www.rojadirectaenvivo.club/2022/toulouse-vs-psg-en-vivo.php
104.21.7.142301 Moved Permanently 0 B URL HTTP/1.1 www.rojadirectaenvivo.club/2022/toulouse-vs-psg-en-vivo.php
IP 104.21.7.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2022/toulouse-vs-psg-en-vivo.php HTTP/1.1
Host: www.rojadirectaenvivo.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 31 Aug 2022 19:57:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 20:57:44 GMT
Location: https://www.rojadirectaenvivo.club/2022/toulouse-vs-psg-en-vivo.php
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q1eEQqm1SXHgFuXihLNrWQKVCob%2BwUQSObILkeZhuwpwAplFFgmRkmlU4m4Jle75pYWIVa5uAkd3nVvUSuqFFVC7RhwPZ8V2ze8OtCx855WuKKmwrnltx%2FvnbJ5BT0HyQyvnse%2FbabkOYyPG5g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 743856418c7ab511-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 19:21:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Q3paa29UGurFCZN1zxMf6FCV_4TSjPAn5NOaxBbrjvr4OfuOwb1XAw==
Age: 2154
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17352
Expires: Thu, 01 Sep 2022 00:46:56 GMT
Date: Wed, 31 Aug 2022 19:57:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ITH3ALEKfw_ZvReydkcNSvqn5OH05jczUKfyQWQ-daYVYzvjZgS08Q==
age: 63040
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:57:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 888b942029507a51149d121a3240e9d6
93590a3ac3a943506798dba597335cb144a5795d
7d358a347c38b06733ae7e7eae5a02f583d0d3db2a241bf427dff2588d7c6c1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.rojadirectaenvivo.club/2022/toulouse-vs-psg-en-vivo.php
172.67.187.151200 OK 37 kB URL HTTP/2 www.rojadirectaenvivo.club/2022/toulouse-vs-psg-en-vivo.php
IP 172.67.187.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (60166)
Hash ac5f546b6957baa1314c4162b6628844
7accd2af14b77ca7b6b080ea0aeaa62f3dbc114a
f8c3dbbcc2d97b8affc0d67de072c552d607519dfa780c09876b856b4c2d2998
GET /2022/toulouse-vs-psg-en-vivo.php HTTP/1.1
Host: www.rojadirectaenvivo.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wl15QyUbFZw4Pt0L1YQAxwweHGy7yZOHR%2Br7qSIRDKNA9TRDwkv%2FnkQydNq%2Fjf3Ajiob08o3nivlY0rXRTns954za9hcjfEohSsPPfDu5LvIzXUEZMxGd6hRhtPD%2FynYn6A%2BHKSVt0huqb4pjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743856434a3bb518-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
waust.at/s.js
172.67.71.57200 OK 3.7 kB IP 172.67.71.57:0
File type ASCII text, with very long lines (8514), with no line terminators
Hash c07e915b733c6531481354ecf4d43805
1d5b573b2976958d6be41335c90acc64ddfe153d
ce2cd370061c35253545365b7909b3e41065221d7392330813d2d86995edb12d
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: application/x-javascript
last-modified: Mon, 29 Aug 2022 18:12:41 GMT
etag: W/"630d0199-2142"
expires: Thu, 01 Sep 2022 19:45:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qQF6hcMFHccNt1HQqm%2FVqXeXOcWr1VPliuDkTTPJOxpDHk1Ozh%2F4qtlZ0czuYrTd9iJUhrYk87R%2BpJWwYEvU%2FMHUPjZvDXG6R7xTeTpbEZ2X9INrQ%2Fyi5BdL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856453b01b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a98d9a1c3fa6b843faf9824ae17205ee
341c3f5b6c36ace7f5bd16be9cf171338d8651d3
31fdc8ae2ecf58c45d75957676b22dc2da9ffdd9ae519cd64f30196e3ee76ee6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "31FDC8AE2ECF58C45D75957676B22DC2DA9FFDD9AE519CD64F30196E3EE76EE6"
Last-Modified: Tue, 30 Aug 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Wed, 31 Aug 2022 20:50:40 GMT
Date: Wed, 31 Aug 2022 19:57:45 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 19:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 19:47:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nY_HCmkOQlsNEQq3g2nBC_gpbIaXPc4WnfPNaTTDnvvJrDLe7-IKGg==
Age: 2433
jsc.adskeeper.com/r/o/rojadirectaonlinetv.com.989334.js
104.18.5.42200 OK 913 B URL HTTP/2 jsc.adskeeper.com/r/o/rojadirectaonlinetv.com.989334.js
IP 104.18.5.42:0
File type ASCII text, with very long lines (2351)
Hash 37d940227ae71d82f6a4497cb37a9de0
3946b35a3f356d41af4d0f2e460af8df3ed0f09a
378c62f96bd90806b453748c2490dce0ad825619d59807487223bc4976d369bc
GET /r/o/rojadirectaonlinetv.com.989334.js HTTP/1.1
Host: jsc.adskeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/javascript
content-length: 913
x-amz-id-2: dE12gwsbQWja6KHi2JWoNqPwo5kPAwtLt8XP32ABjI0d5xCVTlm60gV55IdIyIHsNMrj2FUAMk8=
x-amz-request-id: 6AZPVKNA2GGABBY6
last-modified: Wed, 15 Jun 2022 13:18:23 GMT
etag: "37d940227ae71d82f6a4497cb37a9de0"
content-encoding: gzip
x-amz-version-id: nInA8tLOm.AZl3rXQtcN1jzKYbm2v6m6
cf-cache-status: HIT
age: 6203
expires: Wed, 31 Aug 2022 23:57:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856472ad91c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jsc.adskeeper.com/r/o/rojadirectaonlinetv.com.989335.js
104.18.5.42200 OK 912 B URL HTTP/2 jsc.adskeeper.com/r/o/rojadirectaonlinetv.com.989335.js
IP 104.18.5.42:0
File type ASCII text, with very long lines (2351)
Hash fe7a94a26177605e5d22057bd2f12a31
803cf10c6ab0409ca0f603e1cbad0251b045e188
86f719a6d9402b09fb6486b635637b9550d225380f066aa9fb794b32d6331fe3
GET /r/o/rojadirectaonlinetv.com.989335.js HTTP/1.1
Host: jsc.adskeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/javascript
content-length: 912
x-amz-id-2: 8wZC7IhlsOEJEhngaQpCd/OslRAcrvTo83MLjE0zWMaugJtVpnRl/Vdism+lSB86MSPtHNJLy3U=
x-amz-request-id: 6T41NDR2J8T8S7DA
last-modified: Wed, 08 Jun 2022 10:27:03 GMT
etag: "fe7a94a26177605e5d22057bd2f12a31"
content-encoding: gzip
x-amz-version-id: lyJwFLeYsHcppjlpdwHqOZ..bXNh8cZC
cf-cache-status: HIT
age: 6203
expires: Wed, 31 Aug 2022 23:57:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856472add1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.rojadirectaenvivo.club
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856484c76b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=68cc4uqb8f&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&y=&a=0&d=0.774&v=27&r=7467
172.67.8.141200 OK 523 B URL HTTP/2 whos.amung.us/pingjs/?k=68cc4uqb8f&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&y=&a=0&d=0.774&v=27&r=7467
IP 172.67.8.141:0
Hash 5e32c16fe8f579ec975ecfddeb911ee6
59c91bc3c0a2b94f0980d33b7dfa0e1235669cac
385230d950793567d93401055457cb8895f81bdfdfb427e8ce321e87fd36520b
GET /pingjs/?k=68cc4uqb8f&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5&c=s&x=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&y=&a=0&d=0.774&v=27&r=7467 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743856472dfeb505-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b19c11d22324e28d9a51a68db9d5da07
2258f0d56f7c7cf46870baf35a12019a7228b46c
d7bba453bb1b0872808e2033553445440f0073fbf5d50a08e9b37e95b2c68877
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D7BBA453BB1B0872808E2033553445440F0073FBF5D50A08E9B37E95B2C68877"
Last-Modified: Mon, 29 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11798
Expires: Wed, 31 Aug 2022 23:14:23 GMT
Date: Wed, 31 Aug 2022 19:57:45 GMT
Connection: keep-alive
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://www.rojadirectaenvivo.club
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a98d9a1c3fa6b843faf9824ae17205ee
341c3f5b6c36ace7f5bd16be9cf171338d8651d3
31fdc8ae2ecf58c45d75957676b22dc2da9ffdd9ae519cd64f30196e3ee76ee6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "31FDC8AE2ECF58C45D75957676B22DC2DA9FFDD9AE519CD64F30196E3EE76EE6"
