Report - repelisplus.zip

Report Overview

Visited public
2025-02-15 03:36:15
Tags
URL
repelisplus.zip
Finishing URL
repelisplus.lat/
IP / ASN
188.114.96.1
#13335 CLOUDFLARENET
Title
REPELISPLUS - Películas y Series Online en Repelis ✔️

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
na.rolpenszimocca.com	unknown	2023-06-26	2023-06-26	2025-02-08	431 B	1.5 kB	23.109.170.98
schoolhangoverearlier.com	unknown	2024-11-01	2025-02-01	2025-02-08	456 B	576 B	172.240.253.132
repelisplus.lat	unknown	2023-07-27	2021-11-18	2025-02-08	1.8 kB	94 kB	172.67.223.134
services.addons.mozilla.org	6161	1998-01-24	2012-05-21	2025-02-12	695 B	1.9 kB	151.101.129.91
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2025-02-12	533 B	480 B	35.244.181.201
repelisplus.zip	unknown	2024-10-26	2024-10-26	2025-01-25	484 B	40 kB	188.114.96.1
tbjah.club	unknown	2025-01-29	2025-02-01	2025-02-08	6.7 kB	291 kB	104.21.57.101
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-02-12	2.2 kB	52 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-02-15	medium	rolpenszimocca.com	Sinkholed
2025-02-15	medium	schoolhangoverearlier.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	repelisplus.lat/	ScriptElement	33 B	2023-03-09	2025-04-07
Pretty URL repelisplus.lat/ IP 172.67.223.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 23:38 Last Seen2025-04-07 22:03 Times Seen7 Hash 7958c54ad87f15a43575dfb78031e2b2 d9372e46911558721383761b75607f442153c9f2 008ffcd4650f571fd292f22e517f02cc94a96e63d37b375dc874fe4f38164f83 Loading...

	repelisplus.lat/nv2/static/snisen.js?v=5353	ScriptElement	30 kB	2024-12-21	2025-04-21
Pretty URL repelisplus.lat/nv2/static/snisen.js?v=5353 IP 172.67.223.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-21 05:18 Last Seen2025-04-21 07:03 Times Seen16 Hash eaec624341f43d6cf7ef40f35cd26760 e9e711062da94737c220e07382e0e85e601ead44 04f9882e265bbd83a21bd3fcd04fed173af67cc704ab5a35046d987deebe4d65 Loading...

	na.rolpenszimocca.com/rKfjXD5YGT0mOOjrB/aVWNO	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL na.rolpenszimocca.com/rKfjXD5YGT0mOOjrB/aVWNO IP 23.109.170.98 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 04:49 Times Seen4650770 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	repelisplus.lat/	ScriptElement	187 B	2024-12-28	2025-04-21
Pretty URL repelisplus.lat/ IP 172.67.223.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-28 03:54 Last Seen2025-04-21 07:03 Times Seen14 Hash ffba8533e31139e01f0f043de49b52cf 570adc13e78e988cfa662c964b312deed7ed6111 e77a5bcd58f738fa24355ab91352781dde38aef9d451b6f3197f171ce1332b0d Loading...

HTTP Transactions (27)

URL IP Response Size

tbjah.club/sys/poster/5thgsmork91xzfdy40fpgppselos-m.jpg

104.21.57.101

200 OK

14 kB

URL GET HTTP/2
tbjah.club/sys/poster/5thgsmork91xzfdy40fpgppselos-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
14 kB (14186 bytes)
Hash
78a09181443d9bb42c36d06df46e836a
005c1c7482b8c095d928107c607da8886251dcb6
5eac2c08281b7bdffad8580a28bd2e1ad2955216f247aec99ae41b56028e7fb1

HTTP Headers

GET /sys/poster/5thgsmork91xzfdy40fpgppselos-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: image/jpeg
content-length: 14186
last-modified: Thu, 26 Sep 2024 16:31:00 GMT
etag: "66f58c44-376a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6513
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zerQERQB8wUHZ2uNBwALVRcRew88fUWjaAo7%2FjoKCLKsxsnSJa0PgGAxk0RLUsBow6bfrzsj2cn2nHZ1D1odnUYV0r216pvL5IBwWFhZm1nLJJSCwmpXRPr417Io"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fe95abf56a2-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=495&min_rtt=379&rtt_var=227&sent=8&recv=13&lost=0&retrans=0&sent_bytes=3194&recv_bytes=1306&delivery_rate=7784946&cwnd=254&unsent_bytes=0&cid=0bbfb85b1220db39&ts=63&x=0"
X-Firefox-Spdy: h2

tbjah.club/sys/poster/hcmukg4si9rwdi0huh9enz7axmbezd-m.jpg

104.21.57.101

200 OK

15 kB

URL GET HTTP/2
tbjah.club/sys/poster/hcmukg4si9rwdi0huh9enz7axmbezd-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
15 kB (15185 bytes)
Hash
b06a3db0a2ddc16213d73fdf729f621e
d11bf261df7f66b7a6450c091fbad2ad5f5c6c6d
91753e69dcc44eb0b832d850087b7cacb0cd44f734f128690497a00d3bc04f45

