxV%2BjgBBtWqgtDpcumsV3Bvd765HZWB7nv4dqNyGvGcmjzO2KzNwI3DWKhFtY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
futbollibre.net/js/terra.js?update
172.64.162.27200 OK 0 B URL HTTP/2 futbollibre.net/js/terra.js?update
IP 172.64.162.27:0
GET /js/terra.js?update HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/javascript
age: 2866
cf-bgj: minify
cf-polished: origSize=1416
etag: W/"631e32ce-588"
last-modified: Sun, 11 Sep 2022 19:11:10 GMT
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 31687719
x-xss-protection: 1; mode=block
cache-control: max-age=691200
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XvA4RM5K6FmkRbBprZmmRwTBXwsLG%2BVtAwYfW7UyMZyUaUZRkdgMN6reb2l5G7hk4UxlkyCMsowm0TfT7RlS74J7WVWgzp8VvGyNJoFv4nDJ%2B2oPc7b7yP60E%2B5vOCxj7%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f38117437-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vw-source.com/stream/d/vix3.html
104.21.12.237200 OK 0 B URL HTTP/2 vw-source.com/stream/d/vix3.html
IP 104.21.12.237:0
GET /stream/d/vix3.html HTTP/1.1
Host: vw-source.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: text/html
vary: Accept-Encoding
x-page-speed: 1.13.35.2-0
cache-control: max-age=0, no-cache
x-varnish: 552309001
age: 0
via: 1.1 varnish (Varnish/5.2)
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uo4WtxqL0x3IQubTevJQ5Jx54Hb7HLBLapFY6H7Ld%2BCLNAX6lXNg8pTj7NqxQeKxlsyxuqi71cBOB64ucHIAg%2F5mx4nb7jJ01n25f2ZXTZswHAPmOHJ2DKa3PRZXi32D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75ecd0a20fd60b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: vrh_I19KRHR0ODhQSnclMkJCdjZzOGlEajl6bHJzRUREV081SHhMcGhCbllDeGI4RFRocUQ0Wnh6bTUxVE5vQXZra0puanNwdGU5dGs4bkhnamVKJTJCczlGQjRNcElDT3EyczJjayUyQmJ4ZSUyRlBXamsyY2hvRXN3JTJCU2hnNEo4T0RwaSUyRmZhNk5VVXg3YmhBYzhwUHNsNHdScXllSWZVU1ElM0QlM0Q
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 2029079
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
futbollibre.net/css/portada.css?update
172.64.162.27200 OK 0 B URL HTTP/2 futbollibre.net/css/portada.css?update
IP 172.64.162.27:0
GET /css/portada.css?update HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: text/css
age: 2301
cf-bgj: minify
cf-polished: origSize=540
etag: W/"61f45aa6-21c"
last-modified: Fri, 28 Jan 2022 21:05:42 GMT
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 31687700
x-xss-protection: 1; mode=block
cache-control: max-age=691200
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8pbtxk6n4O12uwLBIer5ntU4PWxX9n6yg%2B7qNtSQDOMsgoIm972RkgK278%2FBxO1t3yOWpTJtCPmEkHCq7%2BJRGcf8%2Fs2gdi2l82JmuQlkL6zCytWAi%2FV3AIKKay%2FzQ0UPcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f38087437-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
futbollibre.net/cdn-cgi/apps/head/gmlQlRPbgv9auQSiZyac7cshF4Y.js
172.64.162.27200 OK 0 B URL HTTP/2 futbollibre.net/cdn-cgi/apps/head/gmlQlRPbgv9auQSiZyac7cshF4Y.js
IP 172.64.162.27:0
GET /cdn-cgi/apps/head/gmlQlRPbgv9auQSiZyac7cshF4Y.js HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: loCqtK+D7bz9nrsC9pHVvaleMZpRi/o73+x9iWH5feg6cBRV1Js4EROkYoou4jEcSDP6YCZqMLw=
x-amz-request-id: 854SAKTNDWGRQENK
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 23:23:42 GMT
x-amz-version-id: r3syDYE6o_o.fgELFhfBy27WpFXcze_V
etag: W/"a33693cd879738db2a241a440d9772eb"
cf-cache-status: HIT
age: 75050
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ToCx48FapFA%2FYLqDZI93oDw1iUeKQ3dsxMzHpa5eIppQgU%2BotmfuXPP71EuoXP6fNFs979BuULff0BqebfyyHhewAlSPl8x8u69g8mrnMmUNuDoIzZWaup7eoOlHJGMecls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f3ffd7437-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=futbollibre.net&info=hpfrSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRlA3Y1FtQ1olMkJTTkVGJTJCbGN4cW4wWGM&idsd=-466541342,500084167&rtusCallerId=72&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=futbollibre.net&info=hpfrSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRlA3Y1FtQ1olMkJTTkVGJTJCbGN4cW4wWGM&idsd=-466541342,500084167&rtusCallerId=72&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=rtus&domain=st.chatango.com&sn=FirefoxSyncframe&so=0&topUrl=futbollibre.net&info=hpfrSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2cyUyQnBxSmlrWmZUeUlOdmd5dkJhd2NtRlA3Y1FtQ1olMkJTTkVGJTJCbGN4cW4wWGM&idsd=-466541342,500084167&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=futbollibre.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 563408
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
futbollibre.net/css/bootstrap.css?beta2
172.64.162.27200 OK 0 B URL HTTP/2 futbollibre.net/css/bootstrap.css?beta2
IP 172.64.162.27:0
GET /css/bootstrap.css?beta2 HTTP/1.1
Host: futbollibre.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/embed/?r=Ly92dy1zb3VyY2UuY29tL3N0cmVhbS9kL3ZpeDMuaHRtbA==&tvp&p=xKEWb8NI
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:48 GMT
content-type: text/css
age: 2326
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"62784bae-2376f"
last-modified: Sun, 08 May 2022 23:01:02 GMT
via: 1.1 varnish (Varnish/6.5)
x-cache: MISS
x-cache-hits: 0
x-content-type-options: nosniff
x-varnish: 29992373
x-xss-protection: 1; mode=block
cache-control: max-age=691200
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t7YVp8TPWi1V5ReorGgwtSngaUSlHMq8ovcQNOP7QfL%2B%2BY4%2BMVFyUs5Y2quD2Ag95n4G4bK4W%2BUV6jtHLRumxSRg3Ykb%2B6kQ19Ut7tNmncG6ZxnyzYUQQl2kwN2guE6GNA4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd09f38057437-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
104.21.76.10403 Forbidden 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 104.21.76.10:0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://futbollibre.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: text/html
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IzMzl6otsVVl%2FH7LLLwhvxeZL9MdRZ9p1vB6oZb0h%2B4DkxEr0RrCoFkzDErXblXC0zU%2FNa8CcjRgCyOz34HC4iwWZPzYMLDZIHnI%2BsJWCBDNYVWI%2Bbqf6mJZnj5rh3WQbkv%2ByR8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75ecd0abbb99b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 19:17:50 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 531426
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2