Last-Modified: Tue, 30 Aug 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3175
Expires: Wed, 31 Aug 2022 20:50:40 GMT
Date: Wed, 31 Aug 2022 19:57:45 GMT
Connection: keep-alive
tsxrdmdlc54q.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 tsxrdmdlc54q.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: tsxrdmdlc54q.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:45 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 61491caa28f947ac73bf8e63dabd8744
2eccb029db27b36d822c4348680e1c4ce9d0733c
52077898472340568519d102c09faa8af4c28c68431b2c4fd666c8069169e2dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 17:56:50 GMT
Expires: Wed, 07 Sep 2022 17:56:49 GMT
Etag: "2eccb029db27b36d822c4348680e1c4ce9d0733c"
Cache-Control: max-age=596943,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74385648aff7b503-OSL
t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&j=
158.69.139.225200 OK 2.4 kB URL HTTP/1.1 t.dtscout.com/i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&j=
IP 158.69.139.225:0
File type ASCII text, with very long lines (2077)
Hash eeddc8bda4ef62b1f028b0ad5eaef558
b7b4f67024d1824f1b8d790601f89f0e34323d74
260af059a282fc14974acae34eed706329c0ae28e223dd4595d316b1c55816a4
GET /i/?l=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F2022%2Ftoulouse-vs-psg-en-vivo.php&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 31 Aug 2022 19:57:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-S: mtl1
Set-Cookie: m=1; Domain=dtscout.com; Expires=Wed, 31-Aug-2022 21:21:05 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Wed, 31-Aug-2022 23:57:45 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1661975865; Domain=dtscout.com; Expires=Fri, 09-Dec-2022 19:57:45 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
X-T: 0.718
Expires: Wed, 31 Aug 2022 19:57:44 GMT
Cache-Control: no-cache
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf3021c6d34af9be078c8a6c24565702
2beae8fffe6734a591f2d2d1a68edf560e6447c4
4ad9c1e1bbe3788333fe9a1e009e5f8ec20a28f2e70d4a6f69f1f9add55f003c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AD9C1E1BBE3788333FE9A1E009E5F8EC20A28F2E70D4A6F69F1F9ADD55F003C"
Last-Modified: Mon, 29 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8110
Expires: Wed, 31 Aug 2022 22:12:55 GMT
Date: Wed, 31 Aug 2022 19:57:45 GMT
Connection: keep-alive
www.capodeportes.fr/play/espndeportes.php
104.21.50.115200 OK 81 kB URL HTTP/2 www.capodeportes.fr/play/espndeportes.php
IP 104.21.50.115:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash c5b67eec5d8c5a5543089ede1d072482
0cb1e61d0d74cc90a90f6115a6f190d6a00c5c5e
8ed10131e8e556819ebd75c7419ca2699b645e0c5edc721f4d5e653760f43a32
GET /play/espndeportes.php HTTP/1.1
Host: www.capodeportes.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ms%2B3WfQcWDk67LtuHUnvixZDyG0OvYgvX0RjtyhHJeu1BjVQrStcjckl18xAHhqSBGhjL%2Fd40QunOCLQOMIu8zCg2LLV%2BvC30mQ9ftAAw6%2F86lmCV0JTK51O6QyCV2aB5Kx3tGLH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 743856464f47b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.186.52101 Switching Protocols 199 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.186.52:0
File type gzip compressed data, from Unix\012- data
Hash 3027a9b57d2707075ca8d7c79d1fe923
34ecd6d68a749f4b8fa0f7c484945b8277b0930a
22bc46a1e11fffe137e31f2580256cffb6ac0e8f4a90454361378687729eb036
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CZ+xBKKGD75yAS7t8H9ZYQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +0H5eKBvPiGLghSRjw7Et6+IEM4=
tsxrdmdlc54q.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 tsxrdmdlc54q.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: tsxrdmdlc54q.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:46 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
dtsedge.com/ping/?t=0&d=rojadirectaenvivo.club
172.67.189.44200 OK 172 B URL HTTP/2 dtsedge.com/ping/?t=0&d=rojadirectaenvivo.club
IP 172.67.189.44:0
Hash f3275074b8058b1831deb77541016820
d9b42db7505cde74322fb8d2c7bcca9a2f2016aa
db00a6d42c51c1d61949f9d9b0b5bbc32b863f57808678cb9e010a8d0a8ba112
GET /ping/?t=0&d=rojadirectaenvivo.club HTTP/1.1
Host: dtsedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: application/javascript
x-t: 0.69
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJRyXpujJwTUGgOJXY6tN%2FUB0JdQCWzykCCy7LuBuLsC0LJDf4ciyhFhUDXrfhBvu%2FzBQmthjn%2Bvi6uaeXUVkhZzNM8uiRn3KDle%2Bk1r9PMay9Kw5%2F6UB0%2BMiJpClA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7438564a5d62b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c6a3e3017c8d76ae5bd8e24c8242438
392368fddc8139126fab63ca8251d0d2f5a39b6d
a8e5653de80fb21ed3d60948c7c52347b2c295611395096e7e7461ae26180caf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E5653DE80FB21ED3D60948C7C52347B2C295611395096E7E7461AE26180CAF"
Last-Modified: Tue, 30 Aug 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4483
Expires: Wed, 31 Aug 2022 21:12:29 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
waust.at/c.js
172.67.71.57200 OK 6.3 kB IP 172.67.71.57:0
File type ASCII text, with very long lines (12955), with no line terminators
Hash c66d31f30cdce034e58a026ad790170d
2aff6290aaa7f7c9b398237a0fad0e58f0be9c04
5d770c93f579e939f10ef41f123cf6d86e9bfd7c98ed2fa46a77eba97c4d5395
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: application/x-javascript
last-modified: Mon, 29 Aug 2022 18:12:41 GMT
etag: W/"630d0199-329b"
expires: Thu, 01 Sep 2022 19:46:09 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 696
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fkV6paKScP5s7usJvH2M8AgOi%2BuMWNdyGx7nXVmx7QezeW0aX%2FLN%2FnB7i5RzPmSjyE%2FA5K3B%2FCRFEPDrM17bibSxFUeCSO3Okm7mld4%2BvzHyEniKMlV1Uj1f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856498961b51d-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b4e422675f5c5f2dbaf41bf16672b884
81e1e47456e2f60aeab7810850c3fe2e97f462a0
fbd11cfbd187789c7a14592bab5c5279b6f4c08b28aa61ff1aa502efdd69f05b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBD11CFBD187789C7A14592BAB5C5279B6F4C08B28AA61FF1AA502EFDD69F05B"
Last-Modified: Wed, 31 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21139
Expires: Thu, 01 Sep 2022 01:50:05 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b4e422675f5c5f2dbaf41bf16672b884
81e1e47456e2f60aeab7810850c3fe2e97f462a0
fbd11cfbd187789c7a14592bab5c5279b6f4c08b28aa61ff1aa502efdd69f05b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBD11CFBD187789C7A14592BAB5C5279B6F4C08B28AA61FF1AA502EFDD69F05B"
Last-Modified: Wed, 31 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21139
Expires: Thu, 01 Sep 2022 01:50:05 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
s-img.adskeeper.com/g/10839585/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTA2LzEwMTkyNC8wMzkxZTEwNDk3MmVhZTgxYzdiMWU4MTc2ODU3ODczNS5qcGVn.webp?v=1661975866-OzmDtS637_YmnGZ4JkOgAEUDae_sya3n0ozFcg2e7mc
92.223.97.97200 OK 6.0 kB URL HTTP/2 s-img.adskeeper.com/g/10839585/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTA2LzEwMTkyNC8wMzkxZTEwNDk3MmVhZTgxYzdiMWU4MTc2ODU3ODczNS5qcGVn.webp?v=1661975866-OzmDtS637_YmnGZ4JkOgAEUDae_sya3n0ozFcg2e7mc
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d36997387c70c9e96ae92cd015eddf84
b06e0281ec7f2a4cd8b00cf7996f33a70dcd60cb
a7838660fd58d63fe4fe6b3335b96fd4ac1d02754565127e7db927c8eb02c075