HTTP Headers

GET /sys/poster/hcmukg4si9rwdi0huh9enz7axmbezd-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: image/jpeg
content-length: 15185
last-modified: Mon, 22 Jul 2024 19:27:19 GMT
etag: "669eb297-3b51"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6429
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sYjXAGYWbbf%2BeHOReKA8sxAhYT7%2FYJlJMPKsY2goBIJ3rR7zecv%2FDJqSD2TA1uPcBqhxEJmNSrXKR1xdDc%2FcWaaOdCJoVtbLu5X0y69WkRGjVBuynr5VxJa7%2Faro"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fe98ad156a2-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=564&min_rtt=379&rtt_var=280&sent=20&recv=16&lost=0&retrans=0&sent_bytes=18313&recv_bytes=1408&delivery_rate=15555953&cwnd=256&unsent_bytes=0&cid=0bbfb85b1220db39&ts=87&x=0"
X-Firefox-Spdy: h2

tbjah.club/sys/poster/tcsjhmzbtg5f7z5oz-m.jpg

104.21.57.101

200 OK

17 kB

URL GET HTTP/2
tbjah.club/sys/poster/tcsjhmzbtg5f7z5oz-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
17 kB (17440 bytes)
Hash
1536bb6e9725842c9a6680d46c8d4d8b
a003732f97ae900a47f9e1246409b8e14e4806a7
a604b18ed45513b5163d153bb717d0d6568a6bdeb812b05d05a37abd4b1268dc

HTTP Headers

GET /sys/poster/tcsjhmzbtg5f7z5oz-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: image/jpeg
content-length: 17440
last-modified: Sat, 11 Jan 2025 17:30:46 GMT
etag: "6782aac6-4420"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aN5G0VgIaGQ%2BVhfjI68Xtvd%2Fmesrkiv4zM7iouRksBTRRxhXFvnBnodAZNgbNSqXPv9Fc5yGrXIECJvTQwmg62RmEQ0MAyzjFixICZdtBtscLrpx4ci7RM1Xq7Ts"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fe95abc56a2-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=659&min_rtt=379&rtt_var=399&sent=33&recv=17&lost=0&retrans=0&sent_bytes=34276&recv_bytes=1408&delivery_rate=15555953&cwnd=256&unsent_bytes=0&cid=0bbfb85b1220db39&ts=98&x=0"
X-Firefox-Spdy: h2

tbjah.club/sys/poster/j0tdplqysdnflof67i5639ramiv7et2njlqzw7nfb-m.jpg

104.21.57.101

200 OK

11 kB

URL GET HTTP/2
tbjah.club/sys/poster/j0tdplqysdnflof67i5639ramiv7et2njlqzw7nfb-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
11 kB (10901 bytes)
Hash
74b8299f820b606b340d5f1391968cdb
fff766ad24e6580319644b8dc39414df5eb85624
cd3a79e96cff6bc7019fef673a402ed3d430db392caad70d85047b7eb85fdcf6

HTTP Headers

GET /sys/poster/j0tdplqysdnflof67i5639ramiv7et2njlqzw7nfb-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: image/jpeg
content-length: 10901
last-modified: Fri, 18 Feb 2022 03:16:14 GMT
etag: "620f0f7e-2a95"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KcczGrv2AX2WVXq%2B0sSVcVCzED79hXuYs%2FfFIXpOGHg7oRTTCy3TrwyI4EpP%2B3NDCFQRRydigxplZBUh5i7W%2BxStaJlhrNPN7MLI2wGv%2BjJlial7q0z3g2ahxJv%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fe96ac156a2-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1179&min_rtt=379&rtt_var=1315&sent=47&recv=19&lost=0&retrans=0&sent_bytes=52506&recv_bytes=1408&delivery_rate=15555953&cwnd=256&unsent_bytes=0&cid=0bbfb85b1220db39&ts=119&x=0"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2

142.250.74.35

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintD0:1D:36:3F:CB:E1:3C:01:C2:B3:BD:E7:29:D6:C9:85:C8:A6:95:07
ValidityMon, 27 Jan 2025 08:36:30 GMT - Mon, 21 Apr 2025 08:36:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11640, version 1.0
Size
12 kB (11640 bytes)
Hash
78b340782c2e720343e3dd2910a310b8
5696eced239cd2b732047d4d749137f0b2c232b4
5424af21f7adb1b05ac008eda509b9ec274b53d0ecdd120d58e90939055ada6d

HTTP Headers

GET /s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://repelisplus.lat
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11640
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Feb 2025 12:11:34 GMT
expires: Sat, 14 Feb 2026 12:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 18:26:20 GMT
content-type: font/woff2
age: 55451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2