GET /g/10839585/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8sd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTA2LzEwMTkyNC8wMzkxZTEwNDk3MmVhZTgxYzdiMWU4MTc2ODU3ODczNS5qcGVn.webp?v=1661975866-OzmDtS637_YmnGZ4JkOgAEUDae_sya3n0ozFcg2e7mc HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: image/webp
content-length: 6044
x-mg-request-uuid: 71741737-7f4d-484e-9f50-5dd593147ddc
access-control-allow-origin: *
cache-control: immutable, max-age=31536000
last-modified: Thu, 11 Nov 2021 15:54:42 GMT
cache: HIT
x-cached-since: 2022-07-22T13:55:12+00:00
x-id: sto5-up-gc13
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 18 kB IP 172.64.151.83:0
Hash 2e787f005c9d836c41fde68f0b15f0f3
b6609ea6de841f15dc21c635da9a881e20038463
dcbae9ab07ba797188d8194f61e19b1c2c29ebcc0f85da6ab00852298e9b51ef
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:21 GMT
vary: Accept-Encoding
etag: W/"62d96951-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 189934
expires: Sat, 03 Sep 2022 19:57:45 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7438564a2a4db503-OSL
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
23.38.200.201200 OK 68 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c486343ee4c10598f90221bcd11429b2
2cb8a96e1902c35bfb0de435976d4825988453aa
57d80318fc1f90d0132ad5a686e9b76d0976496c3df1ec993082c321024f5113
GET /AdServer/js/pwt/161673/7165/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Tue, 30 Aug 2022 10:48:20 GMT
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 68097
cache-control: max-age=53438
expires: Thu, 01 Sep 2022 10:48:24 GMT
date: Wed, 31 Aug 2022 19:57:46 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aee681b1e24f5948f6e0a0dc1e949df8
50e94e021905f9b6307ad7bd9925f263e37ed9b5
a014071dd5d03371555c5019741ae8b993afe546a21b9112fd115c6726f0e775
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A014071DD5D03371555C5019741AE8B993AFE546A21B9112FD115C6726F0E775"
Last-Modified: Mon, 29 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3738
Expires: Wed, 31 Aug 2022 21:00:04 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
s-img.adskeeper.com/g/13140388/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzE3NTY4NS8yOTdjN2VhNjc2ZWFhMDM2ZmRiODFiNWU4ODdmY2Y4NS5qcGVn.webp?v=1661975866-FByh0nnYL6WQAZ_QsFDUIaS931CsnxVYGvqud3yO73A
92.223.97.97200 OK 8.2 kB URL HTTP/2 s-img.adskeeper.com/g/13140388/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzE3NTY4NS8yOTdjN2VhNjc2ZWFhMDM2ZmRiODFiNWU4ODdmY2Y4NS5qcGVn.webp?v=1661975866-FByh0nnYL6WQAZ_QsFDUIaS931CsnxVYGvqud3yO73A
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x328, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc2be5ec2d22956147964c468a8ec2ca
7644dc46efece66e6c2ad3a54a4828bbc17b3705
d568da1ec73b1b74979e36960a06acebce92a8e66a94b98a7eed7e89631f1d04
GET /g/13140388/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzE3NTY4NS8yOTdjN2VhNjc2ZWFhMDM2ZmRiODFiNWU4ODdmY2Y4NS5qcGVn.webp?v=1661975866-FByh0nnYL6WQAZ_QsFDUIaS931CsnxVYGvqud3yO73A HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: image/webp
content-length: 8168
x-mg-request-uuid: d67a5055-e87f-4683-896b-5e80ec905bce
access-control-allow-origin: *
cache-control: immutable, max-age=31536000
last-modified: Tue, 07 Jun 2022 08:40:54 GMT
cache: HIT
x-cached-since: 2022-07-22T12:50:58+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
s-img.adskeeper.com/g/13268951/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZl9naWYsZmxfbG9zc3ksZ19mYWNlczphdXRvLHdfNjgwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzEwMTkyNC80NTdiMjhmNWFlN2RiYTg0ODE5ZDJhMmZlYmNhOWYwYi5naWY.gif?v=1661975866-dKqSNe_rOfmrlMviZ1HwisK1RxwLZQUCOyll8unlAtQ
92.223.97.97200 OK 2.2 MB URL HTTP/2 s-img.adskeeper.com/g/13268951/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZl9naWYsZmxfbG9zc3ksZ19mYWNlczphdXRvLHdfNjgwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzEwMTkyNC80NTdiMjhmNWFlN2RiYTg0ODE5ZDJhMmZlYmNhOWYwYi5naWY.gif?v=1661975866-dKqSNe_rOfmrlMviZ1HwisK1RxwLZQUCOyll8unlAtQ
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type GIF image data, version 89a, 492 x 328\012- data
Size 2.2 MB (2243648 bytes)
Hash cedd0aec1df8fb28eee4f09f0d009974
613cdd72947be91fb3a30f1833e63d3445070ff2
cf2c8b8a1736ad5d5141310afc0ba74fc10664f8c1a3c719c52eb25763831a4c
GET /g/13268951/492x328/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzM6MixjX2ZpbGwsZl9naWYsZmxfbG9zc3ksZ19mYWNlczphdXRvLHdfNjgwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA2LzEwMTkyNC80NTdiMjhmNWFlN2RiYTg0ODE5ZDJhMmZlYmNhOWYwYi5naWY.gif?v=1661975866-dKqSNe_rOfmrlMviZ1HwisK1RxwLZQUCOyll8unlAtQ HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: image/gif
content-length: 2243648
x-mg-request-uuid: 9130ec07-417d-447b-ae5d-07b0ef9e730e
access-control-allow-origin: *
last-modified: Thu, 16 Jun 2022 11:31:22 GMT
cache-control: immutable, max-age=31536000
cache: HIT
x-cached-since: 2022-08-27T11:11:15+00:00
x-id: sto5-up-gc12
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e888880cb697808d2ca7ff843528cc22
708840e8720aa33620dfb2a46ab51213d19c7b63
fcbb30c4c4c15b8aa308e49be161729a2f95ea1c17a6c78f17170b7dc4bbfb03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4983
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:46 GMT
Last-Modified: Wed, 31 Aug 2022 18:34:43 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e888880cb697808d2ca7ff843528cc22
708840e8720aa33620dfb2a46ab51213d19c7b63
fcbb30c4c4c15b8aa308e49be161729a2f95ea1c17a6c78f17170b7dc4bbfb03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4983
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:46 GMT
Last-Modified: Wed, 31 Aug 2022 18:34:43 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e888880cb697808d2ca7ff843528cc22
708840e8720aa33620dfb2a46ab51213d19c7b63
fcbb30c4c4c15b8aa308e49be161729a2f95ea1c17a6c78f17170b7dc4bbfb03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5096
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:46 GMT
Last-Modified: Wed, 31 Aug 2022 18:32:50 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e888880cb697808d2ca7ff843528cc22
708840e8720aa33620dfb2a46ab51213d19c7b63
fcbb30c4c4c15b8aa308e49be161729a2f95ea1c17a6c78f17170b7dc4bbfb03
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4983
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:46 GMT
Last-Modified: Wed, 31 Aug 2022 18:34:43 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
overnightpicture.com/85/f5/99/85f599856192bec55237f7e5ac45ce37.js
192.243.61.225200 OK 17 kB URL HTTP/1.1 overnightpicture.com/85/f5/99/85f599856192bec55237f7e5ac45ce37.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (53726), with no line terminators
Hash 59994e58eec29dd57f946049b607cd12
f6fd89233ec859410a98d5c93184d09871637707
1ba7b5b3cf768cda31da18ad2be5ee9a717edee43b98498582e61c6adf93b491
Analyzer Verdict Alert quad9 Sinkholed
GET /85/f5/99/85f599856192bec55237f7e5ac45ce37.js HTTP/1.1
Host: overnightpicture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 19:57:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c51089c7da0eaf61ab38d554ac761b78
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:46 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 454bf4a34cc2c3b7d92eb24cc66d50da
4e4071846b4c4923d6ae3ea978dc8f0cebbd0cbf
848c1b5c17ad0c8a8487f3d8e9e2b57bb6c3d9b99aeefd2afac1df9395f0f3fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "848C1B5C17AD0C8A8487F3D8E9E2B57BB6C3D9B99AEEFD2AFAC1DF9395F0F3FA"
Last-Modified: Tue, 30 Aug 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11038
Expires: Wed, 31 Aug 2022 23:01:44 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 454bf4a34cc2c3b7d92eb24cc66d50da
4e4071846b4c4923d6ae3ea978dc8f0cebbd0cbf
848c1b5c17ad0c8a8487f3d8e9e2b57bb6c3d9b99aeefd2afac1df9395f0f3fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "848C1B5C17AD0C8A8487F3D8E9E2B57BB6C3D9B99AEEFD2AFAC1DF9395F0F3FA"
Last-Modified: Tue, 30 Aug 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11038
Expires: Wed, 31 Aug 2022 23:01:44 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
de.tynt.com/deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r=
67.202.105.32200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r=
IP 67.202.105.32:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!68cc4uqb8f&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 01 Sep 2022 19:57:46 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Wed, 31 Aug 2022 19:57:46 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
lb.eu-1-id5-sync.com/lb/v1
162.19.138.118200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ad6de55634a204ebf09085da977168e
56906b2f63740565b5ad9b7bdc92bd442dc91037
ccc3c07b0a738ec263a0238004eadcf4e8dde943fe6683ad58d417d3a4c52eee
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.rojadirectaenvivo.club
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Wed, 31 Aug 2022 19:57:46 GMT
lb.eu-1-id5-sync.com/lb/v1
162.19.138.118200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ed8c5e5c5d12cec0a70748bb38e2e192
89d73001111029886324fbad41d8e9a3eb77bf83
062a7bbe892ecc93738e69356751a152169fcf684060041f8f2bacafaa5529cd
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.rojadirectaenvivo.club
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Wed, 31 Aug 2022 19:57:45 GMT
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7850dd714332dd19a67c94ef44ff81bd
0a37360a787c1e66daff5394ee6d1e4ea7c172ab
0f7db7738a01fd3bac4465483e99627839ddd46b8eae92ea5c6aeaf3b4a2b8e1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0F7DB7738A01FD3BAC4465483E99627839DDD46B8EAE92EA5C6AEAF3B4A2B8E1"
Last-Modified: Tue, 30 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13780
Expires: Wed, 31 Aug 2022 23:47:26 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:46 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
tsxrdmdlc54q.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 tsxrdmdlc54q.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: tsxrdmdlc54q.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:46 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0&t=%C2%BB%20Toulouse%20vs%20Paris%20Saint-Germain%20En%20Vivo%20%7C%20Ligue%201%20%7C%20J-5 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:46 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 797848c645dcc323aa01a1cc28a1376c
df8dfbb74c047699a37ac0d12d307ede104bbf72
6943eb9fbf099441d20214c206365026c24380abb84c633eca2a78fd8a9f3d25
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "6943EB9FBF099441D20214C206365026C24380ABB84C633ECA2A78FD8A9F3D25"
Last-Modified: Wed, 31 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9284
Expires: Wed, 31 Aug 2022 22:32:30 GMT
Date: Wed, 31 Aug 2022 19:57:46 GMT
Connection: keep-alive
t.dtscout.com/i/?l=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
158.69.139.225200 OK 2.1 kB URL HTTP/1.1 t.dtscout.com/i/?l=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 158.69.139.225:0
File type ASCII text, with very long lines (2077)
Hash 51bd741af3fcc4984d1a753eebfa1141
534664acf69cbbb5c9b97c96b63dd37bdc580da2
3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c
GET /i/?l=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&j=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Cookie: m=1; oa=1; df=1661975865
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 31 Aug 2022 19:57:46 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-S: mtl1
Set-Cookie: m=2; Domain=dtscout.com; Expires=Wed, 31-Aug-2022 21:21:06 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=2; Domain=dtscout.com; Expires=Wed, 31-Aug-2022 23:57:46 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
X-T: 0.699
Expires: Wed, 31 Aug 2022 19:57:45 GMT
Cache-Control: no-cache
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7850dd714332dd19a67c94ef44ff81bd
0a37360a787c1e66daff5394ee6d1e4ea7c172ab
0f7db7738a01fd3bac4465483e99627839ddd46b8eae92ea5c6aeaf3b4a2b8e1
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0F7DB7738A01FD3BAC4465483E99627839DDD46B8EAE92EA5C6AEAF3B4A2B8E1"
Last-Modified: Tue, 30 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13779
Expires: Wed, 31 Aug 2022 23:47:26 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:46 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5b381670d9ac3e7e86263f848ff4e746
96cb4a1569836ff12fabb5e1329e79048c88457f
8a51466b40e37414710dfc667b3db478c17e6964d78efc2134f05d0bded5f7c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A51466B40E37414710DFC667B3DB478C17E6964D78EFC2134F05D0BDED5F7C5"
Last-Modified: Tue, 30 Aug 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=699
Expires: Wed, 31 Aug 2022 20:09:26 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
151.101.85.229200 OK 141 kB URL HTTP/2 cdn.jsdelivr.net/npm/clappr@latest/dist/clappr.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141142 bytes)
Hash 7e7fdfacdb1943ea810449001d165a53
fc230e8b4a933497a2da4a783574a5b07b889a7e
d530a67ca2ed5e6d11c2f4ef080c8b8c1cc55a587af2ef45da9a9415ebd788cf
GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 31 Aug 2022 19:57:47 GMT
age: 28873
x-served-by: cache-fra19177-FRA, cache-bma1633-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 141142
X-Firefox-Spdy: h2
voraciousglove.net/css/embed.min.css?v=0.4
172.67.213.112200 OK 1.4 kB URL HTTP/2 voraciousglove.net/css/embed.min.css?v=0.4
IP 172.67.213.112:0
File type ASCII text, with very long lines (1263)
Hash b93425132ca38c043598f0f8b51126d4
c5d4fbc792f208363fabde84858e667db7e124a6
2d1612cdb8fb3c51f74c2d8c10b66c67ad8bc5d49eca4984e44cfec03f7ba09f
GET /css/embed.min.css?v=0.4 HTTP/1.1
Host: voraciousglove.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/embed/q4whtg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: text/css
last-modified: Thu, 09 Jun 2022 09:49:16 GMT
etag: W/"62a1c21c-4f0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8DxZVp9bzLwwV%2FlPjTiF%2BwthA846WOFmVPXNnDbB4rYYbxiNB9iTVlmxDLXcyZKgIeDHKVle18F5aYd66Y6OpWTmfUsWjwqInry9Me%2BGmtdhSl7QgSs7PQpLgTccTUdIbTlU4%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385650dd9fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8617
Expires: Wed, 31 Aug 2022 22:21:24 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8617
Expires: Wed, 31 Aug 2022 22:21:24 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:47 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9843fcd5eb49c75b942e3dd042f3a931
ff6de19656bc0ee5649c1367448116a9576a690a
8e9679e05e1b2194e44a962a19f226793b5d7fc2334df64f8dd560498532ad3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d2b8cd4-2da8-44e6-9499-b1190e129379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6266