142.250.74.35

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintD0:1D:36:3F:CB:E1:3C:01:C2:B3:BD:E7:29:D6:C9:85:C8:A6:95:07
ValidityMon, 27 Jan 2025 08:36:30 GMT - Mon, 21 Apr 2025 08:36:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12244, version 1.0
Size
12 kB (12244 bytes)
Hash
c3c8ae1f75642a360f3d6834e4c3c28e
ce518b0ebad199df5605293eb23c596c624a3bae
920a7f4192e903a4506a4dc7347b44d3761490abd9e25f9acb4f16b7582285a8

HTTP Headers

GET /s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffGjEGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://repelisplus.lat
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Feb 2025 11:54:42 GMT
expires: Sat, 14 Feb 2026 11:54:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 18:27:01 GMT
content-type: font/woff2
age: 56463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v6/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2

142.250.74.35

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v6/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintD0:1D:36:3F:CB:E1:3C:01:C2:B3:BD:E7:29:D6:C9:85:C8:A6:95:07
ValidityMon, 27 Jan 2025 08:36:30 GMT - Mon, 21 Apr 2025 08:36:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12264, version 1.0
Size
12 kB (12264 bytes)
Hash
6e40bbe7664083411a9b1499337724e6
d7a7421181337c0b1bed2669c5ab5d1f3bfa5405
074e291b9878794cf4f1bb42d6d835b5994093d1a52fa16d49d8e6ea52e62087

HTTP Headers

GET /s/titilliumweb/v6/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://repelisplus.lat
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12264
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Feb 2025 06:07:32 GMT
expires: Sat, 14 Feb 2026 06:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 18:27:56 GMT
content-type: font/woff2
age: 77293
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2

142.250.74.35

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintD0:1D:36:3F:CB:E1:3C:01:C2:B3:BD:E7:29:D6:C9:85:C8:A6:95:07
ValidityMon, 27 Jan 2025 08:36:30 GMT - Mon, 21 Apr 2025 08:36:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12148, version 1.0
Size
12 kB (12148 bytes)
Hash
fca938cd38b25d1f8e7de2c286689be0
18a05dc6057110b4d2428ab19fb2fc3e0817bc02
8fb69a047c5e70aaf9deb5c5f871844161af5c65297d13b8054431ca33a68835

HTTP Headers

GET /s/titilliumweb/v6/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://repelisplus.lat
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 14 Feb 2025 21:25:12 GMT
expires: Sat, 14 Feb 2026 21:25:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 18:27:11 GMT
content-type: font/woff2
age: 22233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

na.rolpenszimocca.com/rKfjXD5YGT0mOOjrB/aVWNO

23.109.170.98

200 OK

20 B

URL GET HTTP/1.1
na.rolpenszimocca.com/rKfjXD5YGT0mOOjrB/aVWNO
IP
23.109.170.98:443
ASN
#7979 SERVERS-COM

Requested by
https://repelisplus.lat/
Certificate
IssuerLet's Encrypt
Subjectna.rolpenszimocca.com
FingerprintFD:85:89:83:63:3A:9D:71:25:A7:C8:AD:1F:B2:E7:D7:E7:03:49:3E
ValidityMon, 23 Dec 2024 22:43:26 GMT - Sun, 23 Mar 2025 22:43:25 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rKfjXD5YGT0mOOjrB/aVWNO HTTP/1.1
Host: na.rolpenszimocca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 15 Feb 2025 03:35:45 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://repelisplus.lat
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Sun, 16-Feb-2025 03:35:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Sun, 16-Feb-2025 03:35:45 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

schoolhangoverearlier.com/1c/57/28/1c5728589197b3048dd8793b71b217b5.js

172.240.253.132

403 Forbidden

0 B

URL GET HTTP/1.1
schoolhangoverearlier.com/1c/57/28/1c5728589197b3048dd8793b71b217b5.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://repelisplus.lat/
Certificate
IssuerLet's Encrypt
Subjectschoolhangoverearlier.com
Fingerprint50:01:93:B8:22:59:5F:96:28:21:EB:FB:22:1E:5E:8C:98:B5:5B:73
ValidityTue, 31 Dec 2024 14:19:33 GMT - Mon, 31 Mar 2025 14:19:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1c/57/28/1c5728589197b3048dd8793b71b217b5.js HTTP/1.1
Host: schoolhangoverearlier.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Sat, 15 Feb 2025 03:35:45 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: schoolhangoverearlier.com

repelisplus.lat/nv2/imgs/dhgjjtd.png

172.67.223.134

200 OK

11 kB

URL GET HTTP/3
repelisplus.lat/nv2/imgs/dhgjjtd.png
IP
172.67.223.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjectrepelisplus.lat
FingerprintC3:2E:BF:46:C9:EF:E4:62:2A:F9:05:12:6F:2F:CF:AD:8B:10:3D:60
ValidityFri, 10 Jan 2025 03:34:29 GMT - Thu, 10 Apr 2025 04:32:51 GMT

File type
PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced
Size
11 kB (11229 bytes)
Hash
2fc37dcc994b4ae4554244e6e4e4ff66
41d8f1a66efedfaaedd51d266af6985874eff77a
2b7d7789ae314dd07f065e3f06a6e4c4e19990740bc34aeee8e95a376cf97d14