x-amzn-requestid: 82231f45-328a-479a-b346-108fe6a0c190
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjU6bEP5IAMFaGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630acea8-6545154a39b44bb04d3bc18c;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P_a-E2SVJUpYrlOzoX9kDtHoAeyEpcqEXau-5wDupR-9AAk3gQgaHQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 06:17:12 GMT
age: 49235
etag: "ff6de19656bc0ee5649c1367448116a9576a690a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b2c036e67f8c39c136f6c69b0922eb1
98e27f0dafd7b1b49e159ee038b41a811096a2d0
9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 03y3JoF38R7gjBYS3gHyOsivob68ykKlwvAIFEwiat2FjYfKWh-afA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 00:33:08 GMT
age: 69879
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 084c7b9f1244ec72236ab517787af1e2
18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb
2ea7697ebc332bec201ffeaed54a738869b6c64784916574db2c7e6a7990fb3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4a0e321-c414-4af7-9075-ed1965872194.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5911
x-amzn-requestid: ff3b12df-1798-40bb-bf02-ad198710da96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdcGHFGYoAMFw_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630873c0-00cd86e97d0687c702a49ecb;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:18:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: G0AjEjILxGDk5d7Vj_VpTvQ5wnjh4bNOl_ogtsJlDYSa3ZxfOlF78Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 18:11:34 GMT
age: 6373
etag: "18d7ffa17365f5f43f3ed702ef2ba80d9a7a12cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db8548465788b6e73fc19c63575f7d32
0502c55da685e6a5bd3506b55cd96d639346ed82
c125a0828629e46996832fd04555f503e62c0dc0e8506f069487ba8ebb2db4a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F136de3c9-bb24-461a-b29f-fe7b7336b28c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7582
x-amzn-requestid: 65712628-13c0-42e2-a090-b21fde8bd026
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xg0rgE_hIAMF1ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309ce49-5feadfad6c342ae96a5a26d7;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:56:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AaCY2PsUVPfvdDwb7itAqcRV9NZPkDxFs1QEiYZ_FjTNp9sH4bn5rg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 05:43:06 GMT
age: 51281
etag: "0502c55da685e6a5bd3506b55cd96d639346ed82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash c7e6f61c5dccec076db91ecb40582fb8
2c0f3e3a074a79e0054ae112bff858b1a46f5a05
ea692d8908ab3a66fa9193eb2666ea2f4981f04967d0e3a7a0f87d6467468ccc
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:47 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9013E8C233C6D70F71A8DA58F987DC74BE5C96CC"
Expires: Thu, 01 Sep 2022 07:00:00 GMT
Last-Modified: Wed, 31 Aug 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1245
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74385651c8451bfe-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcb5acc5186b678254184c5dac12079
d7c84b42a0dd5b86a0668127698fd5f25b647fcb
8173103eda58bf2f1af2d077fc90c2c1b6d2a93265092a9c3152b686e05a4f9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb21182a7-c320-4c58-9822-7605821e65a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5910
x-amzn-requestid: 935b97da-1473-4863-bad2-a732709de9d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslNHEfTIAMFWrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e8253-150847db7280350c19e2e464;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4aUTNIPL-Pl5Vz-xh4gI21QtLwdmMMrc7NJGLWRJPz0oJtvnFPfk8w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:45:06 GMT
age: 79961
etag: "d7c84b42a0dd5b86a0668127698fd5f25b647fcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zYT0vF7Bxa5m84D12jI2w_A-MzR3wIMBOb0ubTEdNMlpYUes5aYdlQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 21:48:04 GMT
age: 79783
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
178.250.0.157200 OK 24 kB URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
IP 178.250.0.157:0
Hash 0ed0c90b0977d20c371297c88bd0aed5
a2cf647d396cc1ac284dfc3e685f7721a0eeda0f
9047ff4242a85436c6df041aa4b5d84617bd2059314d93d9b8cad81210d4d68b
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.rojadirectaenvivo.club/
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.rojadirectaenvivo.club
server-processing-duration-in-ticks: 372947
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 31 Aug 2022 19:57:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
178.250.0.157200 OK 11 kB URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (32480), with no line terminators
Hash 0ac9d0e3dd0a77efb1af7254e86875f0
2f0fbd241f32dfb57ba9a41688aac49ee36944fb
f2b79536c27930d43407855a5b0187634fa1336fccbbec08d48ea489163da6cb
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.rojadirectaenvivo.club
server-processing-duration-in-ticks: 742944
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:47 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=capodeportes.fr&_ss=2b4pzlfbqa&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=27kk&_cb=_dtspv.c
158.69.139.225200 OK 51 B URL HTTP/1.1 t.dtscout.com/pv/?_a=v&_h=capodeportes.fr&_ss=2b4pzlfbqa&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=27kk&_cb=_dtspv.c
IP 158.69.139.225:0
File type ASCII text, with no line terminators
Hash 1e718e8bc918c5e41b2c6e7f38970619
b90d1f3dddf36098c9bb42bbc2d354cf1b2667ec
bb22dfc099cbea944f62f08f99c46ca0ea2f8dd57a6ff59f15506ef424bad445
GET /pv/?_a=v&_h=capodeportes.fr&_ss=2b4pzlfbqa&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=27kk&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Cookie: m=2; oa=2; df=1661975865
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 31 Aug 2022 19:57:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-T: 0.165
X-C: 0
Expires: Wed, 31 Aug 2022 19:57:46 GMT
Cache-Control: no-cache
ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!68cc4uqb8f&lm=0&ts=1661975865726&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:47 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aae619e9c9df409a5ce7e334933f7695
3c7cb40c06fe96b8a8bc4aa51e2b663a1cd02faf
8fe8ccebe051683a3c1b440e53c4c78f080a8cc200c99c0a31f3fb57a6cfd0a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8FE8CCEBE051683A3C1B440E53C4C78F080A8CC200C99C0A31F3FB57A6CFD0A6"
Last-Modified: Tue, 30 Aug 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3109
Expires: Wed, 31 Aug 2022 20:49:36 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ae7e30b707423b77f18513882c299e3e
0b04c3036478d60b29ab02efd4ed237d7fa9927d
dac4835ca2e650730827ae6f181dd0b2b59fc8059947a9896941af13c5a1a2d2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 19:57:47 GMT
Last-Modified: Wed, 31 Aug 2022 18:40:10 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: epnrXJxsQTQeHO0OKrz324BR3qrhFlA7cqp9T5NBLdHEd_x10PFIsA==
Age: 4657
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash a26e9f7fa3a3d8dd4fa84e3feef506dc
ffe5953a1c38d159b873a20edb11128065a42984
89f56a9c56f25c03240b7c18a0507d3051db7f97ccf9e6bba9b6360db7bb079c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capodeportes.fr
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capodeportes.fr
access-control-allow-credentials: true
set-cookie: uid_id2=853dd1b6-c651-48c5-afea-22d7c055ba44:1:1; expires=Sat, 28 Aug 2032 19:57:47 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 797848c645dcc323aa01a1cc28a1376c
df8dfbb74c047699a37ac0d12d307ede104bbf72
6943eb9fbf099441d20214c206365026c24380abb84c633eca2a78fd8a9f3d25
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "6943EB9FBF099441D20214C206365026C24380ABB84C633ECA2A78FD8A9F3D25"
Last-Modified: Wed, 31 Aug 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9283
Expires: Wed, 31 Aug 2022 22:32:30 GMT
Date: Wed, 31 Aug 2022 19:57:47 GMT
Connection: keep-alive
d24ak3f2b.top/advertisers.js
64.58.113.244200 OK 0 B URL HTTP/1.1 d24ak3f2b.top/advertisers.js
IP 64.58.113.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: d24ak3f2b.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 31 Aug 2022 19:57:47 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
awstats.cloud/api/event
172.67.168.34202 Accepted 2 B IP 172.67.168.34:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /api/event HTTP/1.1
Host: awstats.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 117
Origin: https://voraciousglove.net
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: FxCGPwJZZQnhzlsF3dcN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uVovCgwlseKv6gk3%2F6FPXJ3PfOy0taIqjkmiQBXeOcgkSpVIqiUBzPkWmx%2Bp2LTJu8m5c8dweYU4tAag8J4YJk9wj1zYoqwOnfO8Fl5l50ADndReKsYB909NTMMgm7TT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74385654bbf4fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
swarm.video/nsns.js
172.67.182.131200 OK 130 kB IP 172.67.182.131:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size 130 kB (130513 bytes)
Hash 12032cab8670773aa42ff113cb2b82cc
fd005311e0a88ee1ba06e982e56df24f59b40fea
ff22f3cf74777bbbe1b9d3ea241cd941aec59e848d9254fbbd90d8ee5e2ba2f5
GET /nsns.js HTTP/1.1
Host: swarm.video
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=519718
etag: W/"7ee26-1814955381e"
last-modified: Thu, 09 Jun 2022 16:38:50 GMT
x-powered-by: Express
cf-cache-status: HIT
age: 3967089
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2BQkM6d8hTQtCkaG7eGIIhAx%2Belklp08hS%2BmZgRyLoz0YaIvjOO1SBJGOd58L7K1eH9RptLOuGBmN9UmbLIU8eyCg5%2BEvJUrdvYsixNJPUsdxugN86%2BoS5GRH5HLjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385653befa0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf
151.101.85.229200 OK 24 kB URL HTTP/2 cdn.jsdelivr.net/npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf
IP 151.101.85.229:0
Hash 36ed02514f53a14fa759d529ee8d4043
1a657f977c5ef612ed2f7f72d59a9899d34100f8
6d5dc76b4531522b0c8317823ac0590ef63a1a7847add5920cd46b0a8b13ba6d
GET /npm/clappr@latest/dist/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://voraciousglove.net
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/ttf
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"7f8c-Sx71jkdreJyXUhg0q996L9ZtbK8"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 31 Aug 2022 19:57:47 GMT
age: 20038
x-served-by: cache-fra19182-FRA, cache-bma1648-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 18775
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:47 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5bb67337bc88b4b77fce885d0b1cce87
0b340c2c596052b059e57c64cc54524ff0693419
616eaf40c17e647d10e7dd1929af7ffbf7546dc70c753d43d3997231c89978e0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 05:22:27 GMT
Expires: Wed, 07 Sep 2022 05:22:26 GMT
Etag: "0b340c2c596052b059e57c64cc54524ff0693419"
Cache-Control: max-age=551677,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74385656dd62b503-OSL
youradexchange.com/script/suurl4.php?r=5954546&cbur=0.2613101957503542&cbiframe=1&cbWidth=647&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fwww.capodeportes.fr%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=befirstcdn.com&aggr=0
35.190.41.116200 OK 725 B URL HTTP/2 youradexchange.com/script/suurl4.php?r=5954546&cbur=0.2613101957503542&cbiframe=1&cbWidth=647&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fwww.capodeportes.fr%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=befirstcdn.com&aggr=0
IP 35.190.41.116:0
File type JSON data\012- , ASCII text, with very long lines (901)
Hash 8f9167c2a5e2b2b4faa8661f98c4ad35
c9a5aeb141ac01c8d899cefb29fb427bbb5eaf3f
e10c6f99c224403bda1d13c510e73415336a5e14a55f4d95a520ac7297ceceb7
GET /script/suurl4.php?r=5954546&cbur=0.2613101957503542&cbiframe=1&cbWidth=647&cbHeight=400&cbtitle=&cbpage=https%3A%2F%2Fwww.capodeportes.fr%2F&cbref=&cbdescription=&cbkeywords=&cbcdn=befirstcdn.com&aggr=0 HTTP/1.1
Host: youradexchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://voraciousglove.net/
Origin: https://voraciousglove.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&t=CAPODEPORTES.NET%20-%20embedded%20player HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:48 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
104.21.234.254200 OK 25 kB URL HTTP/2 addresseepaper.com/sfp.js
IP 104.21.234.254:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 04397c0b12d7f56419dc2487752665be
41af0a65b748715ca9555608ea1b5b0ade36f769
1a9e0a8296c80c94d0bb0bd687d83a10f1dc4400c9ddba1e33525adb136d9867
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 255438ab268b8af7774855e187e0d2f2
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 31 Aug 2022 19:57:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6VtWn5bGjOgEWXkbRfVdatiKlxIgXrIe3zIh4kn6RPuobo4j8Fzj4Sif3fQF13WWExgK7m%2FkRXvRv0YEKQGVJQORbngv7L5oDDu8UlpwrNr1TGBhjz9SWfd0zLzt65lysHIeIXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856509c3fc4db-DUS
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
67.202.105.32200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F
IP 67.202.105.32:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!l8iv3nz20t&dn=TC&cc=1&r=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 01 Sep 2022 19:57:48 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Wed, 31 Aug 2022 19:57:47 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:48 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:48 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!l8iv3nz20t&lm=3&ts=1661975867660&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 31 Aug 2022 19:57:48 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash a26e9f7fa3a3d8dd4fa84e3feef506dc
ffe5953a1c38d159b873a20edb11128065a42984
89f56a9c56f25c03240b7c18a0507d3051db7f97ccf9e6bba9b6360db7bb079c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capodeportes.fr
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Cookie: uid_id2=853dd1b6-c651-48c5-afea-22d7c055ba44:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:48 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capodeportes.fr
access-control-allow-credentials: true
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.192.162.188200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.192.162.188:0
File type ASCII text, with no line terminators
Hash a26e9f7fa3a3d8dd4fa84e3feef506dc
ffe5953a1c38d159b873a20edb11128065a42984
89f56a9c56f25c03240b7c18a0507d3051db7f97ccf9e6bba9b6360db7bb079c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.capodeportes.fr
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Cookie: uid_id2=853dd1b6-c651-48c5-afea-22d7c055ba44:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:48 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.capodeportes.fr