HTTP Headers

GET /nv2/imgs/dhgjjtd.png HTTP/1.1
Host: repelisplus.lat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/png
content-length: 11229
last-modified: Fri, 28 Sep 2018 19:45:46 GMT
etag: "5bae84ea-2bdd"
expires: Fri, 30 Jan 2026 12:01:30 GMT
cache-control: max-age=31536000
content-language: es
accept-ranges: bytes
age: 1327048
cf-cache-status: HIT
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zF%2Br8Lp5z7rOdnM%2FN31sWx2TTgVjPusINn8H8QSspnam4FYOjk6UJy6BtxY9EKNvvkMcnv9vVXOdecTG4yGpq57psQdvJnBputx6Gf7XZUcXcZ8aBytRIZOOmC7yqGrgP3g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223febcc12b509-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6122&min_rtt=2357&rtt_var=3440&sent=23&recv=11&lost=0&retrans=0&sent_bytes=14083&recv_bytes=1794&delivery_rate=32301&cwnd=12000&unsent_bytes=0&cid=95dd9632e48ec11c&ts=802&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/5h1hxnnnbrzlt4nr3nh2nkkq-m.jpg

104.21.57.101

200 OK

15 kB

URL GET HTTP/3
tbjah.club/sys/poster/5h1hxnnnbrzlt4nr3nh2nkkq-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
15 kB (14685 bytes)
Hash
15ee13a418d2b0dfa17fc0ba542865c8
fbf4260817fb66fdb722461726f7514aa9104727
a75c29b9a61222377d5ff9576538304bafc6f1694d1f8cca656b8421b4474d1d

HTTP Headers

GET /sys/poster/5h1hxnnnbrzlt4nr3nh2nkkq-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 14685
last-modified: Fri, 14 Feb 2025 17:44:01 GMT
etag: "67af80e1-395d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6430
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fDT2oIOT%2Fd6smZyGnUvhDeusGq9RJzXWkCDPpGbH%2BuNdQETOV99KJqVIqYL6TnlZSPTTC63o6rdWZxkuh04MGZ1WgdpxX2x9dMnoPsSoA3IIxWVCafb%2FvxlOEbGW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec3f640b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4307&min_rtt=1492&rtt_var=2570&sent=27&recv=12&lost=0&retrans=0&sent_bytes=16303&recv_bytes=1934&delivery_rate=398092&cwnd=12000&unsent_bytes=0&cid=2581ce5161c4f160&ts=438&x=1", cfExtPri, cfHdrFlush;dur=2

tbjah.club/sys/poster/1ezdh0q50kko2befy9w0z8p06vw316vsbkwibc-m.jpg

104.21.57.101

200 OK

12 kB

URL GET HTTP/3
tbjah.club/sys/poster/1ezdh0q50kko2befy9w0z8p06vw316vsbkwibc-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
12 kB (11724 bytes)
Hash
9aa11705f6c528c47e17e1332bf3ecc2
711358d65a2e7ff7f1dccf09e4969ae2527a5d3b
cbd00d5b08428c23a7d5b13b0f30d4d1d754e6d4216ed036a8a9b220839c920a

HTTP Headers

GET /sys/poster/1ezdh0q50kko2befy9w0z8p06vw316vsbkwibc-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 11724
last-modified: Thu, 30 Jan 2025 08:30:56 GMT
etag: "679b38c0-2dcc"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6430
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wu9URBVgEbRIgjCIqdSJIBvPQrWwlaen2HZBVvCDrENQHqOgYQEr%2FEwk6L3Evwp21pNhfVw7PkLpzekURiMdNd1vxzIu61EjFCA0YRQTGqd2uGM67cKEUtn7dE1T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec3f650b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4307&min_rtt=1492&rtt_var=2570&sent=17&recv=12&lost=0&retrans=0&sent_bytes=4303&recv_bytes=1934&delivery_rate=398092&cwnd=12000&unsent_bytes=0&cid=2581ce5161c4f160&ts=437&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/e5j6ct6y233k83n9yhwty1b5r3028pmd-m.jpg

104.21.57.101

200 OK

13 kB

URL GET HTTP/3
tbjah.club/sys/poster/e5j6ct6y233k83n9yhwty1b5r3028pmd-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
13 kB (12908 bytes)
Hash
20043ff95445a6c6e7f3fba77e7be196
74db9e0145b1d4c0ef414c80decf88cdd1dee60b
4cccc80136d761825d8207ecdf55c3cee83e3982b370d895224f92d597bc34d6