access-control-allow-credentials: true
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f9ef55f3e6427b12e52350dc9eabedcf
6ac18d3d2830df980c4a61d083eafc0b957f84be
9ebf4697a5e08cea96a502ab7ef237c6bb459d22bfb813d50e5ca6fccdee2cfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EBF4697A5E08CEA96A502AB7EF237C6BB459D22BFB813D50E5CA6FCCDEE2CFD"
Last-Modified: Tue, 30 Aug 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14082
Expires: Wed, 31 Aug 2022 23:52:30 GMT
Date: Wed, 31 Aug 2022 19:57:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f9ef55f3e6427b12e52350dc9eabedcf
6ac18d3d2830df980c4a61d083eafc0b957f84be
9ebf4697a5e08cea96a502ab7ef237c6bb459d22bfb813d50e5ca6fccdee2cfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EBF4697A5E08CEA96A502AB7EF237C6BB459D22BFB813D50E5CA6FCCDEE2CFD"
Last-Modified: Tue, 30 Aug 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14082
Expires: Wed, 31 Aug 2022 23:52:30 GMT
Date: Wed, 31 Aug 2022 19:57:48 GMT
Connection: keep-alive
id5-sync.com/g/v2/231.json
141.95.98.67200 216 B URL HTTP/1.1 id5-sync.com/g/v2/231.json
IP 141.95.98.67:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f8a59585293ea6c991037a408341a29e
7cf7e830292b610645538d039ad02af5512fd464
e2eda13e00e1f6d0f1bb0ae8372a1662e2eb5e7335ed4664fff392e9a9cc4368
POST /g/v2/231.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 390
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.rojadirectaenvivo.club
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Wed, 31 Aug 2022 19:57:48 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
id5-sync.com/g/v2/231.json
141.95.98.67200 216 B URL HTTP/1.1 id5-sync.com/g/v2/231.json
IP 141.95.98.67:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 89a28c43189dfe750d59ebb43a7bfc62
7a7cb7c47307cb7677363440373d9ab4fa88670a
fe532df8133f4b2fad27e794ddadfd7aec52489d125a9749071f399a6682a613
POST /g/v2/231.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 390
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.rojadirectaenvivo.club
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Wed, 31 Aug 2022 19:57:48 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 6d6552f0a6fd7619df80cb9919c86d6a
1e05f27ec498c8f1b97a78da3d6a33c9a3beade8
31f32840331bc761fc0270f208221e22e758e28f03a84b297445f01be1e63dd0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 Aug 2022 19:57:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 28 Aug 2022 18:35:58 GMT
Expires: Sun, 04 Sep 2022 18:35:57 GMT
Etag: "1e05f27ec498c8f1b97a78da3d6a33c9a3beade8"
Cache-Control: max-age=340087,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7438565ccfb1b503-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f86e5174c45e7dff486006a914664555
6d2e065eb83bcd0c12d3060f8059d9a82a78e9f8
622635990c9ad24dcd427f59a9631befb33c9dc8fa25d265c5679c164077fc60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "622635990C9AD24DCD427F59A9631BEFB33C9DC8FA25D265C5679C164077FC60"
Last-Modified: Mon, 29 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5849
Expires: Wed, 31 Aug 2022 21:35:18 GMT
Date: Wed, 31 Aug 2022 19:57:49 GMT
Connection: keep-alive
intellipopup.com/Wa.asp?_=BAYAYw-9OgFjD706gAGBAsAAIGitnBUmwqxEU4P2DzUR-TYg_J4Q4yIsg0-PW6mXfC77wQBHMEUCIQD7_EltAKuQDDUoJatRT_jwqqwYr3dh0oRRbO2UnkJ2KgIgXY9KyFiOkLn7ZTjC_Z6AS98pwkBFIU3Wxvw-suzlzMA&v=4&BLcQjdZY=3754710&minBid=&XnDAEmgw=0,0&nFhdDAog=&qDHIvyzm=&s=1280,1024,1,1280,1024,0
216.21.13.26200 OK 778 B URL HTTP/2 intellipopup.com/Wa.asp?_=BAYAYw-9OgFjD706gAGBAsAAIGitnBUmwqxEU4P2DzUR-TYg_J4Q4yIsg0-PW6mXfC77wQBHMEUCIQD7_EltAKuQDDUoJatRT_jwqqwYr3dh0oRRbO2UnkJ2KgIgXY9KyFiOkLn7ZTjC_Z6AS98pwkBFIU3Wxvw-suzlzMA&v=4&BLcQjdZY=3754710&minBid=&XnDAEmgw=0,0&nFhdDAog=&qDHIvyzm=&s=1280,1024,1,1280,1024,0
IP 216.21.13.26:0
File type ASCII text, with very long lines (1089), with no line terminators
Hash aec3ce8dd5f56dc6fb76693a34193607
fb4d419651410d25ab03bba612b18e56a65ec61e
cf2fd344a5c1f5b0b4b7b1343779b9a84a286d4453ae7a55b62702d7697e0055
GET /Wa.asp?_=BAYAYw-9OgFjD706gAGBAsAAIGitnBUmwqxEU4P2DzUR-TYg_J4Q4yIsg0-PW6mXfC77wQBHMEUCIQD7_EltAKuQDDUoJatRT_jwqqwYr3dh0oRRbO2UnkJ2KgIgXY9KyFiOkLn7ZTjC_Z6AS98pwkBFIU3Wxvw-suzlzMA&v=4&BLcQjdZY=3754710&minBid=&XnDAEmgw=0,0&nFhdDAog=&qDHIvyzm=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: intellipopup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 6
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
content-type: application/javascript; charset=utf-8
set-cookie: PP_CV=yes; expires=Wed, 31-Aug-2022 20:57:49 GMT; Max-Age=3600
fraudcheck=4bc5b6ca4c33e53eb9aad3056c21a084; expires=Fri, 30-Sep-2022 19:57:49 GMT; Max-Age=2592000; path=/; domain=.popads.net
PopAds_CF_Pass=1; expires=Thu, 01-Sep-2022 01:57:49 GMT; Max-Age=21600
link: <https://www.profitablecpmgate.com>;rel=preconnect
content-length: 778
content-encoding: br
vary: Accept-Encoding
date: Wed, 31 Aug 2022 19:57:49 GMT
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=85f599856192bec55237f7e5ac45ce37&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=85f599856192bec55237f7e5ac45ce37&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=85f599856192bec55237f7e5ac45ce37&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 19:57:49 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6375e112d8c1beb4e442936a9c9ad035
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=2406ed1c27e1d249b5b2ba8b79fec8c1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=2406ed1c27e1d249b5b2ba8b79fec8c1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=853dd1b6-c651-48c5-afea-22d7c055ba44&eb=ecca27e85eb071c355aaa120865c0cc2&te=f7dfd0652d10ff8b14a5022fb9b430fe&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=1&pk=2406ed1c27e1d249b5b2ba8b79fec8c1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 19:57:49 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7a2c824796e3b60809e40890537317da
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6bc4ec86508a3a7e59c9617e599d5523
b0ab24b5e233a44416e138adca6910655ee212c7
fb29b3ff704dd20fef28aa42a53bb4925eb6f07241c9db0f4e67af35435da624
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB29B3FF704DD20FEF28AA42A53BB4925EB6F07241C9DB0F4E67AF35435DA624"
Last-Modified: Mon, 29 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13782
Expires: Wed, 31 Aug 2022 23:47:31 GMT
Date: Wed, 31 Aug 2022 19:57:49 GMT
Connection: keep-alive
www.profitablecpmgate.com/favicon.ico
192.243.61.225200 OK 0 B URL HTTP/1.1 www.profitablecpmgate.com/favicon.ico
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.profitablecpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 31 Aug 2022 19:57:49 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2858157b17af4ded960f4241f3d3ebd8
Strict-Transport-Security: max-age=0; includeSubdomains
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Sat, 01 Oct 2022 19:57:45 GMT
etag: W/"49EMMoGNl608re5Cihgheg=="
cf-cache-status: HIT
age: 79805
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385647784cb518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.adskeeper.co.uk/images/adskeeper_svg.svg
104.18.27.174200 OK 0 B URL HTTP/2 cdn.adskeeper.co.uk/images/adskeeper_svg.svg
IP 104.18.27.174:0
GET /images/adskeeper_svg.svg HTTP/1.1
Host: cdn.adskeeper.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: image/svg+xml
x-amz-id-2: 9+wK7//B9wiKymVhwJBS49yIWsknA1BYnHtl2rpiLd1F4bVgMRR1xL0U37+qHDuhswdKTk5XkFw=
x-amz-request-id: P23ZACW8NK08CPPP
last-modified: Tue, 08 Dec 2020 08:34:59 GMT
etag: W/"93f6d1136fb77e38a0a2c72108588f09"
x-amz-meta-s3cmd-attrs: atime:1607416491/ctime:1607416491/gid:0/gname:root/md5:93f6d1136fb77e38a0a2c72108588f09/mode:33206/mtime:1607416491/uid:0/uname:root
x-amz-version-id: null
cf-cache-status: HIT
age: 4911
expires: Wed, 31 Aug 2022 23:57:46 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7438564c6ba10b41-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
voraciousglove.net/js/jquery.min.js
172.67.213.112200 OK 0 B URL HTTP/2 voraciousglove.net/js/jquery.min.js
IP 172.67.213.112:0
GET /js/jquery.min.js HTTP/1.1
Host: voraciousglove.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/embed/q4whtg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript
last-modified: Mon, 09 Nov 2020 18:05:02 GMT
etag: W/"5fa984ce-15283"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1313
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BupnlFaUBsDsm86OLgEfEn1YNgUz2HB%2BixGYE4%2BXWX7J4otKZ6HM%2FcSkis3%2BAEkAYPa4b4RBjE4TjR4wcBfuIT3m5hWG%2FsljKbuLmp7TIdxg8JV%2BQtxX2hIeyOqNmmIP8mtDcDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385650dda0b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
befirstcdn.com/script/yzfdmoan.js
104.16.164.101200 OK 0 B URL HTTP/2 befirstcdn.com/script/yzfdmoan.js
IP 104.16.164.101:0
GET /script/yzfdmoan.js HTTP/1.1
Host: befirstcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsuTuJI-VJIb4q9Lm7khUcugBjE8RF8V_nO4Od2SG2Ofd813ttq3KKDXThWj9tYtVgrYZhMyv8r3drDSU8QSc0dtu3C1PYH
x-goog-generation: 1661773569261215
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 100513
x-goog-hash: crc32c=WehUDA==, md5=9jHiYpdGH4yLDJgV+eejRA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
expires: Wed, 31 Aug 2022 23:57:47 GMT
cache-control: public, max-age=14400
last-modified: Mon, 29 Aug 2022 11:46:09 GMT
etag: W/"f631e26297461f8c8b0c9815f9e7a344"
cf-cache-status: HIT
age: 3184
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385654a837b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.intellipopup.com/jquery.PrintArea.min.js
185.76.9.16200 OK 0 B URL HTTP/2 www.intellipopup.com/jquery.PrintArea.min.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /jquery.PrintArea.min.js HTTP/1.1
Host: www.intellipopup.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:45 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
expires: Tue, 06 Sep 2022 13:48:54 GMT
access-control-allow-origin: *
link: <https://intellipopup.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1662472134
server: CDN77-Turbo
x-77-nzt: AblMCQ2ewmf/86cBAA
x-77-nzt-ray: xJ9ZupJ7X2Q
x-cache: HIT
x-age: 108531
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.rojadirectaenvivo.club
server-processing-duration-in-ticks: 958639
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
voraciousglove.net/embed/q4whtg
172.67.213.112200 OK 0 B URL HTTP/2 voraciousglove.net/embed/q4whtg
IP 172.67.213.112:0
GET /embed/q4whtg HTTP/1.1
Host: voraciousglove.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: text/html; charset=UTF-8
set-cookie: hf1=1; expires=Thu, 01-Sep-2022 07:57:46 GMT; Max-Age=43200; path=/
hf2=1; expires=Thu, 01-Sep-2022 07:57:46 GMT; Max-Age=43200; path=/
hf4=1; expires=Thu, 01-Sep-2022 19:57:46 GMT; Max-Age=86400; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bvn6aQaL6EQiV36zUdP2W2AN5jVnvkKLyrCieAfRT6L0F5VbxuXcgD0PGKOWfx6DpF9ul9iVQLixe5pds%2FVQ2rHirVoJfrLUxGfsdMJG9ilRTegS1xQbgWm9%2BwFthO0ycVOHtnA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7438564f0af8b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
content.zeotap.com/sdk/idp.min.js
104.22.25.87200 OK 0 B URL HTTP/2 content.zeotap.com/sdk/idp.min.js
IP 104.22.25.87:0
GET /sdk/idp.min.js HTTP/1.1
Host: content.zeotap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:49 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdviCACMYcvEBxGeF20KWNYK-cxq4nhgDNqHL7CSyWMlkZfwM63M4rIQYbBuDLyUw8w6dk9BbypX0dhIviA-Bss4OIyCNMMu
x-goog-generation: 1645001943546675
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 56329
x-goog-hash: crc32c=ezzPYw==, md5=qxo0a7EWC8pYwVGgerhYKw==
x-goog-storage-class: STANDARD
vary: Origin, Accept-Encoding
age: 1319
last-modified: Wed, 16 Feb 2022 08:59:03 GMT
etag: W/"ab1a346bb1160bca58c151a07ab8582b"
cache-control: public,max-age=3600
cf-cache-status: HIT
server: cloudflare
cf-ray: 74385662087d0b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&domain=www.rojadirectaenvivo.club&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.rojadirectaenvivo.club/
Origin: https://www.rojadirectaenvivo.club
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.rojadirectaenvivo.club
server-processing-duration-in-ticks: 441048
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=1.382&v=27&r=9051
172.67.8.141200 OK 0 B URL HTTP/2 whos.amung.us/pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=1.382&v=27&r=9051
IP 172.67.8.141:0
GET /pingjs/?k=l8iv3nz20t&t=CAPODEPORTES.NET%20-%20embedded%20player&c=c&x=https%3A%2F%2Fwww.capodeportes.fr%2Fplay%2Fespndeportes.php&y=https%3A%2F%2Fwww.rojadirectaenvivo.club%2F&a=0&d=1.382&v=27&r=9051 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 743856558d37b505-OSL
X-Firefox-Spdy: h2
creepingbrings.com/sfp.js
104.21.234.233200 OK 0 B URL HTTP/2 creepingbrings.com/sfp.js
IP 104.21.234.233:0
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.capodeportes.fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: e75fa544a0747021b36fc7cb8cb7438c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 31 Aug 2022 19:57:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KQCO6VPmqJpceFSctplaMVyXU%2FAJI97wthzPbcZ3PGl%2FSMxLUM4RvEcC3H8P1OIO1Mqx6NUnuCdTjWfL8%2FtruBM%2FLJ%2B3aNvETZR29OrLzSK0rtsFq6CH%2FAJnNqiWPaJipsm8U%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74385653cc9ccb0d-DUS
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
awstats.cloud/js/plausible.js
172.67.168.34200 OK 0 B URL HTTP/2 awstats.cloud/js/plausible.js
IP 172.67.168.34:0
GET /js/plausible.js HTTP/1.1
Host: awstats.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://voraciousglove.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:47 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZVVlsafDh57eHQsGGUxc6X9XYxyuEJsKYBLYEJqcB9FjulzsDpG6TldO5Qo6g5Zjx9YUttKz5kt2V4KXsTnsG3hWNNudyyTl4KsSNaf9WdODrmpeoTAKsiPJ2Yi1%2BFz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 743856512ac2fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
172.67.38.106200 OK 0 B URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 172.67.38.106:0
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rojadirectaenvivo.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 31 Aug 2022 19:57:46 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: ZUddLZ7O1OXf5c7mbsWs7TcoRwu0BI4ksS03RiIChmRO18bIYMRt5FOdSTEoWZMKdnrBtFadaeE=
x-amz-request-id: 5NBR7FENRJFAM1VR
last-modified: Wed, 31 Aug 2022 11:00:45 GMT
etag: W/"b17c28d6fd88a6b12feea5c52e9a7485"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 59
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7438564cd9db0af6-OSL
content-encoding: gzip
X-Firefox-Spdy: h2