HTTP Headers

GET /sys/poster/e5j6ct6y233k83n9yhwty1b5r3028pmd-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 12908
last-modified: Fri, 31 Jan 2025 17:32:48 GMT
etag: "679d0940-326c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6430
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SxcUKAijSopbx8lAz7Bm5nZfiV99HX%2BISVoPs1EcyMcrc7ZoQwqyVyb6YG8hF6tsTCOvktYt295K5JKx6SEgf33RxWKTThw%2F%2BggpEWryNL%2BgK6Iia0LvHNDN6MVk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec4f690b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4307&min_rtt=1492&rtt_var=2570&sent=28&recv=13&lost=0&retrans=0&sent_bytes=16330&recv_bytes=2225&delivery_rate=398092&cwnd=12000&unsent_bytes=0&cid=2581ce5161c4f160&ts=439&x=1", cfExtPri, cfHdrFlush;dur=1

tbjah.club/sys/poster/v3hma8dfpjf85s5v1eemxsgb5310wxsirzvryy-m.jpg

104.21.57.101

200 OK

19 kB

URL GET HTTP/3
tbjah.club/sys/poster/v3hma8dfpjf85s5v1eemxsgb5310wxsirzvryy-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
19 kB (18781 bytes)
Hash
a9cee67d698c5d2f752db34267fd15cf
1f3fc1666d8446f0abbf257ccfdc658965f20325
1f9ae345a132f17882bdb3a0db04830f96a90d87254f0ac15a978918552c4ec9

HTTP Headers

GET /sys/poster/v3hma8dfpjf85s5v1eemxsgb5310wxsirzvryy-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 18781
last-modified: Fri, 20 Dec 2024 08:31:32 GMT
etag: "67652b64-495d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6430
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SMA4IL5GlXGDh721piaZtbcLCRN7ScsqXUxukt4AOvZgh%2FlLJY%2Bd6aeNno6tTVJZWEoexhI0kc%2B8LgIOkMoeKqh1vTw06D%2FuT3AMFf8bgBEK16OolOc7JTZ4CWiM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f6f0b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3521&min_rtt=1492&rtt_var=2227&sent=59&recv=19&lost=0&retrans=0&sent_bytes=46796&recv_bytes=4079&delivery_rate=2723050&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=447&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/3rlz3c655s916bpt-m.jpg

104.21.57.101

200 OK

12 kB

URL GET HTTP/3
tbjah.club/sys/poster/3rlz3c655s916bpt-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
12 kB (11802 bytes)
Hash
055ba17729df1d6ddbf92f66a574b9ee
5fd41be7e994a7b2459478495bb04ee4f8429d31
3ff253f2606d0a7d5a06ca44901501627914a8b1fc7c87525f6aa158e28add74

HTTP Headers

GET /sys/poster/3rlz3c655s916bpt-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 11802
last-modified: Fri, 14 Feb 2025 14:35:26 GMT
etag: "67af54ae-2e1a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6430
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9iOAkjblNbVzj%2FNNYB95b9yGvMD6vJaL7jwJagrvsIFZw%2BY3nPD6BUHLyToangHvKeyTlfj3D8fsZgbnweS4NM4rmPtAROM11J4WrgvlnwcxSliq7h5eIJ1laRfp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec4f6d0b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3123&min_rtt=1492&rtt_var=1925&sent=76&recv=21&lost=0&retrans=0&sent_bytes=66713&recv_bytes=4169&delivery_rate=10833942&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=451&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/gc0ot0ygbouwbtey0yhz1g-m.jpg

104.21.57.101

200 OK

12 kB

URL GET HTTP/3
tbjah.club/sys/poster/gc0ot0ygbouwbtey0yhz1g-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
12 kB (11604 bytes)
Hash
df91eea5a69267e18e7e21a2f03876c6
87ab765f86f8259d9ac3f2491bddf8f99ef69659
69ff00ce58f072c9374210553c9f84abd9b90ffca6b5fb8dcdc2333257dd6e0c

HTTP Headers

GET /sys/poster/gc0ot0ygbouwbtey0yhz1g-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 11604
last-modified: Fri, 13 Dec 2024 08:32:16 GMT
etag: "675bf110-2d54"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P6ocq4hkni24vyjjFJc3AwlIDapELVUWMAl3a45cqnkylBmAPm3fRJfMxc%2F5MXeUkh5w7S%2BxkDppwCPoV7PPT7bVsPTCactzERGFcatGtZ5%2BWRGbnwSgJVRRUSXo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f730b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3008&min_rtt=1492&rtt_var=1673&sent=87&recv=22&lost=0&retrans=0&sent_bytes=79479&recv_bytes=4215&delivery_rate=5789038&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=493&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/ffyra2yhw0r964o9q2atnqv4yj3bsy6x3vf4o4cau-m.jpg

104.21.57.101

200 OK

16 kB

URL GET HTTP/3
tbjah.club/sys/poster/ffyra2yhw0r964o9q2atnqv4yj3bsy6x3vf4o4cau-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
16 kB (16433 bytes)
Hash
82d680d228f00a298fd4f68f0c011cab
f6bae9bcdd6300a2a6b963e8a108d583134f6925
9dc967c1647cf71aaa20ed45a13ad52d25c59f5cc724565ae0e82be6cf704ad4

HTTP Headers

GET /sys/poster/ffyra2yhw0r964o9q2atnqv4yj3bsy6x3vf4o4cau-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 16433
last-modified: Sat, 23 Nov 2024 17:30:55 GMT
etag: "6742114f-4031"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LwxJIUeTwFPkqtEMRxariD1367cxA3PLVWvESEyoJweLDmuJ%2Fc6nB7eEg0PguFtCuNqip0CVeRn%2FTJk2gGWSlemz1w7CZKAHkzCkm1C15poP3bKY1%2FkMcFQQ1Jfa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f740b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3008&min_rtt=1492&rtt_var=1673&sent=98&recv=22&lost=0&retrans=0&sent_bytes=92051&recv_bytes=4215&delivery_rate=5789038&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=493&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/732bz3qq7pu4caycehzvuv6k9zt87j15du62onil-m.jpg

104.21.57.101

200 OK

18 kB

URL GET HTTP/3
tbjah.club/sys/poster/732bz3qq7pu4caycehzvuv6k9zt87j15du62onil-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
18 kB (17596 bytes)
Hash
fb0e99f1396331d3d3f8b31cf5e9c313
cbf557fef8caf3d2a580367dea458a239686ffec
72eb1d2bcb04d6b344dd90d2fde0875675e7124fef2aeb9495b89d2b071d5bb8

HTTP Headers

GET /sys/poster/732bz3qq7pu4caycehzvuv6k9zt87j15du62onil-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 17596
last-modified: Sat, 07 Dec 2024 14:30:56 GMT
etag: "67545c20-44bc"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=idDYLKw9LQo5SsncxWTxR%2FUL9o07uLfkzwHzxR7ONr%2FEpaQFYIJHCfBUZEuazm5qTMUoPKtiMtre%2Bu4Lu1UDucSCfWXsYN13k%2BGtKRjFxT9%2BK%2FwMokJ7tU2TUlmC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f760b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3008&min_rtt=1492&rtt_var=1673&sent=113&recv=22&lost=0&retrans=0&sent_bytes=109562&recv_bytes=4215&delivery_rate=5789038&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=494&x=1", cfExtPri, cfHdrFlush;dur=0

tbjah.club/sys/poster/mlgf94w9w7w32mcwdha6d1qtjx1kp0b2bi7bdt-m.jpg

104.21.57.101

200 OK

83 kB

URL GET HTTP/3
tbjah.club/sys/poster/mlgf94w9w7w32mcwdha6d1qtjx1kp0b2bi7bdt-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
83 kB (82987 bytes)
Hash
479a58db0696b5669150822e77e63544
5cdcb0220dcf3c9c1fe55e5ef77cc88c8ed9fdf0
de90eb11734121bdcf6849c5c76a89d3c06673c36771ce90eb5b9268565f3c88

HTTP Headers

GET /sys/poster/mlgf94w9w7w32mcwdha6d1qtjx1kp0b2bi7bdt-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 82987
last-modified: Sun, 17 Nov 2024 08:30:49 GMT
etag: "6739a9b9-1442b"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y7ViayY9HE2YytVxRdwrN73WMJV%2Fs6cmt0NtZs4%2FogllQbbWWzycq0ckF9Uz7NoPXjWyccN9yvddMkconW1oGM0MXWgdhrnYv%2FMQK89gDVdlJ8rr0Z2n9t%2F3nkFR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f770b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3008&min_rtt=1492&rtt_var=1673&sent=128&recv=22&lost=0&retrans=0&sent_bytes=127479&recv_bytes=4215&delivery_rate=5789038&cwnd=48000&unsent_bytes=0&cid=2581ce5161c4f160&ts=495&x=1", cfExtPri, cfHdrFlush;dur=2

tbjah.club/sys/poster/idre0gkso7npji7ocl3f5zvmnduypanyd424-m.jpg

104.21.57.101

200 OK

21 kB

URL GET HTTP/3
tbjah.club/sys/poster/idre0gkso7npji7ocl3f5zvmnduypanyd424-m.jpg
IP
104.21.57.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjecttbjah.club
Fingerprint92:F0:00:A8:00:F6:8F:EB:9E:65:44:50:12:22:4C:28:3A:13:7C:E7
ValidityWed, 29 Jan 2025 20:48:58 GMT - Tue, 29 Apr 2025 21:46:33 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x300, components 3
Size
21 kB (21382 bytes)
Hash
0c1155308c7ca6905b189f9d4cbcaf3d
0b9f1106dbb34e58c40ed5b3bd86f3d1d592d01c
8ece69ceafeb74326b2cb6d6c4018b9be86ae57bdaf8d87a225c9dd42a9fdbd0

HTTP Headers

GET /sys/poster/idre0gkso7npji7ocl3f5zvmnduypanyd424-m.jpg HTTP/1.1
Host: tbjah.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/jpeg
content-length: 21382
last-modified: Tue, 24 Dec 2024 02:30:56 GMT
etag: "676a1ce0-5386"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4c%2F158q3lMAm5oPWluCMHFqHx3qa1hkGnFjOKqAEc5bOnWApsn052qiPzXXixuYZ6ZSFs0aIIlHBlrdfth6EIcaidrCE%2BiH9l%2FIib2bnKOqkzyunJ0J9YMw4sMoA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fec5f710b41-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2535&min_rtt=849&rtt_var=1482&sent=202&recv=25&lost=0&retrans=0&sent_bytes=214037&recv_bytes=4352&delivery_rate=4237043&cwnd=156000&unsent_bytes=0&cid=2581ce5161c4f160&ts=503&x=1", cfExtPri, cfHdrFlush;dur=0

repelisplus.lat/nv2/imgs/ico4.ico

172.67.223.134

200 OK

10 kB

URL GET HTTP/3
repelisplus.lat/nv2/imgs/ico4.ico
IP
172.67.223.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjectrepelisplus.lat
FingerprintC3:2E:BF:46:C9:EF:E4:62:2A:F9:05:12:6F:2F:CF:AD:8B:10:3D:60
ValidityFri, 10 Jan 2025 03:34:29 GMT - Thu, 10 Apr 2025 04:32:51 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
10 kB (10333 bytes)
Hash
44f06032e796da08fc04530e89a02e60
6a0636db2813516a3e1600cc1c9555961e494931
17b3e65ad4b229124a7e4c8aa821cb8c53b3611d5fa159a5c2ff7f4d622b8622

HTTP Headers

GET /nv2/imgs/ico4.ico HTTP/1.1
Host: repelisplus.lat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:45 GMT
content-type: image/x-icon
last-modified: Sun, 31 Oct 2021 10:39:30 GMT
etag: W/"617e7262-10be"
expires: Sun, 08 Feb 2026 03:29:26 GMT
cache-control: max-age=31536000
content-language: es
age: 604123
cf-cache-status: HIT
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8TIvsFliQgttLnoiSmu0fNeWlVTAAp0%2FN6u7YO0XFWrzp2vGZ6jn%2BQjKVafWTg1iKnMFnSmAPVE4FRTKrvCbWg%2FlkLPTdqIHQwYsaNtgA3zxFiTVOAp2G8yLPSd5KQ15wiY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223febcc13b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6122&min_rtt=2357&rtt_var=3440&sent=33&recv=11&lost=0&retrans=0&sent_bytes=26083&recv_bytes=1794&delivery_rate=32301&cwnd=12000&unsent_bytes=0&cid=95dd9632e48ec11c&ts=803&x=1", cfExtPri, cfHdrFlush;dur=1

services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org&lang=en-US

151.101.129.91

200 OK

68 B

URL
services.addons.mozilla.org/api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org&lang=en-US
IP
151.101.129.91:0
ASN
#54113 FASTLY

File type
JSON text data
Size
68 B (68 bytes)
Hash
4f822d39c269d2c47e3174b6c6bad3b7
d56bd07959c766e9c18faa9cf1070548f9236b65
cda00e555c758b1c13b6cbd17049ca8471057d16c60f08f551dbc331308eecf3

HTTP Headers

GET /api/v4/addons/search/?guid=default-theme%40mozilla.org%2Caddons-search-detection%40mozilla.com%2Cgoogle%40search.mozilla.org%2Camazondotcom%40search.mozilla.org%2Cwikipedia%40search.mozilla.org%2Cbing%40search.mozilla.org%2Cddg%40search.mozilla.org%2Cfirefox-compact-light%40mozilla.org%2Cfirefox-alpenglow%40mozilla.org%2Cfirefox-compact-dark%40mozilla.org&lang=en-US HTTP/1.1
Host: services.addons.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
content-type: application/json
allow: GET, HEAD, OPTIONS
x-amo-request-id: eb5606ffe9b3407b90b3830eb629b2b2
etag: "4f822d39c269d2c47e3174b6c6bad3b7"
content-security-policy: object-src 'none'; form-action 'self'; style-src 'unsafe-inline' https://addons.mozilla.org/static-server/; frame-src https://www.recaptcha.net/recaptcha/; default-src 'none'; child-src https://www.recaptcha.net/recaptcha/; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com; img-src 'self' blob: data: https://addons.mozilla.org/static-server/ https://addons.mozilla.org/user-media/ https://*.google-analytics.com https://*.googletagmanager.com; font-src 'self' https://addons.mozilla.org/static-server/; media-src https://videos.cdn.mozilla.net; script-src https://*.google-analytics.com https://*.googletagmanager.com https://www.recaptcha.net/recaptcha/ https://www.gstatic.com/recaptcha/ https://www.gstatic.cn/recaptcha/ https://addons.mozilla.org/static-server/; report-uri /__cspreport__, default-src 'none'; base-uri 'none'; form-action 'none'; frame-ancestors 'none'; object-src 'none'; report-uri /__cspreport__
x-frame-options: DENY, deny
strict-transport-security: max-age=31536000
x-content-type-options: nosniff, nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
cache-control: max-age=3600
x-xss-protection: 0
via: 1.1 google, 1.1 varnish, 1.1 varnish
content-encoding: br
accept-ranges: bytes
age: 485
date: Sat, 15 Feb 2025 03:36:12 GMT
x-served-by: cache-bfi-krnt7300109-BFI, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 15, 0
x-timer: S1739590572.467710,VS0,VE1
vary: origin, X-Country-Code, Accept-Language, Accept-Encoding
content-length: 68
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.41%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

200 OK

42 B

URL
aus5.mozilla.org/update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.41%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text
Size
42 B (42 bytes)
Hash
f8f24fa0c857d8f2ee493e131b85ab62
cb6049f830a54d14a19d4104fc0bb5ab5fdedbe6
e0dadbc9cd1f1bd8ce3118cc3383e0d0f6d147f055265d498d99deea956ba00f

HTTP Headers

GET /update/3/SystemAddons/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.41%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 15 Feb 2025 03:36:12 GMT
content-type: text/xml; charset=utf-8
content-length: 42
rule-id: unknown
rule-data-version: unknown
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
via: 1.1 google
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

repelisplus.zip/

188.114.96.1

301 Moved Permanently

39 kB

URL User Request GET HTTP/2
repelisplus.zip/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectrepelisplus.zip
Fingerprint24:A9:BF:0A:19:7B:BC:E9:2F:44:AA:EF:76:70:13:2C:30:88:16:70
ValidityTue, 24 Dec 2024 16:28:39 GMT - Mon, 24 Mar 2025 17:27:19 GMT

File type

Size
39 kB (38640 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: repelisplus.zip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: text/html
location: https://repelisplus.lat/
content-language: es
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qllpbs0mCIfMhK1oneTX0oaH1IJM5Fm1FdCDVIQFVI6ZllyBm5YXWjzRYreP8fWytmhDSUuPjAtGVge9prK%2BgYf282cisc3fgCch6%2FALlmj5IXhySy8AQsGGSNJ7JbkZuFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91223fe43dabb4fd-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5764&min_rtt=426&rtt_var=10640&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3283&recv_bytes=1253&delivery_rate=6286541&cwnd=254&unsent_bytes=0&cid=301c462c8ac92871&ts=206&x=0"
X-Firefox-Spdy: h2

repelisplus.lat/nv2/static/snisen.js?v=5353

172.67.223.134

200 OK

30 kB

URL GET HTTP/3
repelisplus.lat/nv2/static/snisen.js?v=5353
IP
172.67.223.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://repelisplus.lat/
Certificate
IssuerGoogle Trust Services
Subjectrepelisplus.lat
FingerprintC3:2E:BF:46:C9:EF:E4:62:2A:F9:05:12:6F:2F:CF:AD:8B:10:3D:60
ValidityFri, 10 Jan 2025 03:34:29 GMT - Thu, 10 Apr 2025 04:32:51 GMT

File type

Size
30 kB (30388 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /nv2/static/snisen.js?v=5353 HTTP/1.1
Host: repelisplus.lat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://repelisplus.lat/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: application/javascript
last-modified: Sun, 08 Dec 2024 23:16:48 GMT
etag: W/"675628e0-76b4"
expires: Fri, 13 Feb 2026 00:22:56 GMT
cache-control: max-age=31536000
content-language: es
cf-cache-status: HIT
age: 144272
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5Ie5VpEne%2B4hen1ecYkjfMx7AqqyJNtxGX6UshOexnNRt8TBaxNsyqJFA0g%2BsGUmmWwNJx9CxtPFMHd4LYqUqCYlrdSUnK2qhpv2Ib%2F%2FpFkBoWWUbZPVgusnO7OOqPOrgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 91223fe8ca8ab509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6660&min_rtt=4728&rtt_var=3153&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4102&recv_bytes=1181&delivery_rate=125614&cwnd=12000&unsent_bytes=0&cid=95dd9632e48ec11c&ts=321&x=1", cfExtPri, cfHdrFlush;dur=0

repelisplus.lat/

172.67.223.134

200 OK

39 kB

URL User Request GET HTTP/2
repelisplus.lat/
IP
172.67.223.134:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectrepelisplus.lat
FingerprintC3:2E:BF:46:C9:EF:E4:62:2A:F9:05:12:6F:2F:CF:AD:8B:10:3D:60
ValidityFri, 10 Jan 2025 03:34:29 GMT - Thu, 10 Apr 2025 04:32:51 GMT

File type

Size
39 kB (38640 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: repelisplus.lat
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 15 Feb 2025 03:35:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
ab: D=18258 t=1739577609303332
content-language: es
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GLApIPpSD7Bza7Pt27sVO6%2FgY%2FwRpJNZkmqffgNZ39tmrNrcNzyhB6ukWEXFI7%2B5WLBa2D6lyY%2BFCbC48jiqkylAtNxolwHo2pmk5jNi9hW22xTkuXtyfyaDHn%2BiSmRkxaU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 91223fe62f0c56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5691&min_rtt=521&rtt_var=10336&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3208&recv_bytes=1125&delivery_rate=6454680&cwnd=254&unsent_bytes=0&cid=174a0bab5f070046&ts=124&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (27)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN